Hyperling
9736ee4bce
* Don't create doas config if failed to install. * Fix it better, previous change made it so that a value was required, could not just run setup.sh..
55 lines
1.4 KiB
YAML
55 lines
1.4 KiB
YAML
---
|
|
# Install and configure doas.
|
|
|
|
- name: General | Software | DoAs | Facts
|
|
set_fact:
|
|
doas_config: |
|
|
permit persist :wheel as root
|
|
permit persist :admin as root
|
|
permit persist :sudo as root
|
|
doas_conf_file_linux: /etc/doas.conf
|
|
doas_conf_file_bsd: /usr/local/etc/doas.conf
|
|
|
|
- name: General | Software | DoAs | Install
|
|
package:
|
|
name:
|
|
- doas
|
|
register: doas_install
|
|
ignore_errors: yes
|
|
|
|
- name: General | Software | DoAs | Configure [Linux]
|
|
blockinfile:
|
|
path: "{{ doas_conf_file_linux }}"
|
|
block: |
|
|
{{ doas_config }}
|
|
marker: '# {mark} MANAGED BY ANSIBLE | doas Linux'
|
|
state: present
|
|
create: yes
|
|
backup: yes
|
|
when: not doas_install.failed and ansible_system in ("Linux")
|
|
|
|
- name: General | Software | DoAs | Configure [BSD]
|
|
blockinfile:
|
|
path: "{{ doas_conf_file_linux }}"
|
|
block: |
|
|
{{ doas_config }}
|
|
marker: '# {mark} MANAGED BY ANSIBLE | doas BSD'
|
|
state: present
|
|
create: yes
|
|
backup: yes
|
|
when: not doas_install.failed and ansible_system in ("FreeBSD")
|
|
|
|
- name: General | Software | DoAs | Configure [Other]
|
|
blockinfile:
|
|
path: "{{ item }}"
|
|
block: |
|
|
{{ doas_config }}
|
|
marker: '# {mark} MANAGED BY ANSIBLE | doas Other'
|
|
state: present
|
|
create: yes
|
|
backup: yes
|
|
loop:
|
|
- "{{ doas_conf_file_linux }}"
|
|
- "{{ doas_conf_file_bsd }}"
|
|
when: not doas_install.failed and ansible_system not in ("Linux", "FreeBSD")
|