salt
/
users-formula
разклонено от ExternalMirrors/users-formula
Наблюдаван 1
Харесван 0
Разклонения 0
Код Версии 0 Activity
Saltstack Official Users Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
127 Ревизии
2 Клонове
ИН на ревизия: d0bbbda8aa
Клонове Маркери
${ item.name }
Create branch ${ searchTerm }
от 'd0bbbda8aa'
${ noResults }
users-formula/pillar.example

pillar.example 1.9KB
Директен файл Normal View История

Add example data to pillar.
преди 11 години
New format of user.absent support introduced. Old format still supported.
преди 10 години
Add example data to pillar.
преди 11 години
New format of user.absent support introduced. Old format still supported.
преди 10 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
New format of user.absent support introduced. Old format still supported.
преди 10 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
Update pillar.example
преди 10 години
Add home to pillar.example
преди 11 години
Add 'createhome' option for 'user.present' state
преди 10 години
Enable/disable bashrc/vimrc per user Made both states configurable per user in pillar data Had to drop extend, for this otherwise the extend would be empty if manage is False
преди 9 години
Add support for setting user expire
преди 10 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
Add support for setting user expire
преди 10 години
Fix incorrect sudo_rules example
преди 11 години
possibility to define user-specific Defaults
преди 10 години
fixing example for sudo defaults for specific user
преди 9 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
yaml mistype had the prime group and ssh keys values as another dict. fixed.
преди 11 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
Add and support ssh_key_type attribute to allow for dsa ssh key pairs
преди 11 години
Add pulling keys from other pillar. Example pillar: ssh_keys: id_rsa: privkey: | -----BEGIN RSA PRIVATE KEY----- MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2HcWUVBgh+vY U7sCwx/dH6+VvNwmCoqmNnP+8gTPKGl1vgAObJAnMT623dMXjVKwnEagZPRJIxDy B/HaAre9euNiY3LvIzBTWRSeMfT+rWvIKVBpvwlgGrfgz70m0pqxu+UyFbAGLin+ GpxzZAMaFpZw4sSbIlRuissXZj/sHpQb8p9M5IeO4Z3rjkCP1cxI -----END RSA PRIVATE KEY----- pubkey: | ssh-rsa MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2H....
преди 9 години
Revised Pillar Example Revising example pillar to add a minimal required values and a full list of available values
преди 11 години
yaml mistype had the prime group and ssh keys values as another dict. fixed.
преди 11 години
Add pulling keys from other pillar. Example pillar: ssh_keys: id_rsa: privkey: | -----BEGIN RSA PRIVATE KEY----- MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2HcWUVBgh+vY U7sCwx/dH6+VvNwmCoqmNnP+8gTPKGl1vgAObJAnMT623dMXjVKwnEagZPRJIxDy B/HaAre9euNiY3LvIzBTWRSeMfT+rWvIKVBpvwlgGrfgz70m0pqxu+UyFbAGLin+ GpxzZAMaFpZw4sSbIlRuissXZj/sHpQb8p9M5IeO4Z3rjkCP1cxI -----END RSA PRIVATE KEY----- pubkey: | ssh-rsa MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2H....
преди 9 години
Add example data to pillar.
преди 11 години
Fix ssh_auth.names in example pillar
преди 11 години
added option to remove ssh public keys from auth (ssh_auth.absent)
преди 10 години
Add 'ssh_auth_file' pillar key to generate an authorized_keys file from given ssh public keys.
преди 10 години
Added option to source ssh public keys from files.
преди 10 години
Add ~/.ssh/config management This adds the ability to manage the ~/.ssh/config file for users.
преди 9 години
Added option to source ssh public keys from files.
преди 10 години
readd 2fa pam enforcement
преди 9 години
google auth example pillar config add; forgotten gauth state file add
преди 10 години
Update pillar.example Quick example of absent users
преди 11 години
New format of user.absent support introduced. Old format still supported.
преди 10 години
Update pillar.example Quick example of absent users
преди 11 години
 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. users:

  2.   ## Minimal required pillar values

  3.   auser:

  4.     fullname: A User

  5. 

  6.   ## Full list of pillar values

  7.   buser:

  8.     fullname: B User

  9.     password: $6$w.............

  10.     home: /custom/buser

  11.     createhome: True

  12.     manage_vimrc: False

  13.     manage_bashrc: False

  14.     expire: 16426

  15.     sudouser: True

  16.     sudo_rules:

  17.       - ALL=(root) /usr/bin/find

  18.       - ALL=(otheruser) /usr/bin/script.sh

  19.     sudo_defaults:

  20.       - '!requiretty'

  21.     shell: /bin/bash

  22.     prime_group:

  23.       name: primarygroup

  24.       gid: 500

  25.     groups:

  26.       - users

  27.     ssh_key_type: rsa

  28.     # You can inline the private keys ...

  29.     ssh_keys:

  30.       privkey: PRIVATEKEY

  31.       pubkey: PUBLICKEY

  32.     # ... or you can pull them from a different pillar,

  33.     # for example one called "ssh_keys":

  34.     ssh_keys_pillar:

  35.       id_rsa: "ssh_keys"

  36.       another_key_pair: "ssh_keys"

  37.     ssh_auth:

  38.       - PUBLICKEY

  39.     ssh_auth.absent:

  40.       - PUBLICKEY_TO_BE_REMOVED

  41.     # Generates an authorized_keys file for the user

  42.     # with the given keys

  43.     ssh_auth_file:

  44.       - PUBLICKEY

  45.     # If you prefer to keep public keys as files rather

  46.     # than inline in pillar, this works.

  47.     ssh_auth_sources:

  48.       - salt://keys/buser.id_rsa.pub

  49.     # Manage the ~/.ssh/config file

  50.     ssh_config:

  51.       all:

  52.         hostname: "*"

  53.         options:

  54.           - "StrictHostKeyChecking no"

  55.           - "UserKnownHostsFile=/dev/null"

  56.       importanthost:

  57.         hostname: "needcheck.example.com"

  58.         options:

  59.           - "StrictHostKeyChecking yes"

  60. 

  61.     google_2fa: True

  62.     google_auth:

  63.       ssh: |

  64.         SOMEGAUTHHASHVAL

  65.         " RESETTING_TIME_SKEW 46956472+2 46991595-2

  66.         " RATE_LIMIT 3 30 1415800560

  67.         " DISALLOW_REUSE 47193352

  68.         " TOTP_AUTH

  69.         11111111

  70.         22222222

  71.         33333333

  72.         44444444

  73.         55555555

  74. 

  75.   ## Absent user

  76.   cuser:

  77.     absent: True

  78.     purge: True

  79.     force: True

  80. 

  81. 

  82. ## Old syntax of absent_users still supported

  83. absent_users:

  84.   - donald

  85.   - bad_guy