formula-sudoers/sudoers/files/sudoers

{% set sudoers = pillar.get('sudoers', {}) %}
{%- set defaults = sudoers.get('defaults', []) %}
{%- set aliases = sudoers.get('aliases', {}) %}
{%- set host_aliases = aliases.get('hosts', {}) %}
{%- set user_aliases = aliases.get('users', {}) %}
{%- set command_aliases = aliases.get('commands', {}) %}
{%- set runas_aliases = aliases.get('runas', {}) %}
{%- set users = sudoers.get('users', {}) %}
{%- set groups = sudoers.get('groups', {}) %}
{%- set includedir = sudoers.get('includedir', None) -%}
#
# This file is managed by salt
#

{% for default in defaults -%}
Defaults {{ default }}
{% endfor %}
# Host alias specification
{%- for name,hosts in host_aliases.items() %}
Host_Alias {{ name }} = {{ ",".join(hosts) }}
{%- endfor %}

# User alias specification
{%- for name,users in user_aliases.items() %}
User_Alias {{ name }} = {{ ",".join(users) }}
{%- endfor %}

# Cmnd alias specification
{%- for name,commands in command_aliases.items() %}
Cmnd_Alias {{ name }} = {{ ",".join(commands) }}
{%- endfor %}

# Runas alias specification
{%- for name,runas in runas_aliases.items() %}
Runas_Alias {{ name }} = {{ ",".join(runas) }}
{%- endfor %}

# User privilege specification
{%- for user,spec in users.items() %}
{{ user }} {{ spec }}
{%- endfor %}

# Group privilege specification
{%- for group,spec in groups.items() %}
%{{ group }} {{ spec }}
{%- endfor %}

{% if includedir %}
#includedir {{ includedir }}
{% else %}
#includedir /etc/sudoers.d
{% endif %}
start of sudoers formula 2013-08-20 17:32:58 -04:00			`{% set sudoers = pillar.get('sudoers', {}) %}`
more newline removal 2013-08-20 17:55:49 -04:00			`{%- set defaults = sudoers.get('defaults', []) %}`
			`{%- set aliases = sudoers.get('aliases', {}) %}`
			`{%- set host_aliases = aliases.get('hosts', {}) %}`
			`{%- set user_aliases = aliases.get('users', {}) %}`
			`{%- set command_aliases = aliases.get('commands', {}) %}`
			`{%- set runas_aliases = aliases.get('runas', {}) %}`
			`{%- set users = sudoers.get('users', {}) %}`
			`{%- set groups = sudoers.get('groups', {}) %}`
			`{%- set includedir = sudoers.get('includedir', None) -%}`
start of sudoers formula 2013-08-20 17:32:58 -04:00			`#`
			`# This file is managed by salt`
			`#`

			`{% for default in defaults -%}`
			`Defaults {{ default }}`
alias test 2013-08-20 17:45:11 -04:00			`{% endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00			`# Host alias specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for name,hosts in host_aliases.items() %}`
alias test 2013-08-20 17:45:11 -04:00			`Host_Alias {{ name }} = {{ ",".join(hosts) }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
			`# User alias specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for name,users in user_aliases.items() %}`
fleshed out template 2013-08-20 17:51:13 -04:00			`User_Alias {{ name }} = {{ ",".join(users) }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
			`# Cmnd alias specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for name,commands in command_aliases.items() %}`
fleshed out template 2013-08-20 17:51:13 -04:00			`Cmnd_Alias {{ name }} = {{ ",".join(commands) }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
			`# Runas alias specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for name,runas in runas_aliases.items() %}`
fleshed out template 2013-08-20 17:51:13 -04:00			`Runas_Alias {{ name }} = {{ ",".join(runas) }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
			`# User privilege specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for user,spec in users.items() %}`
fleshed out template 2013-08-20 17:51:13 -04:00			`{{ user }} {{ spec }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
			`# Group privilege specification`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- for group,spec in groups.items() %}`
fleshed out template 2013-08-20 17:51:13 -04:00			`%{{ group }} {{ spec }}`
template cleanup 2013-08-20 17:54:21 -04:00			`{%- endfor %}`
start of sudoers formula 2013-08-20 17:32:58 -04:00
includedir fix 2013-08-20 17:35:57 -04:00			`{% if includedir %}`
Add missing hash on custom includedir 2013-11-16 08:21:53 -05:00			`#includedir {{ includedir }}`
start of sudoers formula 2013-08-20 17:32:58 -04:00			`{% else %}`
			`#includedir /etc/sudoers.d`
			`{% endif %}`