Rooba
/
mitogen
mirror of https://github.com/mitogen-hq/mitogen.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

attempt at fixing 'sudo runas gid invalid value' since the sudo command looks correct

This commit is contained in:
Steven Robertson 2020-02-18 16:04:16 -08:00
parent 51b43104e0
commit 72e6abf6db
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
tests/image_prep/_user_accounts.yml
View File

@ -167,7 +167,8 @@
- name: Require password for two accounts - name: Require password for two accounts
lineinfile: lineinfile:
path: /etc/sudoers path: /etc/sudoers
line: "{{lookup('pipe', 'whoami')}} ALL = ({{item}}) ALL" line: "{{lookup('pipe', 'whoami')}} ALL = ({{item}}:ALL) ALL"
validate: '/usr/sbin/visudo -cf %s'
with_items: with_items:
- mitogen__pw_required - mitogen__pw_required
- mitogen__require_tty_pw_required - mitogen__require_tty_pw_required
@ -175,7 +176,8 @@
- name: Allow passwordless sudo for require_tty/readonly_homedir - name: Allow passwordless sudo for require_tty/readonly_homedir
lineinfile: lineinfile:
path: /etc/sudoers path: /etc/sudoers
line: "{{lookup('pipe', 'whoami')}} ALL = ({{item}}) NOPASSWD:ALL" line: "{{lookup('pipe', 'whoami')}} ALL = ({{item}}:ALL) NOPASSWD:ALL"
validate: '/usr/sbin/visudo -cf %s'
with_items: with_items:
- mitogen__require_tty - mitogen__require_tty
- mitogen__readonly_homedir - mitogen__readonly_homedir
@ -183,5 +185,6 @@
- name: Allow passwordless for many accounts - name: Allow passwordless for many accounts
lineinfile: lineinfile:
path: /etc/sudoers path: /etc/sudoers
line: "{{lookup('pipe', 'whoami')}} ALL = (mitogen__{{item}}) NOPASSWD:ALL" line: "{{lookup('pipe', 'whoami')}} ALL = (mitogen__{{item}}:ALL) NOPASSWD:ALL"
validate: '/usr/sbin/visudo -cf %s'
with_items: "{{normal_users}}" with_items: "{{normal_users}}"