Saltstack Official OpenSSH Formula

51 lines
1.3KB

  1. {% from "openssh/map.jinja" import openssh with context %}
  2. openssh:
  3. pkg.installed:
  4. - name: {{ openssh.server }}
  5. service.running:
  6. - enable: True
  7. - name: {{ openssh.service }}
  8. - require:
  9. - pkg: {{ openssh.server }}
  10. {% if salt['pillar.get']('openssh:provide_dsa_keys', False) %}
  11. - file: /etc/ssh/ssh_host_dsa_key
  12. - file: /etc/ssh/ssh_host_dsa_key.pub
  13. {% endif %}
  14. {% if salt['pillar.get']('openssh:provide_rsa_keys', False) %}
  15. - file: /etc/ssh/ssh_host_rsa_key
  16. - file: /etc/ssh/ssh_host_rsa_key.pub
  17. {% endif %}
  18. {% if salt['pillar.get']('openssh:provide_dsa_keys', False) %}
  19. ssh_host_dsa_key:
  20. file.managed:
  21. - name: /etc/ssh/ssh_host_dsa_key
  22. - contents_pillar: 'openssh:dsa:private_key'
  23. - user: root
  24. - mode: 600
  25. ssh_host_dsa_key.pub:
  26. file.managed:
  27. - name: /etc/ssh/ssh_host_dsa_key.pub
  28. - contents_pillar: 'openssh:dsa:public_key'
  29. - user: root
  30. - mode: 600
  31. {% endif %}
  32. {% if salt['pillar.get']('openssh:provide_rsa_keys', False) %}
  33. ssh_host_rsa_key:
  34. file.managed:
  35. - name: /etc/ssh/ssh_host_rsa_key
  36. - contents_pillar: 'openssh:rsa:private_key'
  37. - user: root
  38. - mode: 600
  39. ssh_host_rsa_key.pub:
  40. file.managed:
  41. - name: /etc/ssh/ssh_host_rsa_key.pub
  42. - contents_pillar: 'openssh:rsa:public_key'
  43. - user: root
  44. - mode: 600
  45. {% endif %}