Browse Source

Merge pull request #168 from konstest/master

Support "salt://path_to_keyname" ssh_key definition in users:"user name":ssh_keys:"privkey|pubkey" pillar data
tags/v0.45.0
N 6 years ago
parent
commit
839058b851
No account linked to committer's email address
2 changed files with 8 additions and 0 deletions
  1. +3
    -0
      pillar.example
  2. +5
    -0
      users/init.sls

+ 3
- 0
pillar.example View File

@@ -57,6 +57,9 @@ users:
ssh_keys:
privkey: PRIVATEKEY
pubkey: PUBLICKEY
# or you can provide path to key on Salt fileserver
privkey: salt://path_to_PRIVATEKEY
pubkey: salt://path_to_PUBLICKEY
# you can provide multiple keys, the keyname is taken as filename
# make sure your public keys suffix is .pub
foobar: PRIVATEKEY

+ 5
- 0
users/init.sls View File

@@ -195,7 +195,12 @@ users_{{ name }}_{{ key_name }}_key:
- mode: 600
{% endif %}
- show_diff: False
{%- set key_value = salt['pillar.get']('users:'+name+':ssh_keys:'+_key) %}
{%- if 'salt://' in key_value[:7] %}
- source: {{ key_value }}
{%- else %}
- contents_pillar: users:{{ name }}:ssh_keys:{{ _key }}
{%- endif %}
- require:
- user: users_{{ name }}_user
{% for group in user.get('groups', []) %}

Loading…
Cancel
Save