apimanager.yml
1.31 KB
- name: Create Groups
group:
gid: "{{ item.gid }}"
name: "{{ item.name }}"
state: present
with_items:
- { gid: 1010, name: wdview }
- { gid: 1001, name: wdadmin }
- { gid: 996, name: nginx }
- { gid: 999, name: wildfly }
- { gid: 998, name: postgres }
- name: Create Users
user:
uid: "{{ item.uid }}"
home: "{{ item.path }}"
name: "{{ item.name }}"
group: "{{ item.name }}"
shell: "{{ item.shell }}"
system: "{{ item.system }}"
createhome: "{{ item.crehome }}"
with_items:
- { uid: 1010, name: wdview, crehome: yes, system: no, shell: /bin/bash, path: /home/wdview }
- { uid: 1001, name: wdadmin, crehome: yes, system: no, shell: /bin/bash, path: /home/wdadmin }
- { uid: 999, name: wildfly, crehome: no, system: yes, shell: /bin/bash, path: no }
- { uid: 996, name: nginx, crehome: no, system: yes, shell: /usr/sbin/nologin, path: no }
- { uid: 998, name: postgres, crehome: no, system: yes, shell: /bin/bash, path: no }
- name: Allow 'wildfly' group to have passwordless sudo
lineinfile:
dest: /etc/sudoers
state: present
regexp: '^%wildfly'
line: '%wildfly ALL=(ALL) NOPASSWD: ALL'
validate: 'visudo -cf %s'