Browse Source
Set user shell even if user is system
linux/system/user.sls ignores 'shell' option if a user is system. This is quite strange behavior, and it breaks CIS: * 5.4.2 Ensure system accounts are non-login Change-Id: I32dd44ac4fcc1425ea47eb4cf60acf41f6ce0887 Related-Prod: PROD-20764pull/168/head
Dmitry Teselkin
6 years ago
1 changed files with 1 additions and 0 deletions
+ 1
- 0
linux/system/user.sls
View File
| {%- endif %} | {%- endif %} | ||||
| {%- if user.system is defined and user.system %} | {%- if user.system is defined and user.system %} | ||||
| - system: True | - system: True | ||||
| - shell: {{ user.get('shell', '/bin/false') }} | |||||
| {%- else %} | {%- else %} | ||||
| - shell: {{ user.get('shell', '/bin/bash') }} | - shell: {{ user.get('shell', '/bin/bash') }} | ||||
| {%- endif %} | {%- endif %} |
Loading…