de-it-krachten/ansible-role-sudo
1
0
Fork 0
mirror of https://github.com/de-it-krachten/ansible-role-sudo synced 2026-05-14 03:51:43 +00:00
Code Issues Projects Releases Packages Wiki Activity
No description
30 commits 2 branches 5 tags 80 KiB
  • Jinja 100%
Find a file
Exact
semantic-release-bot edc99b7273 chore(release): 1.4.0 [skip ci] 
# [1.4.0](https://github.com/de-it-krachten/ansible-role-sudo/compare/v1.3.0...v1.4.0) (2026-03-15)

### Features

* Added support for Fedora 43 ([fbc238f](fbc238f0af))
* Drop support for Fedora 41 ([cfbee42](cfbee42fbd))
* Drop support for openSUSE Leap 15 ([5703488](5703488fc4))
* Drop support for SUSE Linux Enterprise 15 ([8101515](81015157df))
2026-03-15 11:41:17 +00:00
.github/workflows Update CI 2026-03-14 20:03:49 +01:00
defaults Initial commit 2024-01-19 22:10:45 +01:00
meta Update CI 2026-03-14 20:03:49 +01:00
molecule/default Update CI 2026-03-14 20:03:49 +01:00
tasks Initial commit 2024-01-19 22:10:45 +01:00
.ansible-lint Initial commit 2024-01-19 22:10:45 +01:00
.cicd Update CI 2026-03-07 01:05:38 +01:00
.cicd.overwrite Update CI 2026-03-14 20:03:49 +01:00
.collections Activate harding with molecule 2024-01-19 23:14:30 +01:00
.gitignore feat: Update supported platforms & CI 2024-12-29 13:05:43 +01:00
.releaserc.yml Update CI 2026-03-07 01:05:38 +01:00
.roles Initial commit 2024-01-19 22:10:45 +01:00
.yamllint feat: Update supported platforms & CI 2024-12-29 13:05:43 +01:00
CHANGELOG.md chore(release): 1.4.0 [skip ci] 2026-03-15 11:41:17 +00:00
README.md Update CI 2026-03-14 20:03:49 +01:00

README.md

CI

ansible-role-sudo

Installs/configures sudo with optional hardening

Dependencies

Roles

None

Collections

None

Platforms

Supported platforms

  • Red Hat Enterprise Linux 81
  • Red Hat Enterprise Linux 91
  • Red Hat Enterprise Linux 101
  • RockyLinux 8
  • RockyLinux 9
  • RockyLinux 10
  • OracleLinux 8
  • OracleLinux 9
  • OracleLinux 10
  • AlmaLinux 8
  • AlmaLinux 9
  • AlmaLinux 10
  • Debian 11 (Bullseye)
  • Debian 12 (Bookworm)
  • Debian 13 (Trixie)
  • Ubuntu 20.04 LTS
  • Ubuntu 22.04 LTS
  • Ubuntu 24.04 LTS
  • Fedora 42
  • Fedora 43

Note: 1 : no automated testing is performed on these platforms

Role Variables

defaults/main.yml


# List of audi packages
sudo_packages:
  - sudo

# Sudo log file
sudo_logfile: /var/log/sudo.log

# Timeout before re-authentication
sudo_timestamp_timeout: 5

# Perform sudo hardening rules (CIS1/2)
sudo_hardening: false

Example Playbook

molecule/default/converge.yml


- name: sample playbook for role 'sudo'
  hosts: all
  become: 'yes'
  vars:
    molecule_driver: '{{ lookup(''env'', ''MOLECULE_DRIVER_NAME'') }}'
    sudo_hardening: true
  tasks:
    - name: Include role 'sudo'
      ansible.builtin.include_role:
        name: sudo