2018-10-15 05:46:16 +00:00
# Must keep roles/0-init/defaults/main.yml sync'd ? (Seems no longer true as of 2018-10-15)
2017-05-27 18:09:50 +00:00
2018-10-15 07:42:04 +00:00
# Set iiab_admin_user_install: False if you don't want iiab_admin_user & wheel
# group auto-created in roles/iiab-admin/tasks/main.yml (hence disabling sudo-
# checks/warnings of published passwds like pi/raspberry & iiab-admin/g0adm1n).
2019-03-08 00:43:31 +00:00
# iiab_admin_user_install: True
2018-10-15 07:42:04 +00:00
# If iiab_admin_user_install: False, set iiab_admin_user (below) to an existing
# Linux user that has sudo access, for login to Admin Console http://box/admin
2018-10-15 05:48:49 +00:00
2018-10-15 07:53:26 +00:00
# ODDLY THIS IS ALSO USED BY roles/usb-lib/tasks/main.yml TO SET GROUP PERM FOR /library/www/html/local_content (ISN'T {{ apache_user }} MORE APPROPRIATE?)
2019-03-08 00:43:31 +00:00
# iiab_admin_user: iiab-admin
2018-10-15 07:42:04 +00:00
2018-10-15 07:53:26 +00:00
# For live checks/alerts of published pwds
2019-03-08 00:43:31 +00:00
# iiab_admin_published_pwd: g0adm1n
2018-10-15 07:42:04 +00:00
# Password hash to override above, if Ansible creates above user:
2019-03-08 00:43:31 +00:00
# iiab_admin_pwd_hash: $6$xsce51$D.IrrEeLBYIuJkGDmi27pZUGOwPFp98qpl3hxMwWV4hXigFGmdSvy3s/j7tn6OnyTTLmlV7SsN0lCUAFzxSop.
2018-10-15 07:42:04 +00:00
# Obtain a password hash - NEW MORE SECURE WAY:
# python3 -c 'import crypt; print(crypt.crypt("<plaintext>", crypt.mksalt(crypt.METHOD_SHA512)))'
# Obtain a password hash - OLD WAY:
# python -c 'import crypt; print crypt.crypt("<plaintext>", "$6$<salt>")'
2019-03-08 00:43:31 +00:00
# All above are set in: github.com/iiab/iiab/blob/master/vars/default_vars.yml
# If nec, change them by editing /etc/iiab/local_vars.yml prior to installing!
