users-formula

Commit Graph

Author	SHA1	Message	Date
Thibault Cohen	3df9d8ae21	Add missing ssh_config test to create .ssh folder	9 years ago
puneet kandhari	ba11c68c24	Revert "@XenophonF made me do it" This reverts commit `a0392693e3`.	9 years ago
puneet kandhari	a0392693e3	@XenophonF made me do it	9 years ago
Matthew X. Economou	c201269d1d	Do not escape value of `enforce_password` Fixes #82.	9 years ago
Seth Miller	7dca1ebfd2	Adding support for the enforce_password option. This will allow users change their passwords after the initial setting in Salt.	9 years ago
Cole Kowalski	7dda5571db	the user's .ssh directory should be created if ssh_auth_file is supplied	9 years ago
Matthew X. Economou	2f4c088e5d	Rework ssh_keys_pillar-related states SSH key pairs deployed via the user's ssh_keys_pillar dict aren't handled the same as the user's ssh_keys, e.g., file ownership and permissions aren't specified, and the keying material gets copied directly into the SLS file. This change rewrites the two templated file.managed states to behave as follows: - set the files' owner to be the user - set the files' group to be the user's primary group - for the public key, set the mode to 644 (u=rw,go=r) - for the private key, set the mode to 600 (u=rw,g=) - pull the files' contents directly from pillar	9 years ago
René Jochum	a1d6591447	Fix users/init.sls. Signed-off-by: René Jochum <rene@jochums.at>	9 years ago
René Jochum	00cc889683	Fix some smaller bugs. Signed-off-by: René Jochum <rene@jochums.at>	9 years ago
Bohdan Kmit	a467d2a80f	fix permission of GA config file	9 years ago
Sander Klein	3a8d72b947	Add "Do Not Edit" part	9 years ago
Sander Klein	57c82f3324	Add ~/.ssh/config management This adds the ability to manage the ~/.ssh/config file for users.	9 years ago
Florian Bittner	701326e23f	Add prefix 'users_' to all first level keys to prevent duplicate ids (e.g. in combination with zabbix-formula and key zabbis_user).	9 years ago
Alex Ciobica	031d6ce81f	Add pulling keys from other pillar. Example pillar: ssh_keys: id_rsa: privkey: \| -----BEGIN RSA PRIVATE KEY----- MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2HcWUVBgh+vY U7sCwx/dH6+VvNwmCoqmNnP+8gTPKGl1vgAObJAnMT623dMXjVKwnEagZPRJIxDy B/HaAre9euNiY3LvIzBTWRSeMfT+rWvIKVBpvwlgGrfgz70m0pqxu+UyFbAGLin+ GpxzZAMaFpZw4sSbIlRuissXZj/sHpQb8p9M5IeO4Z3rjkCP1cxI -----END RSA PRIVATE KEY----- pubkey: \| ssh-rsa MIIEowIBAAKCAQEAoQiwO3JhBquPAalQF9qP1lLZNXVjYMIswrMe2H....	9 years ago
tiger-seo	1546e2d186	possibility to define user-specific Defaults	9 years ago
Andrew Vant	1f80412da8	Added option to source ssh public keys from files.	9 years ago
root	d416b6d839	Move ssh_auth_file key processing to before ssh_auth key to extend instead of overwrite functionality.	9 years ago
René Jochum	c1b383d78b	Add ability to create system users.	9 years ago
root	fdc2fc2dfc	Add 'ssh_auth_file' pillar key to generate an authorized_keys file from given ssh public keys.	9 years ago
René Jochum	6ca7aa0078	Remove leading whitespaces.	9 years ago
Bohdan Kmit	89d6672887	google auth package and config installation	10 years ago
Thomas Juberg	7aa32881b7	Clean up logic check to remove redundant check.	10 years ago
Thomas Juberg	518b06281a	If createhome is set to false, don't touch the home directory or its permissions.	10 years ago
Thomas Juberg	e35045801c	Add support for setting user expire	10 years ago
Tim Jones	add153e060	Allow '!' prefix in password for locked\disabled accounts. Signed-off-by: Tim Jones <me@prototim.com>	10 years ago
Scott Reeves	ea76d0d84f	Remove trailing slash from sudoers_dir	10 years ago
