Version information
released Jan 17th 2017
This version is compatible with:
- , , , , , ,
Start using this module
Add this module to your Puppetfile:
mod 'eyp-sudoers', '0.1.21'
Learn more about managing modules with a PuppetfileDocumentation
eyp/sudoers — version 0.1.21 Jan 17th 2017
sudoers
Table of Contents
Overview
Manage sudoers
Module Description
This module needs /etc/sudoers.d support, which is true for:
- RedHat 6 and up
- Ubuntu 10.04 and up.
Setup
What sudoers affects
- Unless overwrite_sudoers is false, /etc/sudoers
- Creates / deletes files on /etc/sudoers.d
Setup Requirements
This module requires pluginsync enabled
Beginning with sudoers
basic example:
class { 'sudoers': }
sudoers::sudo { 'vagrant':
withoutpassword => true,
}
Usage
Add users with full sudo access:
sudos:
adminuser:
withoutpassword: true
cpiscina: {}
mlleidebrad: {}
mtelevisio: {}
Restrict sudo to a specific command:
sudos:
ppt-deploy:
command: /etc/init.d/nginx
ppt-deploy-service:
username: bbt-deploy
command: /usr/bin/service
sudoers::defaults:
sudoers::defaults { '!requiretty':
username => 'nrpe',
}
Reference
classes
sudoers
- overwrite_sudoers: (default: true)
- visiblepw: (default: false)
- requiretty: (default: false)
- manage_package: (default: true)
- package_ensure: (default: installed)
- sudoersd_recurse: (default: true)
- sudoersd_purge: (default: true)
defines
cmdalias
- cmdname (default: resource's name)
- order (default: 10)
- command
useralias
- useraliasname (default: resource's name)
- order (default: 10)
- users
sudo
- username (default: resource's name)
- order (default: 10)
- from (default: ALL)
- users (default: ALL)
- command (default: ALL)
- withoutpassword (default: false)
Limitations
Tested on:
- CentOS 6
- CentOS 7
- Ubuntu 14.04
Development
We are pushing to have acceptance testing in place, so any new feature should have some test to check both presence and absence of any feature
Contributing
- Fork it
- Create your feature branch (
git checkout -b my-new-feature
) - Commit your changes (
git commit -am 'Added some feature'
) - Push to the branch (
git push origin my-new-feature
) - Create new Pull Request
Dependencies
- puppetlabs/stdlib (>= 1.0.0)