Blame salt/profile/borgbackup/server.sls
|
Christian Boltz |
9ccde7 |
include:
|
|
Christian Boltz |
9ccde7 |
- profile.borgbackup.packages
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
# create users
|
|
Christian Boltz |
9ccde7 |
# home dirs should be /backup/$user
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
{% for user, key in pillar.get('profile:borgbackup:authorized_keys') %}
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
user_{{ user }}:
|
|
Christian Boltz |
9ccde7 |
user.present:
|
|
Christian Boltz |
9ccde7 |
- name: {{ user }}
|
|
Christian Boltz |
9ccde7 |
- home: /backup/{{ user }}
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
/backup/{{ user }}/.ssh:
|
|
Christian Boltz |
9ccde7 |
file.directory:
|
|
Christian Boltz |
9ccde7 |
- user: {{ user }}
|
|
Christian Boltz |
9ccde7 |
- mode: 700
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
# create */.ssh/authorized_keys (TODO: maybe with COMMAND=...?)
|
|
Christian Boltz |
9ccde7 |
/backup/{{ user }}/.ssh/authorized_keys:
|
|
Christian Boltz |
9ccde7 |
file.managed:
|
|
Christian Boltz |
9ccde7 |
- user: {{ user }}
|
|
Christian Boltz |
9ccde7 |
- mode: 600
|
|
Christian Boltz |
9ccde7 |
- contents:
|
|
Christian Boltz |
9ccde7 |
- {{ key }}
|
|
Christian Boltz |
9ccde7 |
|
|
Christian Boltz |
9ccde7 |
{% endfor %}
|