Jason Wolfe	9a71d78d2b	Sorry for the spam, simplify this remove_groups rule a bit	10 years ago
Jason Wolfe	a899ee85ec	Make sure the logic stands after the default in salt is changed	10 years ago
Jason Wolfe	2a464d3dc3	By default, Salt will remove any groups not listed, so a users groups matches exactly the list you pass. This was added here: https://github.com/saltstack/salt/issues/2142 This has been causing issues for many people, as the remove_groups options is undocumented. In the 2014.7 release this is changing, and remove_groups will default to false: https://github.com/saltstack/salt/issues/13276 I'm going with false by default, as it's our use case and it will soon be the default. If people believe this module should default to true and remove groups not listed, I think that's open for discussion, but we should at least add the option.	10 years ago
Wolodja Wentland	13d7c271f2	Change default shell to /bin/csh on FreeBSD This also made it necessary to introduce an additional entry 'shell' into the users lookup table as the formula previously conflated the shell used for running the visudo command and the default shell to be used for user accounts. Fixes: #48	10 years ago
Alan Pearce	0c3b8ff765	Re-add ability to set shell per-user	10 years ago
Adam Wright	8e1d91b3f1	Add 'createhome' option for 'user.present' state	10 years ago
nike38rus	2cdb73927f	Fix issue with bash binary location in FreeBSD	10 years ago
tiger-seo	fda8708ecd	added option to specify user home directory mode	10 years ago
7oku	4a8393dca9	added option to remove ssh public keys from auth (ssh_auth.absent)	10 years ago
7oku	94d53d5ee7	modified visudo to only report change in salt when there is an error.	10 years ago
Tim Jones	8a07ab1332	Only include users.sudo when a user with sudouser is declared.	10 years ago
root	8417c6c888	Add support FreeBSD using map.jinja (Tested on Freebsd10)	10 years ago
Ash Berlin	d5923d82e6	Specify bash shell when validating sudo snippet Since we are using bash specific features and sometimes you can end up getting /bin/sh - see https://github.com/saltstack-formulas/users-formula/pull/30#issuecomment-44224106	10 years ago
Benn Sundsrud	e9cc0b29cb	Do not echo Public/Private keys to stdout when running the state	10 years ago
Benn Sundsrud	a8b6207265	Overwrite a sudoer file rather than append to fix #21	10 years ago
Ash Berlin	192edba9c5	Validate user sudo rules before applying them	10 years ago
Eric Edgar	757e79c9d2	Add Password capabilities	10 years ago
Slawomir Pucia	07aeb2c4f8	New format of user.absent support introduced. Old format still supported.	10 years ago
Johannes	2416374d2b	Fix pubkey privkey typo Fixes #22	10 years ago
Diego Woitasen	0e76454a16	Add absent_groups pillar to remove groups.	10 years ago
Adam Wright	2c58a76ce6	Check for sudo_rules before text.append state. Since ebe5198f, if a user's pillar dict didn't contain sudo_rules, a broken file.append state would be rendered (since some text is required). With this patch, the file is still created/managed by the previous state, but will be empty by default if created fresh. This seems a more sensible default than assuming a default sudoer policy. Further, since the first word on each rule line should be the user's name, that is now assumed.	10 years ago
Greg Shikhman	097b814f67	Changed 'contents' to 'contents_pillar' to correctly parse newlines for private/public SSH keys.	10 years ago
Wolodja Wentland	9636530169	Change .ssh permissions to 700	10 years ago
Steffen Roegner	0f83ab7008	Add and support ssh_key_type attribute to allow for dsa ssh key pairs	10 years ago

1 2

84 Commits (8aa062c08e013dfa2fa627c232cf77d352de3460)