add a README explaining how to use this
This commit is contained in:
Antoine Beaupré
parent
81a06483fc
commit
7d662758fa
1 changed files with 40 additions and 0 deletions
40
README.mdwn
Normal file
40
README.mdwn
Normal file
|
|
@ -0,0 +1,40 @@
|
||||||
|
sudo support in puppet
|
||||||
|
======================
|
||||||
|
|
||||||
|
To simply install sudo on your servers, use:
|
||||||
|
|
||||||
|
include sudo
|
||||||
|
|
||||||
|
By default, this will not deploy any sudoers file. Use the following
|
||||||
|
to make sure a sudoers file is deployed:
|
||||||
|
|
||||||
|
class { 'sudo': deploy_sudoers => TRUE }
|
||||||
|
|
||||||
|
This will deploy the default sudoers file shipped with the module or
|
||||||
|
one shipped in your `site_sudo` module, see `manifests/init.pp` for
|
||||||
|
the search path.
|
||||||
|
|
||||||
|
You can also use defines to grant specific access. For example, to
|
||||||
|
give access to a user:
|
||||||
|
|
||||||
|
sudo::access { 'foo': }
|
||||||
|
|
||||||
|
This will create a file in `/etc/sudoers.d/01_user_access-foo` with a
|
||||||
|
content:
|
||||||
|
|
||||||
|
foo ALL=(ALL) ALL
|
||||||
|
|
||||||
|
You can change parameters, for example a no password access:
|
||||||
|
|
||||||
|
sudo::access { 'foo':
|
||||||
|
user => 'bar',
|
||||||
|
access => 'ALL = NOPASSWD: ALL'
|
||||||
|
}
|
||||||
|
|
||||||
|
You can also create user aliases with:
|
||||||
|
|
||||||
|
sudo::user_alias { 'GROUP': members => 'foo, bar' }
|
||||||
|
|
||||||
|
.. which in turn can be used in `sudo::access`:
|
||||||
|
|
||||||
|
sudo::access { 'GROUP-access': user => 'GROUP' }
|
||||||
Loading…
Reference in a new issue