Controls the configuration of the default /etc/sudoers file and included files/directories.
MIT License
Bot releases are visible (Hide)
Minor template fix for a user that has their ANSIBLE_MANAGER_STR set to None
.
Published by ahuffman almost 4 years ago
sudoers_backup_become
variable due to bug with local user (PASSWD) prompt configs. This allows a user to configure whether or not to execute the backup directory creation with privilege escalationdefaults/main.yaml
and force to True
when undefined for backward compatibilityPublished by ahuffman almost 5 years ago
wheel
on MacOSPublished by ahuffman over 5 years ago
Fixes:
fetch
module when using become and ansible_user on delegated taskPublished by ahuffman over 5 years ago
Version 2.0.0 is a major rewrite of the old role code. The revamp allows us to better represent the data, as well as allows us to align with the ahuffman.scan_sudoers role. This allows for migration of running configurations to new systems, as well as quicker time to deployment by automatic generation of the sudoers_files
variable off of an existing running configuration.
path
key which defines where the file gets deployed VS. creating include files off of an alias namesudoers_files
variable will define how this template is implemented/etc/sudoers
filefetch
to Ansible Control Node VS. backup of files on remote file-systems (prevents accidental inclusion of old files in included directories)
sudoers_backup_path
variable to define the path where remote backups are pulled to prior to changes of the running configurations.sudoers_files
definition aligned with a RHEL7.6 default /etc/sudoers
configurationvisudo
binary path for validation of sudoers configurations. Default set to /usr/sbin/visudo
which should work for most Operating System flavorssudoers_files
via new data structure of the /etc/sudoers
and related included files.Published by ahuffman over 5 years ago
Fixes issues with become and visudo. Fully-qualified path was required to properly validate with visudo. Has not been tested with Ubuntu/Debian distros, but will work if visudo exists at /usr/sbin/visudo.
Published by ahuffman over 5 years ago
Published by ahuffman almost 6 years ago
Fixes ansible-lint complaining about retries on a package install.
Published by ahuffman almost 6 years ago
Published by ahuffman almost 7 years ago
Fixing check mode runs by removing a command that grepped /etc/sudoers. This was found to be unnecessary due to the lineinfile module that ensures the line we were grepping for is in place when the separate sudoer specs boolean was on.
Minor documentation update to correct Author section.
Published by ahuffman over 7 years ago
Small tweaks to the documentation examples formatting.
Published by ahuffman over 7 years ago
Fixes up new Ansible syntax warnings.