From e434555c402ed6ab9661125dd080145f23235bd2 Mon Sep 17 00:00:00 2001
From: Gerald Pinder <4626052+gmpinder@users.noreply.github.com>
Date: Sun, 18 May 2025 14:03:48 -0400
Subject: [PATCH] Allow rke user to run bootc

---
 files/rke-common/etc/sudoers.d/99_rke2               | 2 +-
 files/rke-common/usr/libexec/rke2/create_rke_user.sh | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/files/rke-common/etc/sudoers.d/99_rke2 b/files/rke-common/etc/sudoers.d/99_rke2
index 60d1905..096fe7e 100644
--- a/files/rke-common/etc/sudoers.d/99_rke2
+++ b/files/rke-common/etc/sudoers.d/99_rke2
@@ -1,3 +1,3 @@
-Cmnd_Alias RKE_CMDS = /usr/bin/chown, /usr/bin/chmod, /usr/bin/mkdir, /usr/bin/systemctl, /usr/bin/cp, /usr/bin/find, /usr/bin/ls, /usr/bin/reboot, /usr/bin/install, /usr/bin/rke2, /usr/bin/firewall-cmd, /usr/bin/rm
+Cmnd_Alias RKE_CMDS = /usr/bin/chown, /usr/bin/chmod, /usr/bin/mkdir, /usr/bin/systemctl, /usr/bin/cp, /usr/bin/find, /usr/bin/ls, /usr/bin/reboot, /usr/bin/install, /usr/bin/rke2, /usr/bin/firewall-cmd, /usr/bin/rm, /usr/bin/bootc
 
 rke ALL=(root) NOPASSWD: RKE_CMDS
diff --git a/files/rke-common/usr/libexec/rke2/create_rke_user.sh b/files/rke-common/usr/libexec/rke2/create_rke_user.sh
index d85f2a2..18069f4 100755
--- a/files/rke-common/usr/libexec/rke2/create_rke_user.sh
+++ b/files/rke-common/usr/libexec/rke2/create_rke_user.sh
@@ -9,7 +9,6 @@ fi
 
 # Add 'rke' to docker group
 echo "Adding 'rke' to docker group"
-usermod -aG docker rke
-usermod -aG systemd-journal rke
+usermod -aG docker,systemd-journal,wheel rke
 
 echo "Done"