Google Git
Sign in
edge / private-cloud-ansible-playbooks / apigee-opdk-ssh-user / 3cc3007dfaa7ca38c0a8a1fe2511908e87d525e2^! / .
commit3cc3007dfaa7ca38c0a8a1fe2511908e87d525e2[log] [tgz]
authorCarlos Frias <carlos.frias.01@gmail.com>Wed Nov 22 11:23:32 2017 -0500
committerCarlos Frias <carlos.frias.01@gmail.com>Wed Nov 22 11:23:32 2017 -0500
treee03eaccf3dfbabcbf9f4d1cf9410759e10d89e2a
parentf9950c0d00e6a24fa920f51792cb22510d7b2c46 [diff]
Updated with updates to sudoers for the indicated user which should be apigee.

diff --git a/tasks/main.yml b/tasks/main.yml
index 9ed4de4..6c13382 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml

@@ -1,6 +1,11 @@
 ---
 # tasks file for /usr/local/google/home/friasc/apigee-workspace/apigee-opdk-role-workspace/apigee-opdk-admin-user
+- name: User must be set or default will be used
+  set_fact:
+    user: "{{ user | default('apigee') }}"
+
 - name: Copy local public keys to server for user {{ user }}
+  become: yes
   authorized_key:
     user: '{{ user }}'
     state: present
@@ -8,13 +13,16 @@
   when: pubkey_path is defined | default(False)
 
 - name: Update user with NOPASSWD
+  become: yes
   lineinfile:
     state: present
-    line: "{{ user | default('apigee') }} ALL = NOPASSWD : ALL"
-    path: /etc/sudoers
+    create: yes
+    line: "{{ user }} ALL = NOPASSWD : ALL"
+    path: "/etc/sudoers.d/{{ user }}-user"
     validate: '/usr/sbin/visudo -cf %s'
 
 - name: Permit root login over SSH
+  become: yes
   lineinfile:
     state: present
     dest: /etc/ssh/sshd_config