cookbook 'rotate-passwords', '= 1.0.0'
rotate-passwords (2) Versions 1.0.0 Follow3
Installs/Configures rotate-passwords
cookbook 'rotate-passwords', '= 1.0.0', :supermarket
knife supermarket install rotate-passwords
knife supermarket download rotate-passwords
rotate-passwords Cookbook
Table of Contents
Overview
This cookbook provides a custom resource that allows you to automatically rotate the password for a local user after it has aged past a pre-determined time and store those passwords in Chef Vault.
Requirements
Requires Chef 12.5 or later as this cookbook makes use of Custom Resources.
Usage
rotate_password
For each user you want to rotate the password for you must declare a rotate_password
resource.
Each rotate_password
has the following attributes:
Attribute | Type | Description | Default |
---|---|---|---|
name |
String or Symbol
|
Resource name. | N/A |
max_age |
Integer |
How old the defined user's password can be before it is rotated. | 30 |
password_length |
Integer |
The length of the randomly generated password. | 30 |
vault_name |
String |
Description of the Yum repo. | vault-passwords |
vault_admins |
String or Array
|
Base URL of the Yum repo. | N/A |
To rotate the password of the root user for example:
rotate_password 'root' do vault_admins ['jbloggs', 'mrossi'] end
Contributing
If you would like to contribute to this cookbook please follow these steps;
- Fork the repository on Github.
- Create a named feature branch (like
add_component_x
). - Write your change.
- Write tests for your change (if applicable).
- Run the tests, ensuring they all pass.
- Submit a Pull Request using Github.
License and Authors
License: BSD 2-clause
Authors:
Props to this cookbook for showing how to use Test Kitchen with Chef Vault.
Dependent cookbooks
chef-vault >= 1.2.5 |
Contingent cookbooks
There are no cookbooks that are contingent upon this one.
2016-02-10
Summary
Initial release.
Features
- Provides resource for rotating a user's passwords.
- Can define how old a password can be before it is rotated.
- Define the length of the randomly generated password.
- Define the Vault that should be used to store the password.
- Define the Admins that can access the vaulted password.
Foodcritic Metric
1.0.0 passed this metric
1.0.0 passed this metric