1 |
class restrictshell { |
2 |
class shell { |
3 |
file { '/usr/local/bin/sv_membersh.pl': |
4 |
ensure => present, |
5 |
owner => root, |
6 |
group => root, |
7 |
mode => 755, |
8 |
content => template("restrictshell/sv_membersh.pl"), |
9 |
} |
10 |
} |
11 |
|
12 |
class base { |
13 |
include shell |
14 |
$allow_svn = "0" |
15 |
$allow_git = "0" |
16 |
$allow_rsync = "0" |
17 |
$allow_pkgsubmit = "0" |
18 |
|
19 |
$ldap_pwfile = "/etc/ldap.secret" |
20 |
file { '/etc/membersh-conf.pl': |
21 |
ensure => present, |
22 |
owner => root, |
23 |
group => root, |
24 |
mode => 755, |
25 |
content => template("restrictshell/membersh-conf.pl"), |
26 |
} |
27 |
|
28 |
package { 'python-ldap': |
29 |
ensure => installed, |
30 |
} |
31 |
|
32 |
$pubkeys_directory = "/var/lib/pubkeys" |
33 |
file { $pubkeys_directory: |
34 |
ensure => directory, |
35 |
owner => root, |
36 |
group => root, |
37 |
mode => 755, |
38 |
} |
39 |
|
40 |
file { '/usr/local/bin/ldap-sshkey2file.py': |
41 |
ensure => present, |
42 |
owner => root, |
43 |
group => root, |
44 |
mode => 755, |
45 |
content => template("restrictshell/ldap-sshkey2file.py"), |
46 |
requires => Package['python-ldap'] |
47 |
} |
48 |
} |
49 |
|
50 |
class allow_svn_git_pkgsubmit inherits base { |
51 |
$allow_svn = "1" |
52 |
$allow_git = "1" |
53 |
$allow_pkgsubmit = "1" |
54 |
} |
55 |
} |