aboutsummaryrefslogtreecommitdiffstats
path: root/roles/_workstation/sysconf
diff options
context:
space:
mode:
authorRomain Gonçalves <me@rgoncalves.se>2021-04-04 10:59:09 +0000
committerRomain Gonçalves <me@rgoncalves.se>2021-04-04 10:59:09 +0000
commit254138315446a186a14080353eec3ca0748eb9e4 (patch)
treee9a357394771d85a9615761a58b9775f692a0b97 /roles/_workstation/sysconf
parent1ba9c51c8c8e349ebe5e7b6dd7b48e7d1a2aa396 (diff)
downloadinfrastructure-254138315446a186a14080353eec3ca0748eb9e4.tar.gz
Tinker doas and user for musl systems
Diffstat (limited to 'roles/_workstation/sysconf')
-rw-r--r--roles/_workstation/sysconf/tasks/_void.yml3
-rw-r--r--roles/_workstation/sysconf/tasks/main.yml11
2 files changed, 13 insertions, 1 deletions
diff --git a/roles/_workstation/sysconf/tasks/_void.yml b/roles/_workstation/sysconf/tasks/_void.yml
index 058f7c3..e05e2ef 100644
--- a/roles/_workstation/sysconf/tasks/_void.yml
+++ b/roles/_workstation/sysconf/tasks/_void.yml
@@ -13,9 +13,10 @@
- name: append current user to system groups
user:
name: "{{ _workstation_env_user }}"
- group: "{{ item }}"
+ groups: "{{ item }}"
append: true
loop:
- _seatd
- audio
- video
+ - wheel
diff --git a/roles/_workstation/sysconf/tasks/main.yml b/roles/_workstation/sysconf/tasks/main.yml
index 0f61550..253cacd 100644
--- a/roles/_workstation/sysconf/tasks/main.yml
+++ b/roles/_workstation/sysconf/tasks/main.yml
@@ -17,6 +17,17 @@
mode: 0644
create: true
+- name: allow reboot/shutdown/hibernate with doas
+ lineinfile:
+ path: /etc/doas.conf
+ regexp: "^permit nopass {{ _workstation_env_user }} as root cmd {{ item }}"
+ line: "permit nopass {{ _workstation_env_user }} as root cmd {{ item }}"
+ loop:
+ - zzz
+ - ZZZ
+ - reboot
+ - shutdown
+
- name: start and enable pcscd service
service:
name: pcscd
remember that computers suck.