30 lines
1.2 KiB
Django/Jinja
30 lines
1.2 KiB
Django/Jinja
{% set sudoers = salt['grains.filter_by']({
|
|
'Debian': {'pkg': 'sudo'},
|
|
'Ubuntu': {'pkg': 'sudo'},
|
|
'CentOS': {'pkg': 'sudo'},
|
|
'Fedora': {'pkg': 'sudo'},
|
|
'RedHat': {'pkg': 'sudo'},
|
|
'Amazon': {'pkg': 'sudo'},
|
|
'Gentoo': {'pkg': 'app-admin/sudo'},
|
|
'Mint': {'pkg': 'sudo'},
|
|
'Arch': {'pkg': 'sudo'},
|
|
'Suse': {'pkg': 'sudo'},
|
|
'FreeBSD': {'pkg': 'sudo',
|
|
'configpath': '/usr/local/etc',
|
|
'includedir': '/usr/local/etc/sudoers.d',
|
|
'execprefix': '/usr/local/sbin',
|
|
'group': 'wheel'},
|
|
}, merge=salt['pillar.get']('sudoers:lookup', None)) %}
|
|
|
|
# our plos active directory core groups sudoers permissions, filtered by environment
|
|
{% set ad_group_maps = salt['grains.filter_by']({
|
|
'default': { 'default': 'ALL = (root) NOEXEC:NOPASSWD: SUPPORT' },
|
|
'vagrant': { 'default': 'ALL = (ALL:ALL) NOPASSWD: ALL' },
|
|
'dev': { 'default': 'ALL = (ALL:ALL) NOPASSWD: ALL' },
|
|
'qa': { 'default': 'ALL = (root) NOEXEC:NOPASSWD: SUPPORT',
|
|
'plosqa': 'ALL = (root) NOPASSWD: ALL' },
|
|
},
|
|
grain='environment',
|
|
merge=salt['pillar.get']('group_maps:lookup', None))
|
|
%}
|