From 3c7182bed0cf828ded9517e3df53e96904c1acbd Mon Sep 17 00:00:00 2001
From: Cian Hatton <cianhatton@gmail.com>
Date: Wed, 7 Sep 2022 15:26:10 +0100
Subject: [PATCH] adding sources list and sudoers

---
 roles/bootstrap/files/sources_list    |  8 ++++++++
 roles/bootstrap/files/sudoer_ansible  |  1 -
 roles/bootstrap/tasks/main.yml        | 19 +++++++++++++++----
 roles/bootstrap/templates/sudoer_file |  1 +
 4 files changed, 24 insertions(+), 5 deletions(-)
 create mode 100644 roles/bootstrap/files/sources_list
 delete mode 100644 roles/bootstrap/files/sudoer_ansible
 create mode 100644 roles/bootstrap/templates/sudoer_file

diff --git a/roles/bootstrap/files/sources_list b/roles/bootstrap/files/sources_list
new file mode 100644
index 0000000..4209473
--- /dev/null
+++ b/roles/bootstrap/files/sources_list
@@ -0,0 +1,8 @@
+deb http://deb.debian.org/debian bullseye main
+deb-src http://deb.debian.org/debian bullseye main
+
+deb http://deb.debian.org/debian-security/ bullseye-security main
+deb-src http://deb.debian.org/debian-security/ bullseye-security main
+
+deb http://deb.debian.org/debian bullseye-updates main
+deb-src http://deb.debian.org/debian bullseye-updates main
diff --git a/roles/bootstrap/files/sudoer_ansible b/roles/bootstrap/files/sudoer_ansible
deleted file mode 100644
index 9888393..0000000
--- a/roles/bootstrap/files/sudoer_ansible
+++ /dev/null
@@ -1 +0,0 @@
-ansible ALL=(ALL) NOPASSWD: ALL
diff --git a/roles/bootstrap/tasks/main.yml b/roles/bootstrap/tasks/main.yml
index ca8cdbd..48ce1da 100644
--- a/roles/bootstrap/tasks/main.yml
+++ b/roles/bootstrap/tasks/main.yml
@@ -1,4 +1,12 @@
 ---
+- name: Add sources list
+  ansible.builtin.copy:
+    src: sources_list
+    dest: /etc/apt/sources.list
+    owner: root
+    group: root
+    mode: 0440
+
 - name: Update Packages
   ansible.builtin.apt:
     upgrade: dist
@@ -16,10 +24,13 @@
     state: present
     key: "{{ lookup('file', '~/.ssh/ansible.pub') }}"
 
-- name: Add sudoers file for ansible
-  ansible.builtin.copy:
-    src: sudoer_ansible
-    dest: /etc/sudoers.d/ansible
+- name: Add sudoers files
+  ansible.builtin.template:
+    src: sudoer_file
+    dest: "/etc/sudoers.d/{{ item }}"
     owner: root
     group: root
     mode: 0440
+  with_items:
+    - ansible
+    - cianhatton
diff --git a/roles/bootstrap/templates/sudoer_file b/roles/bootstrap/templates/sudoer_file
new file mode 100644
index 0000000..43a250a
--- /dev/null
+++ b/roles/bootstrap/templates/sudoer_file
@@ -0,0 +1 @@
+{{ item }} ALL=(ALL) NOPASSWD: ALL