build

2026-01-29 02:49:44 +01:00 · 2026-01-07 22:52:04 +01:00
parent 252190e128
commit e7f2c941fd
7 changed files with 98 additions and 364 deletions
--- a/roles/init/tasks/main.yml
+++ b/roles/init/tasks/main.yml
@@ -2,19 +2,29 @@
  become: "{{ 'no' if inventory_hostname in ['sectorq.cloud', 'nas.home.lan'] else 'yes' }}"
  become_method: su
  block:
+    
    - name: Include vault
      ansible.builtin.include_vars:
-        file: jaydee.yml
+        file: init.yml
    - name: Change password for jd
      ansible.builtin.user:
        name: jd
        password: "{{ jd_password | password_hash('sha512') }}"
+    - name: Check if group exists
+      getent:
+        database: group
+        key: sudo
+      register: group_check
+      ignore_errors: true
+      
    - name: Ensure deploy user exists
      ansible.builtin.user:
        name: jd
        shell: /bin/bash
        groups: sudo
        append: true
+      when: group_check is succeeded
+
    - name: Give deploy sudo access
      ansible.builtin.copy:
        dest: /etc/sudoers.d/jd