Javier Bértoli
7ee2569b45
fix(config): remove dictsort that breaks sudoers
...
in bc62b6e5
dictsort was applied to the pillar entries. But in the
sudoers file *order matters* so, using `dictsort`, breaks it.
From man 5 sudoers:
> When multiple entries match for a user, they are
> applied in order. Where there are multiple matches, the last match
> is used (which is not necessarily the most specific match).
Removed `dictsort` from the {users,groups,netgroups} specifications.
BREAKING CHANGE: sudoers entries' order will change and might break
existing configuration. You should check your pillars and rendering.
2020-08-24 19:46:55 -03:00
Niels Abspoel
2fa535ec3a
Merge pull request #43 from ze42/dictsort
...
dictsort: ensure the dict order is stable
2018-10-27 23:43:45 +02:00
9numbernine9
d5d68ea963
Add support for netgroups
2018-08-14 13:29:49 +01:00
Adrien "ze" Urban
bc62b6e567
dictsort: ensure the dict order is stable
...
Makes changes easier to read when adding/removing an entry.
Other lines will not be reordered because of unrelated stuffs.
2018-06-25 11:29:28 +02:00
ymage
e732663da9
Revert change
...
The '#' here does not indicate a comment
2014-12-12 14:57:35 +01:00
ymage
f9e8655284
Update sudoers
...
Enable includedir
2014-12-11 14:45:57 +01:00
Andrew Vant
8bf6d6711f
Fixed default permissions for Debian-based distributions.
...
The code around lines 84 and 91 expects 'specs' to be a list,
but the defaults provide a single string value. This causes
wrong behavior if sudoers:users or sudoers:groups are not
specified in pillar.
2014-10-01 11:03:54 -04:00
Robert Fairburn
cd1ddcf25f
allow for multiple lines for the same user or group
2014-08-19 09:26:47 -05:00
Reuven V. Gonzales
3744718f8c
Correctly set variables for template
2014-07-30 02:10:50 -07:00
Robert Fairburn
fb3773a605
switch default from list to dict on include to match the global configuration
2014-07-09 13:36:47 -05:00
Robert Fairburn
1c3e6844bc
Fix broken logic surrounding includes and Debian defaults
2014-07-09 13:35:07 -05:00
Robert Fairburn
7662f1272e
attempt to resolve error processing files missing defaults
2014-07-09 13:26:26 -05:00
Robert Fairburn
595f90c5d4
fix typo in the sudoers file that was causing the wrong data to get populated under new fields
2014-07-09 12:56:16 -05:00
Robert Fairburn
ac278d226c
Extend defaults section of sudoers to permit the following:
...
Default_Type ::= 'Defaults' |
'Defaults' '@' Host_List |
'Defaults' ':' User_List |
'Defaults' '!' Cmnd_List |
'Defaults' '>' Runas_List
2014-07-09 12:21:58 -05:00
Carlos Perelló Marín
642a93d7df
Improved default values for Debian based distributions to match the distribution default values
2014-02-09 18:34:27 +01:00
Carlos Perelló Marín
461107d8db
Added sudoers.included formula to manage included sudoers files
2014-02-09 18:32:22 +01:00
Evan Borgstrom
ba9c94ce91
Add missing hash on custom includedir
2013-11-16 08:21:53 -05:00
Kenneth Wilke
7f4a0d6834
more newline removal
2013-08-20 16:55:49 -05:00
Kenneth Wilke
1c652bdffe
more newline removal
2013-08-20 16:55:11 -05:00
Kenneth Wilke
7100b0ed13
small newline removal
2013-08-20 16:54:54 -05:00
Kenneth Wilke
3db435dcdd
template cleanup
2013-08-20 16:54:21 -05:00
Kenneth Wilke
7ae89c11ec
user/group fix
2013-08-20 16:53:00 -05:00
Kenneth Wilke
61a216de81
fleshed out template
2013-08-20 16:51:13 -05:00
Kenneth Wilke
34178002e7
alias test
2013-08-20 16:45:11 -05:00
Kenneth Wilke
4f842bf457
includedir fix
2013-08-20 16:35:57 -05:00
Kenneth Wilke
8eb95cfcda
start of sudoers formula
2013-08-20 16:32:58 -05:00