heroes / salt

Clone
Source Code
GIT

Files

  1.   5f8026cb7f503f849977d0f287fc5ef35a5444b4
  2.   salt
  3.   profile
  4.   kanidm
  5.   client
  6.   init.sls
Blob Blame History Raw 
include:
  - zypper.packages
  - .legacy

{%- for setting in ['passwd', 'group'] %}
/etc/nsswitch.conf_{{ setting }}:
  file.replace:
    - name: /etc/nsswitch.conf
    - pattern: ^{{ setting }}:.*$
    - repl: '{{ setting }}: compat kanidm'
{%- endfor %}

kanidm_config:
  file.managed:
    - names:
        - /etc/kanidm/config:
            - source: salt://profile/kanidm/client/files/etc/kanidm/config
        - /etc/kanidm/unixd:
            - source: salt://profile/kanidm/client/files/etc/kanidm/unixd
        - /etc/pam.d/common-account:
            - source: salt://profile/kanidm/client/files/etc/pam.d/common-account
        - /etc/pam.d/common-auth:
            - source: salt://profile/kanidm/client/files/etc/pam.d/common-auth
        - /etc/pam.d/common-session:
            - source: salt://profile/kanidm/client/files/etc/pam.d/common-session
        - /etc/pam.d/common-password:
            - source: salt://profile/kanidm/client/files/etc/pam.d/common-password
    - follow_symlinks: False
    - mode: '0644'
    - template: jinja
    - require:
        - pkg: zypper_packages

kanidm-unixd.service:
  service.running:
    - name: kanidm-unixd
    - enable: True
    - watch:
        - file: /etc/kanidm/config
        - file: /etc/kanidm/unixd
    - require:
        - pkg: zypper_packages

kanidm-unixd-tasks.service:
  service.running:
    - name: kanidm-unixd-tasks
    - enable: True
    - require:
        - service: kanidm-unixd.service
        - pkg: remove_old_ldap_auth_packages
        - pkg: zypper_packages
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.