Create drop-in for sudo for vdr user
this allows to restart vdr.service and reboot the system
This commit is contained in:
Alexander Grothe
parent
96b19af073
commit
b1389ae487
17
Manual.org
17
Manual.org
@ -430,6 +430,7 @@ yavdr-common executes the following tasks:
|
||||
- import_tasks: configure_apt.yml
|
||||
- import_tasks: configure_system.yml
|
||||
- import_tasks: create_directories.yml
|
||||
- import_tasks: create_sudoers.yml
|
||||
tags: [install]
|
||||
#+END_SRC
|
||||
***** Disable default installation of recommended packages
|
||||
@ -561,6 +562,15 @@ yavdr-common executes the following tasks:
|
||||
mode: '0777'
|
||||
with_dict: '{{ media_dirs }}'
|
||||
#+END_SRC
|
||||
***** create sudoers drop-in for vdr
|
||||
#+BEGIN_SRC yaml :tangle roles/yavdr-common/tasks/create_sudoers.yml :exports none :mkdirp yes
|
||||
- name: create /etc/sudoers.d/yavdr from template
|
||||
template:
|
||||
src: templates/yavdr.sudoers.j2
|
||||
dest: /etc/sudoers.d/yavdr
|
||||
mode: '0444'
|
||||
validate: visudo -cf %s
|
||||
#+END_SRC
|
||||
*** templates
|
||||
#+BEGIN_SRC c :tangle roles/yavdr-common/templates/90-norecommends.j2 :mkdirp yes :padline no
|
||||
{{ ansible_managed | comment('c') }}
|
||||
@ -568,6 +578,12 @@ yavdr-common executes the following tasks:
|
||||
APT::Install-Recommends "0";
|
||||
APT::Install-Suggests "0";
|
||||
#+END_SRC
|
||||
**** yavdr sudoers drop-in
|
||||
Allow the vdr user to restart ~vdr.service~ and reboot the system
|
||||
#+BEGIN_SRC shell :tangle roles/yavdr-common/templates/yavdr.sudoers.j2 :mkdirp yes :padline no
|
||||
{{ vdr.user }} ALL=NOPASSWD: /bin/systemctl --no-block restart vdr.service
|
||||
{{ vdr.user }} ALL=NOPASSWD: /bin/systemctl --no-block reboot
|
||||
#+END_SRC
|
||||
** collect facts about the system with custom modules
|
||||
|
||||
*** variables
|
||||
@ -1333,6 +1349,7 @@ create a xorg.conf for
|
||||
- [X] nvidia
|
||||
- [ ] intel
|
||||
- [ ] amd gpus
|
||||
- [ ] allow overscan compensation in xorg.conf or via xrandr on startup
|
||||
|
||||
**** HOLD Nvidia-GPUs:read EDID:
|
||||
|
||||
|
||||
6
roles/yavdr-common/tasks/create_sudoers.yml
Normal file
6
roles/yavdr-common/tasks/create_sudoers.yml
Normal file
@ -0,0 +1,6 @@
|
||||
- name: create /etc/sudoers.d/yavdr from template
|
||||
template:
|
||||
src: templates/yavdr.sudoers.j2
|
||||
dest: /etc/sudoers.d/yavdr
|
||||
mode: '0444'
|
||||
validate: visudo -cf %s
|
||||
@ -6,4 +6,5 @@
|
||||
- import_tasks: configure_apt.yml
|
||||
- import_tasks: configure_system.yml
|
||||
- import_tasks: create_directories.yml
|
||||
- import_tasks: create_sudoers.yml
|
||||
tags: [install]
|
||||
|
||||
2
roles/yavdr-common/templates/yavdr.sudoers.j2
Normal file
2
roles/yavdr-common/templates/yavdr.sudoers.j2
Normal file
@ -0,0 +1,2 @@
|
||||
{{ vdr.user }} ALL=NOPASSWD: /bin/systemctl --no-block restart vdr.service
|
||||
{{ vdr.user }} ALL=NOPASSWD: /bin/systemctl --no-block reboot
|
||||
Loading…
Reference in New Issue
Block a user