ExternalMirrors
/
linux-formula
mirror of https://github.com/salt-formulas/salt-formula-linux
Watch 1
Star 0
Fork 1
Code Issues 0 Releases 8 Wiki Activity
Saltstack Official Linux Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
326 Commits
26 Branches
Branch: feature/network_systemd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'feature/network_systemd'
${ noResults }
linux-formula/linux/system/user.sls

87 lines
1.8KB
Raw Permalink Blame History 

  1. {%- from "linux/map.jinja" import system with context %}

  2. {%- if system.enabled %}

  3. 

  4. {%- for name, user in system.user.iteritems() %}

  5. 

  6. {%- if user.enabled %}

  7. 

  8. {%- set requires = [] %}

  9. {%- for group in user.get('groups', []) %}

  10.   {%- if group in system.get('group', {}).keys() %}

  11.     {%- do requires.append({'group': 'system_group_'+group}) %}

  12.   {%- endif %}

  13. {%- endfor %}

  14. 

  15. 

  16. system_user_{{ name }}:

  17.   user.present:

  18.   - name: {{ name }}

  19.   - home: {{ user.home }}

  20.   {%- if user.password is defined %}

  21.   - password: {{ user.password }}

  22.   - enforce_password: true

  23.   - gid_from_name: true

  24.   {%- endif %}

  25.   {%- if user.groups is defined %}

  26.   - groups: {{ user.groups }}

  27.   {%- endif %}

  28.   {%- if user.system is defined and user.system %}

  29.   - system: True

  30.   {%- else %}

  31.   - shell: {{ user.get('shell', '/bin/bash') }}

  32.   {%- endif %}

  33.   {%- if user.uid is defined and user.uid %}

  34.   - uid: {{ user.uid }}

  35.   {%- endif %}

  36.   - require: {{ requires|yaml }}

  37. 

  38. system_user_home_{{ user.home }}:

  39.   file.directory:

  40.   - name: {{ user.home }}

  41.   - user: {{ name }}

  42.   - mode: 700

  43.   - makedirs: true

  44.   - require:

  45.     - user: system_user_{{ name }}

  46. 

  47. {%- if user.get('sudo', False) %}

  48. 

  49. /etc/sudoers.d/90-salt-user-{{ name|replace('.', '-') }}:

  50.   file.managed:

  51.   - source: salt://linux/files/sudoer

  52.   - template: jinja

  53.   - user: root

  54.   - group: root

  55.   - mode: 440

  56.   - defaults:

  57.     user_name: {{ name }}

  58.   - require:

  59.     - user: system_user_{{ name }}

  60.   - check_cmd: /usr/sbin/visudo -c -f

  61. 

  62. {%- else %}

  63. 

  64. /etc/sudoers.d/90-salt-user-{{ name|replace('.', '-') }}:

  65.   file.absent

  66.   

  67. {%- endif %}

  68. 

  69. {%- else %}

  70. 

  71. system_user_{{ name }}:

  72.   user.absent:

  73.   - name: {{ name }}

  74. 

  75. system_user_home_{{ user.home }}:

  76.   file.absent:

  77.   - name: {{ user.home }}

  78. 

  79. /etc/sudoers.d/90-salt-user-{{ name|replace('.', '-') }}:

  80.   file.absent

  81. 

  82. {%- endif %}

  83. 

  84. {%- endfor %}

  85. 

  86. {%- endif %}