Ales Komarek
8 years ago
3 changed files with 25 additions and 12 deletions
+ 14
- 3
salt/files/_acl.conf
View File
| {%- from "salt/map.jinja" import master with context %} | |||||
| peer: | |||||
| .*: | |||||
| - x509.sign_remote_certificate | |||||
| {%- if master.user is defined %} | |||||
| external_auth: | |||||
| pam: | |||||
| {%- for user_name, user in master.user.iteritems() %} | |||||
| {{ user_name }}: {{ user.permissions|yaml }} | |||||
| {%- endfor %} | |||||
| {%- endif %} | |||||
| {#- | |||||
| vim: syntax=jinja | |||||
| -#} |
+ 0
- 9
salt/files/master.conf
View File
| {%- endif %} | {%- endif %} | ||||
| {%- if master.user is defined %} | |||||
| client_acl: | |||||
| {%- for user_name, user in master.user.iteritems() %} | |||||
| {{ user_name }}: {{ user.permissions|yaml }} | |||||
| {%- endfor %} | |||||
| {%- endif %} | |||||
| {%- for handler in pillar.salt.minion.get("handlers", []) %} | {%- for handler in pillar.salt.minion.get("handlers", []) %} | ||||
| {%- if handler.engine == "udp"%} | {%- if handler.engine == "udp"%} |
+ 11
- 0
salt/master/service.sls
View File
| {%- if master.peer is defined %} | {%- if master.peer is defined %} | ||||
| /etc/salt/master.d/_acl.conf: | |||||
| file.managed: | |||||
| - source: salt://salt/files/_acl.conf | |||||
| - user: root | |||||
| - template: jinja | |||||
| - require: | |||||
| - {{ master.install_state }} | |||||
| - watch_in: | |||||
| - service: salt_master_service | |||||
| /etc/salt/master.d/_peer.conf: | /etc/salt/master.d/_peer.conf: | ||||
| file.managed: | file.managed: | ||||
| - source: salt://salt/files/_peer.conf | - source: salt://salt/files/_peer.conf | ||||
| - watch_in: | - watch_in: | ||||
| - service: salt_master_service | - service: salt_master_service | ||||
| {%- endif %} | {%- endif %} | ||||
| salt_master_service: | salt_master_service: |
Loading…