summaryrefslogtreecommitdiff
path: root/roles/essential/tasks/sudo.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/essential/tasks/sudo.yml')
-rw-r--r--roles/essential/tasks/sudo.yml31
1 files changed, 0 insertions, 31 deletions
diff --git a/roles/essential/tasks/sudo.yml b/roles/essential/tasks/sudo.yml
deleted file mode 100644
index e2d4861..0000000
--- a/roles/essential/tasks/sudo.yml
+++ /dev/null
@@ -1,31 +0,0 @@
-- name: Install sudo
- ansible.builtin.package:
- name:
- - sudo
- state: present
-
-- name: Allow wheel group to use sudo
- ansible.builtin.lineinfile:
- dest: /etc/sudoers
- state: present
- regexp: '^(# )?%wheel ALL=\(ALL:ALL\) NOPASSWD: ALL'
- line: '%wheel ALL=(ALL:ALL) NOPASSWD: ALL'
- validate: "visudo -cf %s"
- owner: root
- group: root
- mode: u+r,g+r,o-rwx
-
-- name: Use hard-coded PATH instead of the user's to find commands
- ansible.builtin.lineinfile:
- dest: /etc/sudoers
- state: present
- # Double quotes are important here if we want to break the line on multiple
- # lines, as escaping doesn't work with single quotes.
- regexp: "^(# )?Defaults secure_path=\"/usr/local/sbin:/usr/local/bin:\
- /usr/sbin:/usr/bin:/sbin:/bin\""
- line: "Defaults secure_path=\"/usr/local/sbin:/usr/local/bin:\
- /usr/sbin:/usr/bin:/sbin:/bin\""
- validate: "visudo -cf %s"
- owner: root
- group: root
- mode: u+r,g+r,o-rwx
generated by cgit v1.2.3-70-g09d2 (git 2.49.0) at 2025-04-28 22:26:57 +0000