pam/manifests/init.pp

class pam {

  class base {
      package { ["pam_ldap","nss_ldap", "pam_mkhomedir"]:
        ensure => installed,  
      }

      file { "system-auth":
         path => "/etc/pam.d/system-auth",
         owner => root,
         group => root,
         mode => 644,
         content => template("openldap/system-auth")
      }
  } 
  
  # for server where only admin can connect
  class admin_access inherits base {
    $access_class = "admin"
    # not sure if this line is needed anymore, wil check later
    file { "system-auth": }
  }

  # for server where people can connect with ssh ( git, svn )
  class commiters_access inherits base {
    $access_class = "commiters"
    file { "system-auth": }
  }
}
1	misc	265	class pam {
2
3	misc	266	class base {
4			package { ["pam_ldap","nss_ldap", "pam_mkhomedir"]:
5			ensure => installed,
6			}
7	misc	265
8	misc	266	file { "system-auth":
9			path => "/etc/pam.d/system-auth",
10			owner => root,
11			group => root,
12			mode => 644,
13			content => template("openldap/system-auth")
14			}
15			}
16	misc	265
17			# for server where only admin can connect
18	misc	266	class admin_access inherits base {
19	misc	265	$access_class = "admin"
20	misc	266	# not sure if this line is needed anymore, wil check later
21	misc	265	file { "system-auth": }
22			}
23
24			# for server where people can connect with ssh ( git, svn )
25	misc	266	class commiters_access inherits base {
26	misc	265	$access_class = "commiters"
27			file { "system-auth": }
28			}
29			}