diff --git a/service-provider-setup/README.md b/service-provider-setup/README.md index da7ec96..1e6b769 100644 --- a/service-provider-setup/README.md +++ b/service-provider-setup/README.md @@ -45,3 +45,44 @@ To get started, follow the [installation](../README.md#installation) guide to se ```bash ansible-playbook setup-dns.yml ``` + +## Setup User `dev` + +- Create a new `hosts.ini` file: + + ```bash + cp ../hosts.example.ini hosts.ini + ``` + +- Edit the [`hosts.ini`](./hosts.ini) file to run the playbook on a remote machine: + + ```ini + [deployment_host] + ansible_host= ansible_user= ansible_ssh_common_args='-o ForwardAgent=yes' + ``` + + - Replace `` with the desired `hostname` of the remote machine + - Replace `` with the IP address or hostname of the target machine + - Replace `` with `root` + +- Verify that you are able to connect to the host using the following command: + + ```bash + ansible all -m ping -i hosts.ini -k + + # Expected output: + + # | SUCCESS => { + # "ansible_facts": { + # "discovered_interpreter_python": "/usr/bin/python3.10" + # }, + # "changed": false, + # "ping": "pong" + # } + ``` + +- Execute the `setup-user.yml` Ansible playbook to create a user `dev` with sudo permissions: + + ```bash + ansible-playbook setup-user.yml -i hosts.ini --extra-vars='{ "target_host": "deployment_host" }' + ``` diff --git a/service-provider-setup/setup-user.yml b/service-provider-setup/setup-user.yml index f0f2e11..cfb17db 100644 --- a/service-provider-setup/setup-user.yml +++ b/service-provider-setup/setup-user.yml @@ -78,23 +78,23 @@ - /var/lib/snapd become: yes - - name: Create a user named 'so' + - name: Create a user `dev` user: - name: so + name: dev password: "{{ 'so-service-provider' | password_hash('sha512') }}" shell: /bin/zsh state: present - - name: Add 'so' user to sudoers group + - name: Add dev' user to sudoers group user: - name: so + name: dev groups: sudo append: yes - - name: Ensure .ssh directory exists for 'so' user + - name: Ensure .ssh directory exists for 'dev' user file: - path: /home/so/.ssh + path: /home/dev/.ssh state: directory - owner: so - group: so + owner: dev + group: dev mode: '0700'