add sudoers file to sudoers.d

15b28a02 · Michael Roytman · f31c4849 · 15b28a02 · 15b28a02 · 15b28a02
Commit 15b28a02 authored Jun 16, 2017 by Michael Roytman
Showing with 17 additions and 3 deletions

playbooks/roles/tools_jenkins/defaults/main.yml
+1 -1

playbooks/roles/tools_jenkins/meta/main.yml
+3 -2

playbooks/roles/tools_jenkins/tasks/main.yml
+12 -0

playbooks/roles/tools_jenkins/templates/99-tools-jenkins.j2
+1 -0

No files found.
--- a/playbooks/roles/tools_jenkins/defaults/main.yml
+++ b/playbooks/roles/tools_jenkins/defaults/main.yml
@@ -78,4 +78,4 @@ jenkins_tools_debian_pkgs:
    - psmisc
    - mysql-client-core-5.6
-jenkins_tools_docker_user: 'jenkins-docker-proxy'
+JENKINS_TOOLS_DOCKER_USER: 'jenkins-docker-proxy'
--- a/playbooks/roles/tools_jenkins/meta/main.yml
+++ b/playbooks/roles/tools_jenkins/meta/main.yml
@@ -10,10 +10,11 @@ dependencies:
    jenkins_custom_plugins: []
    jenkins_bundled_plugins: "{{ jenkins_tools_bundled_plugins }}"
    jenkins_debian_pkgs: "{{ jenkins_tools_debian_pkgs }}"
  # Needed to be able to build docker images. Used by Docker Image Builder Jobs.
  - role: user
    user_info:
-        - name: '{{ jenkins_tools_docker_user }}'
+        - name: '{{ JENKINS_TOOLS_DOCKER_USER }}'
  - role: docker-tools
    docker_users:
-        - '{{ jenkins_tools_docker_user }}'
+        - '{{ JENKINS_TOOLS_DOCKER_USER }}'
--- a/playbooks/roles/tools_jenkins/tasks/main.yml
+++ b/playbooks/roles/tools_jenkins/tasks/main.yml
@@ -19,3 +19,15 @@
  tags:
    - install
    - install:system-requirements
+- name: Create sudoers file from template
+  template:
+    dest: "/etc/sudoers.d/99-tools_jenkins"
+    src: "99-tools-jenkins.j2"
+    owner: "root"
+    group: "root"
+    mode: "0440"
+    validate: 'visudo -cf %s'
+  tags:
+    - install
+    - install:configuration
--- a/playbooks/roles/tools_jenkins/templates/99-tools-jenkins.j2
+++ b/playbooks/roles/tools_jenkins/templates/99-tools-jenkins.j2
+{{ jenkins_user }} ALL=({{ JENKINS_TOOLS_DOCKER_USER }}) SETENV:NOPASSWD:/usr/bin/docker