Browse Source

Add 'ssh_auth_file' pillar key to generate an authorized_keys file from given ssh public keys.

tags/v0.45.0
root 10 years ago
parent
commit
fdc2fc2dfc
2 changed files with 16 additions and 0 deletions
  1. +4
    -0
      pillar.example
  2. +12
    -0
      users/init.sls

+ 4
- 0
pillar.example View File

@@ -28,6 +28,10 @@ users:
- PUBLICKEY
ssh_auth.absent:
- PUBLICKEY_TO_BE_REMOVED
# Generates an authorized_keys file for the user
# with the given keys
ssh_auth_file:
- PUBLICKEY
google_auth:
ssh: |
SOMEGAUTHHASHVAL

+ 12
- 0
users/init.sls View File

@@ -167,6 +167,18 @@ ssh_auth_delete_{{ name }}_{{ loop.index0 }}:
{% endfor %}
{% endif %}

{% if 'ssh_auth_file' in user %}
{{ home }}/.ssh/authorized_keys:
file.managed:
- user: {{ name }}
- group: {{ name }}
- mode: 600
- contents: |
{% for auth in user.ssh_auth_file -%}
{{ auth }}
{% endfor -%}
{% endif %}

{% if 'sudouser' in user and user['sudouser'] %}

sudoer-{{ name }}:

Loading…
Cancel
Save