Refactored docker roles

roles/server_user-administrator/Readme.md

@@ -0,0 +1,6 @@
+# Role Administrator
+This role creates an standard administrator user.
+This user needs to type in his password before executing sudo.
+For security reasons it's recommended to use this user instead of the standard root user.
+This user should not be used to login to other systems. It's just there to let administration tasks run.
+For this reason no ssh-keys are generated.

roles/server_user-administrator/files/administrator

@@ -0,0 +1 @@
+administrator ALL=(ALL) ALL

roles/server_user-administrator/meta/main.yml

@@ -0,0 +1,3 @@
+dependencies:
+- server_native-sudo
+- independent_user-administrator

roles/server_user-administrator/tasks/main.yml

@@ -0,0 +1,24 @@
+- name: create /home/administrator/.ssh/authorized_keys
+  copy:
+    src: "{{ inventory_dir }}/files/{{ inventory_hostname }}/home/administrator/.ssh/authorized_keys"
+    dest: /home/administrator/.ssh/authorized_keys
+    owner: administrator
+    group: administrator
+    mode: '0644'
+
+- name: grant administrator sudo rights with password
+  copy:
+    src: "administrator"
+    dest: /etc/sudoers.d/administrator
+    mode: '0644'
+    owner: root
+    group: root
+  notify: sshd restart
+
+- name: "create /home/administrator/volumes/"
+  file:
+    path: "/home/administrator/volumes"
+    state: directory
+    owner: administrator
+    group: administrator
+    mode: 0700