[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
02/03: hydra: berlin-new-build-machine-os: Add sudoers config.
|
From: |
Maxim Cournoyer |
|
Subject: |
02/03: hydra: berlin-new-build-machine-os: Add sudoers config. |
|
Date: |
Thu, 16 Jun 2022 13:55:13 -0400 (EDT) |
apteryx pushed a commit to branch master
in repository maintenance.
commit 5febef17276ff035390b6d430784d9bb733ada81
Author: Maxim Cournoyer <maxim.cournoyer@gmail.com>
AuthorDate: Thu Jun 16 11:38:35 2022 -0400
hydra: berlin-new-build-machine-os: Add sudoers config.
* hydra/modules/sysadmin/build-machines.scm
(berlin-new-build-machine-os) [sudoers-file]: New field.
---
hydra/modules/sysadmin/build-machines.scm | 9 ++++++++-
hydra/modules/sysadmin/people.scm | 1 +
2 files changed, 9 insertions(+), 1 deletion(-)
diff --git a/hydra/modules/sysadmin/build-machines.scm
b/hydra/modules/sysadmin/build-machines.scm
index 7b89eb5..d291830 100644
--- a/hydra/modules/sysadmin/build-machines.scm
+++ b/hydra/modules/sysadmin/build-machines.scm
@@ -295,6 +295,13 @@ Match Address 141.80.167.131
(list "--max-jobs"
(number->string max-jobs)
"--cores"
- (number->string max-cores)))))))))))
+ (number->string max-cores)))))))))
+ ;; Allow sysadmins to use 'sudo' without a password so they can
+ ;; 'guix deploy' these machines as their own user.
+ (sudoers-file
+ (plain-file "sudoers"
+ (string-append (plain-file-content %sudoers-specification)
+ (format #f "~{~a ALL = NOPASSWD: ALL~%~}"
+ (map sysadmin-name sysadmins)))))))
;;; build-machines.scm end here
diff --git a/hydra/modules/sysadmin/people.scm
b/hydra/modules/sysadmin/people.scm
index 6d2a862..f9db51e 100644
--- a/hydra/modules/sysadmin/people.scm
+++ b/hydra/modules/sysadmin/people.scm
@@ -25,6 +25,7 @@
#:use-module (ice-9 match)
#:export (sysadmin?
sysadmin
+ sysadmin-name
sysadmin-service-type))
;;; Commentary: