From d6704cc2514c6332eff7408842f03ac7bc27b842 Mon Sep 17 00:00:00 2001
From: Bradley Bickford <bradleybickford@gmail.com>
Date: Sat, 21 Sep 2024 12:26:45 -0400
Subject: [PATCH] Initial commit

---
 inventories/kubernetes          |  6 ++++++
 playbooks/make_ansible_user.yml | 28 ++++++++++++++++++++++++++++
 2 files changed, 34 insertions(+)
 create mode 100644 inventories/kubernetes
 create mode 100644 playbooks/make_ansible_user.yml

diff --git a/inventories/kubernetes b/inventories/kubernetes
new file mode 100644
index 0000000..a6263d7
--- /dev/null
+++ b/inventories/kubernetes
@@ -0,0 +1,6 @@
+[masters]
+KubeMaster ansible_host=192.168.100.2
+
+[workers]
+KubeWorker1 ansible_host=192.168.100.3
+KubeWorker2 ansible_host=192.168.100.4
\ No newline at end of file
diff --git a/playbooks/make_ansible_user.yml b/playbooks/make_ansible_user.yml
new file mode 100644
index 0000000..bc9e0c9
--- /dev/null
+++ b/playbooks/make_ansible_user.yml
@@ -0,0 +1,28 @@
+---
+- hosts: all
+  become: true
+  tasks:
+    - name: Create the ansible user
+      ansible.builtin.user:
+        name: ansible
+        append: true
+        state: present
+        createhome: true
+        shell: /bin/bash
+
+    - name: Make sure the sudoers dropin directory exists
+      ansible.builtin.file:
+        path: "/etc/sudoers.d"
+        state: directory
+
+    - name: Create a sudoers file for the ansible user
+      ansible.builtin.lineinfile:
+        path: "/etc/sudoers.d/50-ansible"
+        line: "ansible ALL=(ALL) NOPASSWD: ALL"
+        validate: "visudo -cf"
+      
+    - name: Add authorized key for ansible user
+      ansible.builtin.authorized_key:
+        user: ansible
+        key: "{{ lookup('ansible.builtin.file', '/home/ansible/.ssh/id_rsa.pub') }}"
+