summaryrefslogtreecommitdiff
path: root/roles/systemd-container/tasks/base-container.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/systemd-container/tasks/base-container.yml')
-rw-r--r--roles/systemd-container/tasks/base-container.yml23
1 files changed, 13 insertions, 10 deletions
diff --git a/roles/systemd-container/tasks/base-container.yml b/roles/systemd-container/tasks/base-container.yml
index a22b1a85..b1bc24bd 100644
--- a/roles/systemd-container/tasks/base-container.yml
+++ b/roles/systemd-container/tasks/base-container.yml
@@ -6,21 +6,24 @@
tags:
- update
- name: Create Debian Stretch container
- command: debootstrap --include=openssh-server,dbus,python,sudo stretch /var/lib/machines/debian http://deb.debian.org/debian
+ command: debootstrap --include=openssh-server,dbus,python,sudo stretch /var/lib/machines/{{container_name}}/ http://deb.debian.org/debian
args:
- creates: /var/lib/machines/debian
-- name: Add admin user in container
- command: chroot /var/lib/machines/debian useradd -m obs-admin
+ creates: /var/lib/machines/{{container_name}}/etc/apt/sources.list
+- name: Add user in container
+ command: chroot /var/lib/machines/{{container_name}}/ useradd -m {{container_user}}
args:
- creates: /var/lib/machines/debian/home/obs-admin
+ creates: /var/lib/machines/{{container_name}}/home/{{container_user}}
- name: Make ssh dir
file:
- path: /var/lib/machines/debian/home/obs-admin/.ssh
+ path: /var/lib/machines/{{container_name}}/home/{{container_user}}/.ssh
state: directory
mode: 0700
-- name: Copy ssh key
- copy: content="{{ssh_pub_key}}" dest=/var/lib/machines/debian/home/obs-admin/.ssh/authorized_keys
+- name: Copy ssh authorized keys
+ copy:
+ src: /home/debian/.ssh/authorized_keys
+ dest: /var/lib/machines/{{container_name}}/home/{{container_user}}/.ssh/authorized_keys
+ remote_src: yes
- name: verify .ssh permissions
- command: chroot /var/lib/machines/debian chown -R obs-admin:obs-admin /home/obs-admin/.ssh
+ command: chroot /var/lib/machines/{{container_name}} chown -R {{container_user}}:{{container_user}} /home/{{container_user}}/.ssh
- name: add admin escalation rights
- copy: src=sudoers dest=/var/lib/machines/debian/etc/sudoers.d/obs-admin mode=0440
+ copy: src=sudoers dest=/var/lib/machines/{{container_name}}/etc/sudoers.d/{{container_user}} mode=0440
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-24 13:44:19 +0000