| .. | ||
| defaults | ||
| files/tobast | ||
| tasks | ||
| templates | ||
| vars | ||
| README.md | ||
Sysadmin users
Creates UNIX users and home directories for each sysadmin. Also takes care of disabling former sysadmin users.
Variables
sysadmins: list of usernames of the current sysadmins, ie. people that have an account on the various machines and are sudoers. This value can be overridden to have different sysadmins on a specific machine. Please refer todefaults/main.ymlfor the current default value.former_sysadmins: list of usernames of the former sysadmins, ie. people that used to have a sudoer account on the machines and must now be disabled (ie., cannot log in anymore). Please refer todefaults/main.ymlfor the current default value.sysadmins_groups: additional groups in which the sysadmins belong. Defaults toadm sudonopass.
Role variables (cannot be overridden)
sysadmins_details: dictionary mapping sysadmin or former sysadmin logins to the given user's configuration. This variable is set as a role variable: we might want different sysadmins on various machines, but we want a consistent configuration of the defined users. Each entry contains:full_name: full name of the sysadmin.email: email address of the sysadminssh_keys: list of ssh public keys. PLEASE KEEP IN MIND that it is your responsability to keep your private key safe. In particular, once you add a computer's public key here, always lock your computer and have a strong passphrase.shell: shell this user wants to use.deploy_files: list ofsrc/destentries that will be deployed from this role'sfilesto the user's home directory.