1
0
Fork 0
mirror of synced 2024-11-22 08:45:35 -05:00
Commit graph

26 commits

Author SHA1 Message Date
Javier Bértoli
7ee2569b45 fix(config): remove dictsort that breaks sudoers
in bc62b6e5 dictsort was applied to the pillar entries. But in the
sudoers file *order matters* so, using `dictsort`, breaks it.

From man 5 sudoers:

> When multiple entries match for a user, they are
> applied in order.  Where there are multiple matches, the last match
> is used (which is not necessarily the most specific match).

Removed `dictsort` from the {users,groups,netgroups} specifications.

BREAKING CHANGE: sudoers entries' order will change and might break
existing configuration. You should check your pillars and rendering.
2020-08-24 19:46:55 -03:00
Niels Abspoel
2fa535ec3a
Merge pull request #43 from ze42/dictsort
dictsort: ensure the dict order is stable
2018-10-27 23:43:45 +02:00
9numbernine9
d5d68ea963 Add support for netgroups 2018-08-14 13:29:49 +01:00
Adrien "ze" Urban
bc62b6e567 dictsort: ensure the dict order is stable
Makes changes easier to read when adding/removing an entry.
Other lines will not be reordered because of unrelated stuffs.
2018-06-25 11:29:28 +02:00
ymage
e732663da9 Revert change
The '#' here does not indicate a comment
2014-12-12 14:57:35 +01:00
ymage
f9e8655284 Update sudoers
Enable includedir
2014-12-11 14:45:57 +01:00
Andrew Vant
8bf6d6711f Fixed default permissions for Debian-based distributions.
The code around lines 84 and 91 expects 'specs' to be a list,
but the defaults provide a single string value. This causes
wrong behavior if sudoers:users or sudoers:groups are not
specified in pillar.
2014-10-01 11:03:54 -04:00
Robert Fairburn
cd1ddcf25f allow for multiple lines for the same user or group 2014-08-19 09:26:47 -05:00
Reuven V. Gonzales
3744718f8c Correctly set variables for template 2014-07-30 02:10:50 -07:00
Robert Fairburn
fb3773a605 switch default from list to dict on include to match the global configuration 2014-07-09 13:36:47 -05:00
Robert Fairburn
1c3e6844bc Fix broken logic surrounding includes and Debian defaults 2014-07-09 13:35:07 -05:00
Robert Fairburn
7662f1272e attempt to resolve error processing files missing defaults 2014-07-09 13:26:26 -05:00
Robert Fairburn
595f90c5d4 fix typo in the sudoers file that was causing the wrong data to get populated under new fields 2014-07-09 12:56:16 -05:00
Robert Fairburn
ac278d226c Extend defaults section of sudoers to permit the following:
Default_Type ::= 'Defaults' |
                 'Defaults' '@' Host_List |
                 'Defaults' ':' User_List |
                 'Defaults' '!' Cmnd_List |
                 'Defaults' '>' Runas_List
2014-07-09 12:21:58 -05:00
Carlos Perelló Marín
642a93d7df Improved default values for Debian based distributions to match the distribution default values 2014-02-09 18:34:27 +01:00
Carlos Perelló Marín
461107d8db Added sudoers.included formula to manage included sudoers files 2014-02-09 18:32:22 +01:00
Evan Borgstrom
ba9c94ce91 Add missing hash on custom includedir 2013-11-16 08:21:53 -05:00
Kenneth Wilke
7f4a0d6834 more newline removal 2013-08-20 16:55:49 -05:00
Kenneth Wilke
1c652bdffe more newline removal 2013-08-20 16:55:11 -05:00
Kenneth Wilke
7100b0ed13 small newline removal 2013-08-20 16:54:54 -05:00
Kenneth Wilke
3db435dcdd template cleanup 2013-08-20 16:54:21 -05:00
Kenneth Wilke
7ae89c11ec user/group fix 2013-08-20 16:53:00 -05:00
Kenneth Wilke
61a216de81 fleshed out template 2013-08-20 16:51:13 -05:00
Kenneth Wilke
34178002e7 alias test 2013-08-20 16:45:11 -05:00
Kenneth Wilke
4f842bf457 includedir fix 2013-08-20 16:35:57 -05:00
Kenneth Wilke
8eb95cfcda start of sudoers formula 2013-08-20 16:32:58 -05:00