initial commit

3 files changed, 8 insertions, 0 deletions

diff --git a/roles/polkit/defaults/main.yml b/roles/polkit/defaults/main.yml
new file mode 100644
index 0000000..ad5d8e0
--- /dev/null
+++ b/roles/polkit/defaults/main.yml
@@ -0,0 +1 @@
+polkit_admin_group: wheel
diff --git a/roles/polkit/tasks/main.yml b/roles/polkit/tasks/main.yml
new file mode 100644
index 0000000..d9e74a0
--- /dev/null
+++ b/roles/polkit/tasks/main.yml
@@ -0,0 +1,4 @@
+- name: generate default polkit rules
+  template:
+    src: etc/polkit-1/rules.d/40-default.rules.j2
+    dest: /etc/polkit-1/rules.d/40-default.rules
diff --git a/roles/polkit/templates/etc/polkit-1/rules.d/40-default.rules.j2 b/roles/polkit/templates/etc/polkit-1/rules.d/40-default.rules.j2
new file mode 100644
index 0000000..489b7af
--- /dev/null
+++ b/roles/polkit/templates/etc/polkit-1/rules.d/40-default.rules.j2
@@ -0,0 +1,3 @@
+polkit.addAdminRule(function(action, subject) {
+    return ["unix-group:{{ polkit_admin_group }}"];
+});