Create systemd unit to create rke user

files/rke_setup/etc/sudoers.d/99_rke2

@@ -0,0 +1,3 @@
+Cmnd_Alias RKE_CMDS = /usr/bin/chown, /usr/bin/chmod, /usr/bin/mkdir, /usr/bin/systemctl, /usr/bin/cp, /usr/bin/find, /usr/bin/ls, /usr/bin/reboot, /usr/bin/install, /usr/bin/rke2, /usr/bin/firewall-cmd
+
+rke ALL=(root) NOPASSWD: RKE_CMDS

files/rke_setup/usr/lib/systemd/system/create_rke_user.service

@@ -0,0 +1,16 @@
+[Unit]
+Description=Create 'rke' user and add to docker group
+After=network.target
+
+[Service]
+Type=oneshot
+ExecStart=/usr/libexec/rke2/create-rke-user.sh
+RemainAfterExit=yes
+
+# Disable and mask the service after successful execution
+ExecStartPost=-/bin/systemctl disable --now create-rke-user.service
+ExecStartPost=-/bin/systemctl mask --now create-rke-user.service
+
+[Install]
+WantedBy=multi-user.target
+

files/rke_setup/usr/libexec/rke2/create_rke_user.sh

@@ -0,0 +1,15 @@
+#!/bin/bash
+
+# Check if user 'rke' exists
+if ! id -u rke &> /dev/null; then
+    echo "Creating user 'rke'"
+    # Create user 'rke' with home directory using useradd
+    sudo useradd --system -m rke
+fi
+
+# Add 'rke' to docker group
+echo "Adding 'rke' to docker group"
+sudo usermod -aG docker rke
+
+echo "Done"
+exit 0

recipes/common/jp-minis.yml

@@ -1,7 +1,6 @@
 modules:
   - from-file: common/common.yml
   - type: dnf
-    # source: local
     repos:
       cleanup: true
       files:
@@ -27,10 +26,16 @@ modules:
   - type: script
     snippets:
       - curl -sfL https://get.rke2.io | sh
+      - sed -i 's|#includedir /etc/sudoers.d|includedir /etc/sudoers.d|' /etc/sudoers
+  - type: files
+    files:
+      - source: rke_setup
+        destination: /
   - type: systemd
     system:
       enabled:
       - docker.service
+      - create_rke_user.service
   - from-file: common/updates.yml
   - from-file: common/bluebuild-logo.yml
   - from-file: common/jp-chezmoi.yml