diff options
author | Jenkins <jenkins@review.openstack.org> | 2017-04-25 16:20:53 +0000 |
---|---|---|
committer | Gerrit Code Review <review@openstack.org> | 2017-04-25 16:20:53 +0000 |
commit | e7bf85f56c9ee2597d01b31d9fb9ba7c7634c238 (patch) | |
tree | b27430bb02de03ef330f17c6f40b4b6f0610aa53 /manifests | |
parent | d3987432f90c1f7c190d94385ad2525fa00ae1d6 (diff) | |
parent | 0e991f99b4b239838b5f775468f25025b3ad170b (diff) |
Merge "SSHD Service extensions" into stable/ocata
Diffstat (limited to 'manifests')
-rw-r--r-- | manifests/profile/base/sshd.pp | 56 |
1 files changed, 27 insertions, 29 deletions
diff --git a/manifests/profile/base/sshd.pp b/manifests/profile/base/sshd.pp index e7916c1..f43089c 100644 --- a/manifests/profile/base/sshd.pp +++ b/manifests/profile/base/sshd.pp @@ -15,47 +15,45 @@ # # == Class: tripleo::profile::base::sshd # -# SSH profile for tripleo +# SSH composable service for TripleO # # === Parameters # # [*bannertext*] -# The text used within SSH Banner +# The text used within /etc/issue and /etc/issue.net # Defaults to hiera('BannerText') # +# [*motd*] +# The text used within SSH Banner +# Defaults to hiera('MOTD') +# class tripleo::profile::base::sshd ( $bannertext = hiera('BannerText', undef), + $motd = hiera('MOTD', undef), ) { - if $bannertext { - $action = 'set' - } else { - $action = 'rm' - } - - package {'openssh-server': - ensure => installed, - } + include ::ssh - augeas { 'sshd_config_banner': - context => '/files/etc/ssh/sshd_config', - changes => [ "${action} Banner /etc/issue" ], - notify => Service['sshd'] - } - - file { '/etc/issue': - ensure => file, - backup => false, - content => $bannertext, - owner => 'root', - group => 'root', - mode => '0600' + if $bannertext { + $filelist = [ '/etc/issue', '/etc/issue.net', ] + file { $filelist: + ensure => file, + backup => false, + content => $bannertext, + owner => 'root', + group => 'root', + mode => '0644' + } } - service { 'sshd': - ensure => 'running', - enable => true, - hasstatus => false, - require => Package['openssh-server'], + if $motd { + file { '/etc/motd': + ensure => file, + backup => false, + content => $motd, + owner => 'root', + group => 'root', + mode => '0644' + } } } |