X-Git-Url: https://git.realraum.at/?a=blobdiff_plain;f=ansible%2Fhost_vars%2Ftorwaechter%2Fmain.yml;h=fd9f39c7755f8569af8bd644a874a7316c3d6c81;hb=e74b569686b7bf4d0abce63d996acdbfc0e9e646;hp=864a50d6eed27333176d6fff75499eb4897682b1;hpb=d15a9e06d1a1a1e893160906a5822309ec9e3380;p=noc.git

diff --git a/ansible/host_vars/torwaechter/main.yml b/ansible/host_vars/torwaechter/main.yml
index 864a50d..fd9f39c 100644
--- a/ansible/host_vars/torwaechter/main.yml
+++ b/ansible/host_vars/torwaechter/main.yml
@@ -1,5 +1,5 @@
 ---
-ssh_keys_tuergit: "{{ ssh_keys_root }}"
+ssh_users_tuergit: "{{ user_groups.noc | union(['fgenesis','d3','ruru']) }}"
 
 openwrt_arch: x86
 openwrt_target: geode
@@ -39,6 +39,10 @@ openwrt_mixin:
     mode: '0755'
     file: "{{ global_files_dir }}/{{ inventory_hostname }}/update-keys-from-stdin.sh"
 
+  /etc/sudoers.d/tuergitflash:
+    mode: '0440'
+    file: "{{ global_files_dir }}/{{ inventory_hostname }}/tuergitflash"
+
   /etc/ssh/sshd_config:
     content: |
       Port 22000
@@ -60,16 +64,10 @@ openwrt_mixin:
         AuthorizedKeysCommandUser tuergit
 
   /etc/ssh/authorized_keys.d/root:
-    content: |-
-      {% for key in ssh_keys_root %}
-      {{ key }}
-      {% endfor %}
+    content: "{{ ssh_users_root | user_ssh_keys(users) | join('\n') }}\n"
 
   /etc/ssh/authorized_keys.d/tuergit:
-    content: |-
-      {% for key in ssh_keys_tuergit %}
-      {{ key }}
-      {% endfor %}
+    content: "{{ ssh_users_tuergit | user_ssh_keys(users) | join('\n') }}\n"
 
 openwrt_uci:
   system: