Pārlūkot izejas kodu

Merge pull request #38 from aboe76/remove_host_key_via_pillar

Add option to remove ssh_host_keys
tags/v0.41.0
Forrest pirms 9 gadiem
vecāks
revīzija
f15a112e13
2 mainītis faili ar 13 papildinājumiem un 0 dzēšanām
  1. +9
    -0
      openssh/config.sls
  2. +4
    -0
      pillar.example

+ 9
- 0
openssh/config.sls Parādīt failu

@@ -21,6 +21,15 @@ ssh_generate_host_{{ keyType }}_key:
- creates: /etc/ssh/ssh_host_{{ keyType }}_key
- user: root

{% elif salt['pillar.get']('openssh:absent_' ~ keyType ~ '_keys', False) %}
ssh_host_{{ keyType }}_key:
file.absent:
- name: /etc/ssh/ssh_host_{{ keyType }}_key

ssh_host_{{ keyType }}_key.pub:
file.absent:
- name: /etc/ssh/ssh_host_{{ keyType }}_key.pub

{% elif salt['pillar.get']('openssh:provide_' ~ keyType ~ '_keys', False) %}
ssh_host_{{ keyType }}_key:
file.managed:

+ 4
- 0
pillar.example Parādīt failu

@@ -65,6 +65,7 @@ openssh:
comment: obsolete key - removed

generate_dsa_keys: False
absent_dsa_keys: False
provide_dsa_keys: False
dsa:
private_key: |
@@ -75,6 +76,7 @@ openssh:
ssh-dss NOT_DEFINED

generate_ecdsa_keys: False
absent_ecdsa_keys: False
provide_ecdsa_keys: False
ecdsa:
private_key: |
@@ -85,6 +87,7 @@ openssh:
ecdsa-sha2-nistp256 NOT_DEFINED

generate_rsa_keys: False
absent_rsa_keys: False
provide_rsa_keys: False
rsa:
private_key: |
@@ -95,6 +98,7 @@ openssh:
ssh-rsa NOT_DEFINED

generate_ed25519_keys: False
absent_ed25519_keys: False
provide_ed25519_keys: False
ed25519:
private_key: |

Notiek ielāde…
Atcelt
Saglabāt