Version information
This version is compatible with:
- Puppet Enterprise 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x, 2019.8.x
- Puppet >= 6.21.0 < 8.0.0
- , ,
Start using this module
Add this module to your Puppetfile:
mod 'jcpunk-authselect', '0.1.3'
Learn more about managing modules with a PuppetfileDocumentation
authselect
Manage authselect profile on systems that support it.
This module does not create custom profiles or deploy them. For consistency, you are advised to package them up and then deploy that package rather than build them ad-hoc.
Table of Contents
- Description
- Setup - The basics of getting started with authselect
- Usage - Configuration options and additional functionality
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
Description
Set your authselect
profile and any required features.
Setup
What authselect affects
This will alter your host's fundemental authentication and lookups via authselect. Understand what that means before using it.
Setup Requirements
You will need to start any required services BEFORE the authselect class runs.
This class does not track things like sssd
or winbind
services.
Usage
Example class invocation:
class { 'authselect':
profile => 'sssd',
profile_options => [ 'with-mkhomedir', 'with-faillock']
}
And the Hiera file would look like:
authselect::profile: sssd
authselect::profile_options:
- with-mkhomedir
- without-pam-u2f-nouserok
This class also provides two facts: authselect_profile
and authselect_profile_features
.
Limitations
This class does not have methods for deploying or generating custom profiles.
Development
Folks should use the repo listed in metadata.json
.
Reference
Table of Contents
Classes
authselect
: Manage authselect's active profile
Classes
authselect
This will select the requested authselect profile
Parameters
The following parameters are available in the authselect
class:
package_manage
Data type: Boolean
Should this class manage the authselect package(s)
package_ensure
Data type: String
Passed to package
ensure
for the authselect package(s)
package_names
Data type: Array[String[1], 1]
Packages to manage in this class
profile_manage
Data type: Boolean
Should this class set the active profile
profile
Data type: String[1]
Which authselect profile should be used
profile_options
Data type: Array[String, 0]
What options should we pass to authselect ie, what features should be enabled/disabled?
Changelog
All notable changes to this project will be documented in this file.
Release 0.1.3
Bug Fixes
- Fix #2, better test coverage
Release 0.1.2
Bug Fixes
- Fix #1, module not idempotent
Release 0.1.1
Bug Fixes
- Fix typo in doc
Release 0.1.0
Known Limitations
- No way to track services like
sssd
orwinbind
- No support for creating/deploying custom profiles