salt
/
openssh-formula
forked from ExternalMirrors/openssh-formula
Watch 1
Star 0
Fork 0
Code Releases 0 Activity
Saltstack Official OpenSSH Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
252 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
openssh-formula/openssh/auth.sls

56 lines
1.7KB
Raw Permalink Blame History 

  1. {%- macro print_name(identifier, key) -%}

  2. {%- if 'name' in key  %}

  3. {{ key['name'] }}

  4. {%- else %}

  5. {{ identifier }}

  6. {%- endif %}

  7. {%- endmacro -%}

  8. 

  9. {%- macro print_ssh_auth(identifier, key) -%}

  10.       {%- if 'user' in key  %}

  11.     - user: {{ key['user'] }}

  12.       {%- else %}

  13.     - user: {{ identifier }}

  14.       {%- endif %}

  15.       {%- if 'present' in key and key['present'] and 'source' in key %}

  16.     - source: {{ key['source'] }}

  17.       {%- else %}

  18.         {%- if 'enc' in key %}

  19.     - enc: {{ key['enc'] }}

  20.         {%- endif -%}

  21.         {%- if 'comment' in key %}

  22.     - comment: {{ key['comment'] }}

  23.         {%- endif -%}

  24.         {%- if 'options' in key %}

  25.     - options: {{ key['options'] }}

  26.         {%- endif -%}

  27.       {%- endif %}

  28. {%- endmacro -%}

  29. 

  30. include:

  31.   - openssh

  32. {%- from "openssh/map.jinja" import openssh with context -%}

  33. {%- set openssh_pillar = pillar.get('openssh', {}) -%}

  34. {%- set auth = openssh_pillar.get('auth', {}) -%}

  35. {%- for identifier,keys in auth.items() -%}

  36.   {%- for key in keys -%}

  37.     {% if 'present' in key and key['present'] %}

  38. {{ print_name(identifier, key) }}:

  39.   ssh_auth.present:

  40.     {{ print_ssh_auth(identifier, key) }}

  41.     {%- if 'sshd_config' in pillar and 'AuthorizedKeysFile' in pillar['sshd_config'] %}

  42.     - config: '{{ pillar['sshd_config']['AuthorizedKeysFile'] }}'

  43.     {% endif %}

  44.     - require:

  45.       - service: {{ openssh.service }}

  46.     {%- else %}

  47. {{ print_name(identifier, key) }}:

  48.   ssh_auth.absent:

  49.     {{ print_ssh_auth(identifier, key) }}

  50.     {%- if 'sshd_config' in pillar and 'AuthorizedKeysFile' in pillar['sshd_config'] %}

  51.     - config: '{{ pillar['sshd_config']['AuthorizedKeysFile'] }}'

  52.     {% endif -%}

  53.     {%- endif -%}

  54.   {%- endfor -%}

  55. {%- endfor -%}