64 lines
1.3 KiB
Plaintext
64 lines
1.3 KiB
Plaintext
users:
|
|
## Minimal required pillar values
|
|
auser:
|
|
fullname: A User
|
|
|
|
## Full list of pillar values
|
|
buser:
|
|
fullname: B User
|
|
password: $6$w.............
|
|
home: /custom/buser
|
|
createhome: True
|
|
expire: 16426
|
|
sudouser: True
|
|
sudo_rules:
|
|
- ALL=(root) /usr/bin/find
|
|
- ALL=(otheruser) /usr/bin/script.sh
|
|
shell: /bin/bash
|
|
prime_group:
|
|
name: primarygroup
|
|
gid: 500
|
|
groups:
|
|
- users
|
|
ssh_key_type: rsa
|
|
ssh_keys:
|
|
privkey: PRIVATEKEY
|
|
pubkey: PUBLICKEY
|
|
ssh_auth:
|
|
- PUBLICKEY
|
|
ssh_auth.absent:
|
|
- PUBLICKEY_TO_BE_REMOVED
|
|
# Generates an authorized_keys file for the user
|
|
# with the given keys
|
|
ssh_auth_file:
|
|
- PUBLICKEY
|
|
# If you prefer to keep public keys as files rather
|
|
# than inline in pillar, this works.
|
|
ssh_auth_sources:
|
|
- salt://keys/buser.id_rsa.pub
|
|
|
|
google_auth:
|
|
ssh: |
|
|
SOMEGAUTHHASHVAL
|
|
" RESETTING_TIME_SKEW 46956472+2 46991595-2
|
|
" RATE_LIMIT 3 30 1415800560
|
|
" DISALLOW_REUSE 47193352
|
|
" TOTP_AUTH
|
|
11111111
|
|
22222222
|
|
33333333
|
|
44444444
|
|
55555555
|
|
|
|
## Absent user
|
|
cuser:
|
|
absent: True
|
|
purge: True
|
|
force: True
|
|
|
|
|
|
## Old syntax of absent_users still supported
|
|
absent_users:
|
|
- donald
|
|
- bad_guy
|