From 07281e9e49b87d8cace6caace38904978e96c39c Mon Sep 17 00:00:00 2001
From: Kevin Veen-Birkenbach <kevin@veen.world>
Date: Fri, 25 Dec 2020 15:38:42 +0100
Subject: [PATCH] sudo rights for administrator without password and copying of
 authorized keyes

---
 roles/native-sudo/tasks/main.yml               |  2 +-
 roles/native-user-administrator/tasks/main.yml | 15 ++++++++++++++-
 2 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/roles/native-sudo/tasks/main.yml b/roles/native-sudo/tasks/main.yml
index 659b3779..06f0134f 100644
--- a/roles/native-sudo/tasks/main.yml
+++ b/roles/native-sudo/tasks/main.yml
@@ -4,7 +4,7 @@
 - name: create sudoers
   template: src=sudoers dest=/etc/sudoers
 
-- name: ensure group "sudo" exists
+- name: insure group "sudo" exists
   group:
     name: sudo
     state: present
diff --git a/roles/native-user-administrator/tasks/main.yml b/roles/native-user-administrator/tasks/main.yml
index 0f50ff98..4a7098fc 100644
--- a/roles/native-user-administrator/tasks/main.yml
+++ b/roles/native-user-administrator/tasks/main.yml
@@ -4,4 +4,17 @@
     generate_ssh_key: yes
     ssh_key_bits: 4096
     ssh_key_file: .ssh/id_rsa
-    group: sudo
+    group: administrator
+
+- name: create /home/administrator/.ssh/authorized_keys
+  copy:
+    src: "{{ inventory_dir }}/files/{{ inventory_hostname }}/home/administrator/.ssh/authorized_keys"
+    dest: /home/administrator/.ssh/authorized_keys
+    owner: administrator
+    group: administrator
+    mode: '0644'
+
+- name: grant administrator sudo rights without password
+  copy:
+    content: '%administrator ALL=(ALL) NOPASSWD: ALL'
+    dest: /etc/sudoers.d/administrator