From f4d67bee86e5e1ef47bd0c632de12ce05d039d5f Mon Sep 17 00:00:00 2001
From: Vezpi <etienne.girault@gmail.com>
Date: Fri, 12 Dec 2025 20:45:24 +0000
Subject: [PATCH] add: proxmox project with terraform_user.yml

---
 .../{ => ansiform}/inventories/terraform.yml  |  0
 .../{ => ansiform}/playbooks/deploy_tf.yml    |  0
 .../playbooks/install_nginx.yml               |  0
 .../roles/terraform_vm/defaults/main.yml      |  0
 .../roles/terraform_vm/tasks/main.yml         |  0
 ansible/proxmox/terraform_user.yml            | 20 +++++++++++++++++++
 6 files changed, 20 insertions(+)
 rename ansible/{ => ansiform}/inventories/terraform.yml (100%)
 rename ansible/{ => ansiform}/playbooks/deploy_tf.yml (100%)
 rename ansible/{ => ansiform}/playbooks/install_nginx.yml (100%)
 rename ansible/{ => ansiform}/roles/terraform_vm/defaults/main.yml (100%)
 rename ansible/{ => ansiform}/roles/terraform_vm/tasks/main.yml (100%)
 create mode 100644 ansible/proxmox/terraform_user.yml

diff --git a/ansible/inventories/terraform.yml b/ansible/ansiform/inventories/terraform.yml
similarity index 100%
rename from ansible/inventories/terraform.yml
rename to ansible/ansiform/inventories/terraform.yml
diff --git a/ansible/playbooks/deploy_tf.yml b/ansible/ansiform/playbooks/deploy_tf.yml
similarity index 100%
rename from ansible/playbooks/deploy_tf.yml
rename to ansible/ansiform/playbooks/deploy_tf.yml
diff --git a/ansible/playbooks/install_nginx.yml b/ansible/ansiform/playbooks/install_nginx.yml
similarity index 100%
rename from ansible/playbooks/install_nginx.yml
rename to ansible/ansiform/playbooks/install_nginx.yml
diff --git a/ansible/roles/terraform_vm/defaults/main.yml b/ansible/ansiform/roles/terraform_vm/defaults/main.yml
similarity index 100%
rename from ansible/roles/terraform_vm/defaults/main.yml
rename to ansible/ansiform/roles/terraform_vm/defaults/main.yml
diff --git a/ansible/roles/terraform_vm/tasks/main.yml b/ansible/ansiform/roles/terraform_vm/tasks/main.yml
similarity index 100%
rename from ansible/roles/terraform_vm/tasks/main.yml
rename to ansible/ansiform/roles/terraform_vm/tasks/main.yml
diff --git a/ansible/proxmox/terraform_user.yml b/ansible/proxmox/terraform_user.yml
new file mode 100644
index 0000000..a2098ff
--- /dev/null
+++ b/ansible/proxmox/terraform_user.yml
@@ -0,0 +1,20 @@
+---
+- name: Create Terraform local user for Proxmox
+  hosts: nodes
+  become: true
+  tasks:
+  
+    - name: Create terraform user
+      ansible.builtin.user:
+        name: "{{ terraform_user }}"
+        password: "{{ terraform_password | password_hash('sha512') }}"
+        shell: /bin/bash
+
+    - name: Create sudoers file for terraform user
+      ansible.builtin.copy:
+        dest: /etc/sudoers.d/{{ terraform_user }}
+        mode: '0440'
+        content: |
+          {{ terraform_user }} ALL=(root) NOPASSWD: /sbin/pvesm
+          {{ terraform_user }} ALL=(root) NOPASSWD: /sbin/qm
+          {{ terraform_user }} ALL=(root) NOPASSWD: /usr/bin/tee /var/lib/vz/*
\ No newline at end of file