init_userconf.sh: only add line to /etc/sudoers once

zhoualbert · zhoualbert · commit ba37575e0147 · 2026-03-20T16:56:44.000+11:00
The script `init_userconf.sh` is installed into `/etc/cont-init.d/02_userconf` and will be run every time the container is started.

Currently, if the container is restarted multiple times, the line `%sudo ALL=(ALL) NOPASSWD:ALL` will be added each time the container is started.

This change checks if the line already exists and does not add it if it does.
diff --git a/scripts/init_userconf.sh b/scripts/init_userconf.sh
@@ -170,7 +170,9 @@ echo "$USER:$PASSWORD" | chpasswd
 if [ "${RUNROOTLESS}" = "true" ]; then
     echo "No sudoers changes needed when running rootless"
 elif [[ ${ROOT,,} == "true" ]]; then
-    adduser "$USER" sudo && echo '%sudo ALL=(ALL) NOPASSWD:ALL' >>/etc/sudoers
+    line='%sudo ALL=(ALL) NOPASSWD:ALL'
+    sudoers_file='/etc/sudoers'
+    adduser "$USER" sudo && { grep -qxF "$line" "$sudoers_file" || echo "$line"  >> "$sudoers_file"; }
     echo "$USER added to sudoers"
 fi
 
