90 lines
2.5 KiB
Python
90 lines
2.5 KiB
Python
from os.path import join, exists
|
|
|
|
directories = {}
|
|
users = {}
|
|
files = {}
|
|
groups = {}
|
|
|
|
pkg_apt = {
|
|
'fish': {},
|
|
'tmux': {},
|
|
}
|
|
|
|
users['root'] = {
|
|
'home': '/root',
|
|
'shell': '/bin/bash',
|
|
'password': repo.vault.human_password_for('root on {}'.format(node.name)),
|
|
}
|
|
|
|
files['/etc/bash.bashrc'] = {
|
|
'source': 'bashrc',
|
|
'content_type': 'mako',
|
|
}
|
|
|
|
files['/etc/tmux.conf'] = {
|
|
'source': 'tmux.conf',
|
|
'content_type': 'mako',
|
|
}
|
|
|
|
for username, attrs in node.metadata['users'].items():
|
|
home = attrs.get('home', '/home/{}'.format(username))
|
|
|
|
if attrs.get('delete', False):
|
|
users[username] = {'delete': True}
|
|
directories[home] = {'delete': True}
|
|
|
|
else:
|
|
user = users.setdefault(username, {})
|
|
|
|
user['home'] = home
|
|
user['shell'] = attrs.get('shell', '/bin/bash')
|
|
user['password_hash'] = 'x'
|
|
|
|
if 'groups' in attrs:
|
|
user['groups'] = attrs['groups']
|
|
|
|
directories[home] = {
|
|
'owner': username,
|
|
'mode': attrs.get('home-mode', '0700'),
|
|
}
|
|
|
|
if 'ssh_pubkey' in attrs:
|
|
files[home + '/.ssh/authorized_keys'] = {
|
|
'content': "\n".join(attrs['ssh_pubkey']),
|
|
'owner': username,
|
|
'mode': '0600',
|
|
}
|
|
|
|
else:
|
|
files[home + '/.ssh/authorized_keys'] = {'delete': True}
|
|
|
|
if attrs.get('deploy_configs', True):
|
|
if exists(join(repo.path, 'data', 'users', 'files', 'tmux', '{}.conf'.format(username))):
|
|
files[home + '/.tmux.conf'] = {
|
|
'content_type': 'mako',
|
|
'source': 'tmux/{}.conf'.format(username),
|
|
}
|
|
else:
|
|
files[home + '/.tmux.conf'] = {
|
|
'delete': True,
|
|
}
|
|
|
|
if exists(join(repo.path, 'data', 'users', 'files', 'fish', '{}.conf'.format(username))):
|
|
fish_src = 'fisk/{}.conf'.format(username)
|
|
else:
|
|
fish_src = 'fish.conf'
|
|
|
|
files[home + '/.config/fish/config.fish'] = {
|
|
'content_type': 'mako',
|
|
'source': fish_src
|
|
}
|
|
|
|
if exists(join(repo.path, 'data', 'users', 'files', 'bash', '{}.bashrc'.format(username))):
|
|
files[home + '/.bashrc'] = {
|
|
'content_type': 'mako',
|
|
'source': 'bash/{}.bashrc'.format(username),
|
|
}
|
|
else:
|
|
files[home + '/.bashrc'] = {
|
|
'delete': True,
|
|
}
|