Sfoglia il codice sorgente
Add 'ssh_auth_file' pillar key to generate an authorized_keys file from given ssh public keys.
lookup-fix-3
root
9 anni fa
2 ha cambiato i file con 16 aggiunte e 0 eliminazioni
+ 4
- 0
pillar.example
Vedi File
| @@ -28,6 +28,10 @@ users: | |||
| - PUBLICKEY | |||
| ssh_auth.absent: | |||
| - PUBLICKEY_TO_BE_REMOVED | |||
| # Generates an authorized_keys file for the user | |||
| # with the given keys | |||
| ssh_auth_file: | |||
| - PUBLICKEY | |||
| google_auth: | |||
| ssh: | | |||
| SOMEGAUTHHASHVAL | |||
+ 12
- 0
users/init.sls
Vedi File
| @@ -167,6 +167,18 @@ ssh_auth_delete_{{ name }}_{{ loop.index0 }}: | |||
| {% endfor %} | |||
| {% endif %} | |||
| {% if 'ssh_auth_file' in user %} | |||
| {{ home }}/.ssh/authorized_keys: | |||
| file.managed: | |||
| - user: {{ name }} | |||
| - group: {{ name }} | |||
| - mode: 600 | |||
| - contents: | | |||
| {% for auth in user.ssh_auth_file -%} | |||
| {{ auth }} | |||
| {% endfor -%} | |||
| {% endif %} | |||
| {% if 'sudouser' in user and user['sudouser'] %} | |||
| sudoer-{{ name }}: | |||
Loading…