call upload script with sudo

[noc.git] / ansible / host_vars / torwaechter / main.yml

diff --git a/ansible/host_vars/torwaechter/main.yml b/ansible/host_vars/torwaechter/main.yml
index 016ec44..fd9f39c 100644 (file)
--- a/ansible/host_vars/torwaechter/main.yml
+++ b/ansible/host_vars/torwaechter/main.yml
@@ -1,4 +1,6 @@
 ---
+ssh_users_tuergit: "{{ user_groups.noc | union(['fgenesis','d3','ruru']) }}"
+
 openwrt_arch: x86
 openwrt_target: geode
 openwrt_output_image_suffixes:
@@ -37,6 +39,10 @@ openwrt_mixin:
     mode: '0755'
     file: "{{ global_files_dir }}/{{ inventory_hostname }}/update-keys-from-stdin.sh"
 
+  /etc/sudoers.d/tuergitflash:
+    mode: '0440'
+    file: "{{ global_files_dir }}/{{ inventory_hostname }}/tuergitflash"
+
   /etc/ssh/sshd_config:
     content: |
       Port 22000
@@ -58,16 +64,10 @@ openwrt_mixin:
         AuthorizedKeysCommandUser tuergit
 
   /etc/ssh/authorized_keys.d/root:
-    content: |-
-      {% for key in noc_ssh_keys %}
-      {{ key }}
-      {% endfor %}
+    content: "{{ ssh_users_root | user_ssh_keys(users) | join('\n') }}\n"
 
   /etc/ssh/authorized_keys.d/tuergit:
-    content: |-
-      {% for key in noc_ssh_keys %}
-      {{ key }}
-      {% endfor %}
+    content: "{{ ssh_users_tuergit | user_ssh_keys(users) | join('\n') }}\n"
 
 openwrt_uci:
   system: