salt/states
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

mieux

Browse Source
This commit is contained in:
Iwan Clément
2019-05-03 16:51:44 +02:00
parent 948c8e8d30
commit 5d78289ae6
1 changed files with 24 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
softwares/secure_tunnel.sls Normal file
View File

@@ -0,0 +1,24 @@
{% if grains['kernel'] == 'Linux' %}
{% set KEY_NAME = 'secure_ssh_tunnel' %}
{% set ANS_REMOTE_USER = salt['grains.get'](ANS_REMOTE_USER) %}
{% set ANS_REMOTE_PORT = salt['grains.get'](ANS_REMOTE_PORT) %}
{% set ANS_ADDR_TARGET = salt['grains.get'](ANS_ADDR_TARGET) %}
{% set ANS_PORT_TARGET = salt['grains.get'](ANS_PORT_TARGET) %}
{% set ANS_REMOTE_USER = salt['grains.get'](ANS_REMOTE_USER) %}
{% set ANS_TARGET_USER = salt['grains.get'](ANS_TARGET_USER) %}
generate_ssh_key_{{ANS_REMOTE_USER}}:
cmd.run:
- name: ssh-keygen -q -N '' -f /home/{{ANS_REMOTE_USER}}/.ssh/{{KEY_NAME}}
- runas: {{ANS_REMOTE_USER}}
- unless: test -f /home/{{ANS_REMOTE_USER}}/.ssh/{{KEY_NAME}}
secure_tunnel_systemd_file:
file.managed:
- source: salt://templates/secure-tunnel.service
- name: /etc/systemd/system/secure-tunnel.service
- user: root
- group: root
{% endif %}