cookbook 'common_auth', '= 0.1.7'
common_auth (8) Versions 0.1.7 Follow1
Resources to help manage Linux users, groups, sudo and openssh
cookbook 'common_auth', '= 0.1.7', :supermarket
knife supermarket install common_auth
knife supermarket download common_auth
common_auth cookbook
A cookbook which will create users, group, sudoers and configure openssh with the design to be based on group policies.
Requiremetns
This cookbook requires Chef 12.7.0 or later.
Platform
Ubuntu
Document
Comments will be found throughout the attribute, resource and library files so that the documentation and code are more closely linked. What's found in this Readme will be more of a high-level overview.
Attributes
The goal of this cookbook is to manage authentication related resources through a mixture of node
attributes and data_bag_item
.
common_auth[:groups]
- data_bag: The data bag which contains group definitions
- config: Hash of group_name => resource properties for attribute overrides
- managed: Hash of users which have previously been managed (managed attribute)
common_auth[:users]
- data_bag: The data bag which contains user definitions
- config: Hash of user_name => resource properties for attribute overrides
- managed: Hash of users which have previously been managed (managed attribute)
- default: Hash of default user resource properties
common_auth[:sudoers]
Hash containing suders resource definitions
common_auth[:openssh][:allow_groups]
Hash of OpenSSH AllowGroup directives that will override the standard openssh cookbook attributes.
common_auth[:openssh][:match_groups]
Hash of OpenSSH Match group statements
Resources
common_user_account
Resource which will be responsible for creating a user
resource and optionally a common_user_keys
resource. Additionally, the creation or deletion of these attributes will be stored in node
attributes to ensure that users are deleted if ommitted from configuration.
common_user_keys
Resource which will manage a user's ssh public authorized_keys, ssh private rsa keys and will automatically create an ssh_wrapper script for each private key.
common_group_account
Resource which will be responsible for creating a group
resource and optinially a sudoers
resource.
DataBag Formats
DataBagItem formats should match the resource definitions for both user
with an optional keys
property matching common_user_keys
as well as group
items.
common_auth
0.1.7
- Resolve a problem in the custom resources where soem values ( ex.: group memberships ) would never be populated.
0.1.6
- Enhancement
- Resolve Chef13 warning with secure_data_bag
- Bugfix
- Resolve bug in ssh_wrapper scripts
0.1.5
- Add whyrun support to common_user_account
- Add whyrun support to common_user_keys
- Add whyrun support to common_group_account
0.1.4
- Let's pretend it's the inital commit
Foodcritic Metric
0.1.7 failed this metric
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/authorization-sudo.rb:2
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:5
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:15
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:10
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:17
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:18
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/openssh.rb:2
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/openssh.rb:23
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:14
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:18
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:22
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:23
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:28
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:37
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:69
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:78
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:5
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:7
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/sudo.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:38
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:42
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:65
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:66
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:68
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:27
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:33
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:63
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:85
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:86
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:88
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:97
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:105
FC002: Avoid string interpolation where not required: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:27
FC003: Check whether you are running with chef server before using server-specific features: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:28
FC003: Check whether you are running with chef server before using server-specific features: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:69
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:1
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:1
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_keys.rb:1
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:5
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:15
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:4
0.1.7 failed this metric
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-groups.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:5
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:15
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:10
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:17
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-users.rb:18
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/openssh.rb:2
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/openssh.rb:23
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:9
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:13
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:14
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:18
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:22
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:23
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:28
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:37
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:69
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:78
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:5
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:7
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/openssh.rb:8
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/sudo.rb:4
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:38
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:42
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:65
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:66
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:68
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:27
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:33
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:63
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:85
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:86
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:88
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:97
FC001: Use strings in preference to symbols to access node attributes: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:105
FC002: Avoid string interpolation where not required: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:27
FC003: Check whether you are running with chef server before using server-specific features: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:28
FC003: Check whether you are running with chef server before using server-specific features: /tmp/cook/72ba01cc671494f848b31f36/common_auth/recipes/auth.rb:69
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_group_account.rb:1
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_account.rb:1
FC016: LWRP does not declare a default action: /tmp/cook/72ba01cc671494f848b31f36/common_auth/resources/common_user_keys.rb:1
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:5
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-openssh.rb:15
FC046: Attribute assignment uses assign unless nil: /tmp/cook/72ba01cc671494f848b31f36/common_auth/attributes/common_auth-sudoers.rb:4