heroes / salt

Clone
Source Code
GIT

Blame salt/profile/borgbackup/server.sls

adjust-ci-pipeline anikitin/mirrorcache anikitin/t_allow_jinja_in_secrets anikitin/web_mirrors__proxy_mirrorcache bootloader cboltz-borgbackup cboltz-relnotes-15.3 cboltz-scar-sshd doc-o-o gateway hellcp/matrix-synapse-workers-syntax hellcp/paste-sync ifconfig infra libvirt lrupp-production-patch-08358 lrupp/add_identification lrupp/remove_login_interface lrupp/retire lrupp/serve_www mailman micro monitoring-restart paste-socket postfix-aliases production repositories set-secret-detection-config-1 sysctl update-access-crtmgr
  1.   9ccde7a5e0211f06e3c0cbbcd8a7bac91fd8eb9f
  2.   salt
  3.   profile
  4.   borgbackup
  5.   server.sls
Blob History Raw
Christian Boltz 9ccde7 
include:
Christian Boltz 9ccde7 
  - profile.borgbackup.packages
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
# create users
Christian Boltz 9ccde7 
# home dirs should be /backup/$user
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
{% for user, key in pillar.get('profile:borgbackup:authorized_keys') %}
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
user_{{ user }}:
Christian Boltz 9ccde7 
  user.present:
Christian Boltz 9ccde7 
    - name: {{ user }}
Christian Boltz 9ccde7 
    - home: /backup/{{ user }}
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
/backup/{{ user }}/.ssh:
Christian Boltz 9ccde7 
  file.directory:
Christian Boltz 9ccde7 
    - user: {{ user }}
Christian Boltz 9ccde7 
    - mode: 700
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
# create */.ssh/authorized_keys  (TODO: maybe with COMMAND=...?)
Christian Boltz 9ccde7 
/backup/{{ user }}/.ssh/authorized_keys:
Christian Boltz 9ccde7 
  file.managed:
Christian Boltz 9ccde7 
    - user: {{ user }}
Christian Boltz 9ccde7 
    - mode: 600
Christian Boltz 9ccde7 
    - contents:
Christian Boltz 9ccde7 
      - {{ key }}
Christian Boltz 9ccde7
Christian Boltz 9ccde7 
{% endfor %}
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.