Support exempting some users from torification measures.

author: intrigeri <intrigeri@boum.org> 2012-01-07 06:09:54 +0100
committer: Micah Anderson <micah@riseup.net> 2012-06-20 10:47:15 -0400
commit: 6cb88973f53aa7d92414797dd21952c1c1d5da98 (patch)
tree: 6fa93a250d68067c079b2fb9c2feb29f81f61e37 /manifests/rules/torify/redirect_tcp_to_tor.pp
parent: b67bb6c1571506ae4b1d49feab06e73b75515f29 (diff)
1 files changed, 1 insertions, 6 deletions
diff --git a/manifests/rules/torify/redirect_tcp_to_tor.pp b/manifests/rules/torify/redirect_tcp_to_tor.pp
index 2bee658..fe1c5fe 100644
--- a/manifests/rules/torify/redirect_tcp_to_tor.pp
+++ b/manifests/rules/torify/redirect_tcp_to_tor.pp
@@ -14,11 +14,6 @@ define shorewall::rules::torify::redirect_tcp_to_tor(
       default => $originaldest,
     }
 
-    $user_real = $user ? {
-      '-'     => "!${shorewall::tor_user}",
-      default => $user,
-    }
-
     $destzone = $shorewall::tor_transparent_proxy_host ? {
       '127.0.0.1' => '$FW',
       default     => 'net'
@@ -30,7 +25,7 @@ define shorewall::rules::torify::redirect_tcp_to_tor(
         destination  => "${destzone}:${shorewall::tor_transparent_proxy_host}:${shorewall::tor_transparent_proxy_port}",
         proto        => 'tcp:syn',
         originaldest => $originaldest_real,
-        user         => $user_real,
+        user         => $user,
         order        => 110,
         action       => 'DNAT';
     }
author	intrigeri <intrigeri@boum.org>	2012-01-07 06:09:54 +0100
committer	Micah Anderson <micah@riseup.net>	2012-06-20 10:47:15 -0400
commit	6cb88973f53aa7d92414797dd21952c1c1d5da98 (patch)
tree	6fa93a250d68067c079b2fb9c2feb29f81f61e37 /manifests/rules/torify/redirect_tcp_to_tor.pp
parent	b67bb6c1571506ae4b1d49feab06e73b75515f29 (diff)