From 80c5b0c4365a5ac69fc28c21112981df4ad53d75 Mon Sep 17 00:00:00 2001
From: Francisco Redondo Marchena <francisco.marchena@codethink.co.uk>
Date: Tue, 18 Nov 2014 15:32:53 +0000
Subject: FIXUPME: do not write into sudoers directly but create a file in its
 folder

---
 openstack-nova.configure | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/openstack-nova.configure b/openstack-nova.configure
index ee937007..0a4d7505 100644
--- a/openstack-nova.configure
+++ b/openstack-nova.configure
@@ -66,4 +66,6 @@ sed -i "s/192\.168\.122\./192\.168\.1\./g" \
 # Add nova to sudoers controlling which commands is running as a root
 # using the openstack rootwrap.
 ##########################################################################
-echo 'nova ALL=(ALL) NOPASSWD: /usr/bin/nova-rootwrap /etc/nova/rootwrap.conf *' >> "$ROOT/etc/sudoers"
+install -D -m 0440 /proc/self/fd/0 <<'EOF' "$ROOT"/etc/sudoers.d/nova-rootwrap
+nova ALL=(root) NOPASSWD: /usr/bin/nova-rootwrap /etc/nova/rootwrap.conf *
+EOF
-- 
cgit v1.2.1