Initial commit

2022-02-20 12:07:59 +01:00
commit 42c3774ca6
114 changed files with 27589 additions and 0 deletions
--- a/roles/common/tasks/sudoers-pc.yml
+++ b/roles/common/tasks/sudoers-pc.yml
@@ -0,0 +1,32 @@
+---
+
+- name: (sudoers-pc.yml) update specific sudoers configuration files (/etc/sudoers.d/)
+  template:
+    src: etc/sudoers.d/50-user.pc.j2
+    dest: /etc/sudoers.d/50-user
+    validate: visudo -cf %s
+    owner: root
+    group: root
+    mode: 0440
+  tags:
+    - sudoers-file-configuration
+
+- name: (sudoers-pc.yml) update global sudoers configuration file
+  template:
+    src: etc/sudoers.pc.j2
+    dest: /etc/sudoers
+    owner: root
+    group: root
+    mode: 0440
+    validate: visudo -cf %s
+  tags:
+    - sudoers-global-configuration
+
+- name: (sudoers-pc.yml) Ensure all sudo_users are in sudo group
+  user:
+    name: "{{ item }}"
+    groups: sudo
+    append: yes
+  with_items: "{{ sudo_pc_users }}"
+  tags:
+    - sudo-users