ExternalMirrors
/
users-formula
mirror of https://github.com/saltstack-formulas/users-formula
Watch 1
Star 0
Fork 1
Code Issues 0 Releases 13 Wiki Activity
Saltstack Official Users Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
512 Commits
3 Branches
Tree: 63dd7c88be
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '63dd7c88be'
${ noResults }
users-formula/users/map.jinja

112 lines
3.6KB
Raw Blame History 

  1. # vim: sts=2 ts=2 sw=2 et ai

  2. 

  3. {# import defaults.yaml as defaults #}

  4. {% import_yaml 'users/defaults.yaml' as defaults %}

  5. 

  6. {# set Os-family specific settings #}

  7. {% set users = salt['grains.filter_by'](

  8.   defaults,

  9.   merge=salt['grains.filter_by']({

  10.   'MacOS': {

  11.     'sudoers_dir': '/etc/sudoers.d',

  12.     'sudoers_file': '/etc/sudoers',

  13.     'googleauth_dir': '/etc/google_authenticator.d',

  14.     'shell': '/bin/bash',

  15.     'visudo_shell': '/bin/bash',

  16.     'bash_package': 'bash',

  17.     'sudo_package': 'sudo',

  18.     'googleauth_package': 'google-authenticator-libpam',

  19.     },

  20.   'Debian': {

  21.     'sudoers_dir': '/etc/sudoers.d',

  22.     'sudoers_file': '/etc/sudoers',

  23.     'googleauth_dir': '/etc/google_authenticator.d',

  24.     'root_group': 'root',

  25.     'shell': '/bin/bash',

  26.     'visudo_shell': '/bin/bash',

  27.     'bash_package': 'bash',

  28.     'sudo_package': 'sudo',

  29.     'googleauth_package': 'libpam-google-authenticator',

  30.     'polkit_dir': '/etc/polkit-1/localauthority.conf.d',

  31.     'polkit_defaults': 'unix-group:sudo;'

  32.   },

  33.   'RedHat': {

  34.     'sudoers_dir': '/etc/sudoers.d',

  35.     'sudoers_file': '/etc/sudoers',

  36.     'googleauth_dir': '/etc/google_authenticator.d',

  37.     'root_group': 'root',

  38.     'shell': '/bin/bash',

  39.     'visudo_shell': '/bin/bash',

  40.     'bash_package': 'bash',

  41.     'sudo_package': 'sudo',

  42.     'googleauth_package': 'google-authenticator',

  43.     'polkit_dir': '/etc/polkit-1/localauthority.conf.d',

  44.     'polkit_defaults': 'unix-group:sudo;'

  45.   },

  46.   'Gentoo': {

  47.     'sudoers_dir': '/etc/sudoers.d',

  48.     'sudoers_file': '/etc/sudoers',

  49.     'googleauth_dir': '/etc/google_authenticator.d',

  50.     'root_group': 'root',

  51.     'shell': '/bin/bash',

  52.     'visudo_shell': '/bin/bash',

  53.     'bash_package': 'app-shells/bash',

  54.     'sudo_package': 'app-admin/sudo',

  55.     'googleauth_package': 'libpam-google-authenticator',

  56.     },

  57.   'FreeBSD': {

  58.     'sudoers_dir': '/usr/local/etc/sudoers.d',

  59.     'sudoers_file': '/usr/local/etc/sudoers',

  60.     'googleauth_dir': '/usr/local/etc/google_authenticator.d',

  61.     'root_group': 'wheel',

  62.     'shell': '/bin/csh',

  63.     'visudo_shell': '/usr/local/bin/bash',

  64.     'bash_package': 'bash',

  65.     'sudo_package': 'sudo',

  66.     'googleauth_package': 'pam_google_authenticator',

  67.     },

  68.   'OpenBSD': {

  69.     'sudoers_dir': '/etc/sudoers.d',

  70.     'sudoers_file': '/etc/sudoers',

  71.     'googleauth_dir': '/etc/google_authenticator.d',

  72.     'root_group': 'wheel',

  73.     'shell': '/bin/csh',

  74.     'visudo_shell': '/usr/local/bin/bash',

  75.     'bash_package': 'bash',

  76.     'sudo_package': 'sudo',

  77.     'googleauth_package': 'pam_google_authenticator',

  78.     },

  79.   'Solaris': {

  80.     'sudoers_dir': '/opt/local/etc/sudoers.d',

  81.     'sudoers_file': '/opt/local/etc/sudoers',

  82.     'googleauth_dir': '/opt/local/etc/google_authenticator.d',

  83.     'root_group': 'root',

  84.     'shell': '/bin/bash',

  85.     'visudo_shell': '/bin/bash',

  86.     'bash_package': 'bash',

  87.     'sudo_package': 'sudo',

  88.     'googleauth_package': 'libpam-google-authenticator',

  89.     },

  90.   'default': {

  91.     'sudoers_dir': '/etc/sudoers.d',

  92.     'sudoers_file': '/etc/sudoers',

  93.     'googleauth_dir': '/etc/google_authenticator.d',

  94.     'root_group': 'root',

  95.     'shell': '/bin/bash',

  96.     'visudo_shell': '/bin/bash',

  97.     'bash_package': 'bash',

  98.     'sudo_package': 'sudo',

  99.     'googleauth_package': 'libpam-google-authenticator',

  100.     'polkit_dir': '/etc/polkit-1/localauthority.conf.d',

  101.     'polkit_defaults': 'unix-group:sudo;'

  102.     },

  103.   }, merge=salt['pillar.get']('users-formula:lookup')),

  104.   base='users',

  105. ) %}

  106. 

  107. {% if grains.os == 'MacOS' %}

  108.   {% set group = salt['cmd.run']("stat -f '%Sg' /dev/console") %}

  109.   {% do users.update({'root_group': group,

  110.                       'prime_group': group}) %}

  111. {%- endif %}