arch-install/roles/07_user/tasks/main.yml

---
- name: Make sure we have a 'wheel' group
  ansible.builtin.group:
    name: wheel
    state: present

- name: Create user
  ansible.builtin.user:
    name: "{{ user.name }}"
    # Use: openssl passwd -salt <salt> -1 <plaintext>
    password: "{{ user.password }}"
    update_password: on_create
    comment: "{{ user.full_name }}"
    groups: "{{ user.additional_groups }}"
    append: yes
    shell: "{{ user.shell }}"
    state: present
    expires: -1
  become: true

- name: Setup sudo
  ansible.builtin.copy:
    dest: /etc/sudoers.d/{{ user.name }}
    content: "{{ user.name }} ALL=(ALL:ALL) ALL"
    mode: 0440
    validate: /usr/sbin/visudo -cf %s
  become: true

- name: Configure pinentry for gnome3
  ansible.builtin.lineinfile:
    path: ~/.gnupg/gpg-agent.conf
    line: "pinentry-program /usr/bin/pinentry-gnome3"
    create: yes

- name: Install Bitwarden CLI settings
  ansible.builtin.import_tasks: rbw.yml
Add user with sudo 2024-06-06 19:49:55 +00:00			`---`
			`- name: Make sure we have a 'wheel' group`
Fix linting stuff 2024-06-07 07:04:58 +00:00			`ansible.builtin.group:`
Add user with sudo 2024-06-06 19:49:55 +00:00			`name: wheel`
			`state: present`
Fix linting stuff 2024-06-07 07:04:58 +00:00
Add user with sudo 2024-06-06 19:49:55 +00:00			`- name: Create user`
			`ansible.builtin.user:`
			`name: "{{ user.name }}"`
Fix linting stuff 2024-06-07 07:04:58 +00:00			`# Use: openssl passwd -salt <salt> -1 <plaintext>`
Don't run expensive ops during playbook 2024-06-06 20:07:15 +00:00			`password: "{{ user.password }}"`
Add user with sudo 2024-06-06 19:49:55 +00:00			`update_password: on_create`
			`comment: "{{ user.full_name }}"`
			`groups: "{{ user.additional_groups }}"`
			`append: yes`
			`shell: "{{ user.shell }}"`
			`state: present`
Do not expire ariejan 2024-06-06 21:59:49 +00:00			`expires: -1`
Add user with sudo 2024-06-06 19:49:55 +00:00			`become: true`

			`- name: Setup sudo`
Use builtin correctly 2024-06-06 20:17:09 +00:00			`ansible.builtin.copy:`
Add user with sudo 2024-06-06 19:49:55 +00:00			`dest: /etc/sudoers.d/{{ user.name }}`
aur_builder FTW 2024-06-06 21:01:51 +00:00			`content: "{{ user.name }} ALL=(ALL:ALL) ALL"`
Add user with sudo 2024-06-06 19:49:55 +00:00			`mode: 0440`
Become true for sudo edits 2024-06-06 21:59:08 +00:00			`validate: /usr/sbin/visudo -cf %s`
Fix linting stuff 2024-06-07 07:04:58 +00:00			`become: true`
Update ssh key script; deps 2024-06-07 11:44:37 +00:00
Update arch install 2024-06-10 08:44:29 +00:00			`- name: Configure pinentry for gnome3`
			`ansible.builtin.lineinfile:`
			`path: ~/.gnupg/gpg-agent.conf`
			`line: "pinentry-program /usr/bin/pinentry-gnome3"`
Update to macos install 2024-06-10 14:23:13 +00:00			`create: yes`

			`- name: Install Bitwarden CLI settings`
			`ansible.builtin.import_tasks: rbw.yml`