sandwich/Ansible-Bootstrap
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

refactor(virtualization): simplify cloud-user-data sudo to unconditional NOPASSWD

Browse Source
This commit is contained in:
Sandwich
2026-02-21 01:22:34 +01:00
parent 9308d09d7b
commit 54c704de4e
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
roles/virtualization/templates/cloud-user-data.yml.j2
View File

@@ -8,9 +8,7 @@ users:
- name: "{{ user.name }}" - name: "{{ user.name }}"
primary_group: "{{ user.name }}" primary_group: "{{ user.name }}"
groups: users groups: users
{% if user.sudo | default(false) %} sudo: "ALL=(ALL) NOPASSWD:ALL"
sudo: "{{ 'ALL=(ALL) NOPASSWD:ALL' if user.sudo is sameas true else user.sudo }}"
{% endif %}
passwd: "{{ user.password | password_hash('sha512') }}" passwd: "{{ user.password | password_hash('sha512') }}"
lock_passwd: false lock_passwd: false
{% set ssh_keys = user['keys'] | default([]) %} {% set ssh_keys = user['keys'] | default([]) %}