Merge remote-tracking branch 'origin/develop'0.2.2

Conflicts: provider_base/services/webapp.json
author: Micah Anderson <micah@riseup.net> 2013-07-09 16:43:39 +0100
committer: Micah Anderson <micah@riseup.net> 2013-07-09 16:43:39 +0100
commit: b4077083b971377636754b2988668a6ddd384da5 (patch)
tree: b8e358b5f0f6dfa882d31d7446266111bc0d201b /puppet/modules/site_sshd/manifests/authorized_keys.pp
parent: 625aaa11138bba365958391664299692402f8da4 (diff)
parent: 672154a8322901b86c9882854234eae53221a38e (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/puppet/modules/site_sshd/manifests/authorized_keys.pp b/puppet/modules/site_sshd/manifests/authorized_keys.pp
new file mode 100644
index 00000000..c18f691c
--- /dev/null
+++ b/puppet/modules/site_sshd/manifests/authorized_keys.pp
@@ -0,0 +1,19 @@
+define site_sshd::authorized_keys ($keys, $ensure = 'present', $home = '') {
+  # This line allows default homedir based on $title variable.
+  # If $home is empty, the default is used.
+  $homedir = $home ? {'' => "/home/${title}", default => $home}
+  file {
+    "${homedir}/.ssh":
+      ensure  => 'directory',
+      owner   => $title,
+      group   => $title,
+      mode    => '0700';
+    "${homedir}/.ssh/authorized_keys":
+      ensure  => $ensure,
+      owner   => $ensure ? {'present' => $title, default => undef },
+      group   => $ensure ? {'present' => $title, default => undef },
+      mode    => '0600',
+      require => File["${homedir}/.ssh"],
+      content => template('site_sshd/authorized_keys.erb');
+  }
+}
author	Micah Anderson <micah@riseup.net>	2013-07-09 16:43:39 +0100
committer	Micah Anderson <micah@riseup.net>	2013-07-09 16:43:39 +0100
commit	b4077083b971377636754b2988668a6ddd384da5 (patch)
tree	b8e358b5f0f6dfa882d31d7446266111bc0d201b /puppet/modules/site_sshd/manifests/authorized_keys.pp
parent	625aaa11138bba365958391664299692402f8da4 (diff)
parent	672154a8322901b86c9882854234eae53221a38e (diff)