From d3b36fa4cbf3e6d5e7053585382c4811b97a3c94 Mon Sep 17 00:00:00 2001
From: Simon Cornet <simon@simoncor.net>
Date: Thu, 19 Dec 2024 16:38:59 +0100
Subject: [PATCH] [usermanagement] feat: allow drone to use git, kubectl and
 helm on mgmt

---
 templates/usermanagement/sudoers.d/sudoers.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/templates/usermanagement/sudoers.d/sudoers.j2 b/templates/usermanagement/sudoers.d/sudoers.j2
index 32ae28b..f7a40e8 100644
--- a/templates/usermanagement/sudoers.d/sudoers.j2
+++ b/templates/usermanagement/sudoers.d/sudoers.j2
@@ -7,6 +7,9 @@ drone ansible.siempie.internal=(root) NOPASSWD:/usr/local/bin/ansible-playbook *
 {% endif %}
 {% if inventory_hostname == 'mgmt01.infra.vpn.mirahsimon.us' %}
 drone mgmt01.siempie.internal=(simon) NOPASSWD:/usr/local/bin/kubectl *
+drone mgmt01.siempie.internal=(root) NOPASSWD:/usr/local/bin/kubectl *
+drone mgmt01.siempie.internal=(root) NOPASSWD:/usr/local/bin/helm *
+drone mgmt01.siempie.internal=(root) NOPASSWD:/usr/bin/git *
 {% endif %}
 {% if inventory_hostname == 'packer.siempie.internal' %}
 drone packer.siempie.internal=(root) NOPASSWD:/usr/bin/git -C /mnt/packer *