06d7360677
- Wifi-devices will be managed by NetworkManager - (USB-)Dockingstation with same MAC as internal device will be assigned to virbr1 - users with role-teacher have privilege - to create new NetworkManager connections - install additional software - change luks-key - package plasma-discover will not be removed (for teacherlaptops) - http-proxy-Settings will be configured by auto-detect - providing sudo-script to mount default-school from server after wireguard-connection is established
26 lines
734 B
YAML
26 lines
734 B
YAML
---
|
|
- name: Copy polkit rule to allow install packages by role-teacher
|
|
ansible.builtin.copy:
|
|
src: "{{ item }}"
|
|
dest: /etc/polkit-1/rules.d/
|
|
mode: "0644"
|
|
loop:
|
|
- lmn-packagekit.rules
|
|
- lmn-networkmanager.rules
|
|
|
|
- name: Copy mountserver script to /usr/local/bin
|
|
ansible.builtin.copy:
|
|
src: mountserver
|
|
dest: /usr/local/bin/
|
|
mode: "0755"
|
|
|
|
- name: Deploy sudo configurations (apt for role-teacher)
|
|
copy:
|
|
dest: /etc/sudoers.d/90-lmn-teacherlaptop
|
|
owner: root
|
|
group: root
|
|
mode: '0700'
|
|
content: |
|
|
%role-teacher ALL=(root) NOPASSWD: /usr/bin/apt
|
|
%role-teacher ALL=(root) NOPASSWD: /usr/sbin/cryptsetup
|
|
%role-teacher ALL=(root) NOPASSWD: /usr/local/bin/mountserver
|