Ash Berlin
10 years ago
1 changed files with 11 additions and 0 deletions
+ 11
- 0
users/init.sls
View File
| - group: root | - group: root | ||||
| - mode: '0440' | - mode: '0440' | ||||
| {% if 'sudo_rules' in user %} | {% if 'sudo_rules' in user %} | ||||
| {% for rule in user['sudo_rules'] %} | |||||
| "validate {{ name }} sudo rule {{ loop.index0 }} {{ name }} {{ rule }}": | |||||
| cmd.run: | |||||
| - name: 'visudo -cf - <<<"$rule"' | |||||
| - env: | |||||
| # Specify the rule via an env var to avoid shell quoting issues. | |||||
| - rule: "{{ name }} {{ rule }}" | |||||
| - require_in: | |||||
| - file: /etc/sudoers.d/{{ name }} | |||||
| {% endfor %} | |||||
| /etc/sudoers.d/{{ name }}: | /etc/sudoers.d/{{ name }}: | ||||
| file.append: | file.append: | ||||
| - text: | - text: |
Loading…