1 |
misc |
265 |
class pam { |
2 |
|
|
|
3 |
misc |
266 |
class base { |
4 |
|
|
package { ["pam_ldap","nss_ldap", "pam_mkhomedir"]: |
5 |
|
|
ensure => installed, |
6 |
|
|
} |
7 |
misc |
265 |
|
8 |
misc |
266 |
file { "system-auth": |
9 |
|
|
path => "/etc/pam.d/system-auth", |
10 |
|
|
owner => root, |
11 |
|
|
group => root, |
12 |
|
|
mode => 644, |
13 |
|
|
content => template("openldap/system-auth") |
14 |
|
|
} |
15 |
|
|
} |
16 |
misc |
265 |
|
17 |
|
|
# for server where only admin can connect |
18 |
misc |
266 |
class admin_access inherits base { |
19 |
misc |
265 |
$access_class = "admin" |
20 |
misc |
266 |
# not sure if this line is needed anymore, wil check later |
21 |
misc |
265 |
file { "system-auth": } |
22 |
|
|
} |
23 |
|
|
|
24 |
|
|
# for server where people can connect with ssh ( git, svn ) |
25 |
misc |
266 |
class commiters_access inherits base { |
26 |
misc |
265 |
$access_class = "commiters" |
27 |
|
|
file { "system-auth": } |
28 |
|
|
} |
29 |
|
|
} |