On Dec 28, 11:06 pm, Andrew Schulman <google-groups-
and...@sneakemail.com> wrote:
> > Better ;) Thank you. I would have been unable to find this patch by
> > myself !
>
> Well thanks for testing. I test on my own installation but
>
>
>
>
>
> > Still I have something I don't understand. With the following I expect
> > to log in as user1 with user2 key pair :
>
> > class user::virtuals {
>
> > @user { "user1":
> > uid => "1001",
> > gid => "group",
> > comment => "name",
> > home => "/home/user1",
> > }
> > ssh::auth::key { "us...@lan": }
> > @user { "user2":
> > uid => "1003",
> > gid => "group",
> > comment => "name",
> > home => "/home/user2",
> > }
> > ssh::auth::key { "us...@lan": }
> > }
>
> > class user::admins inherits user::virtuals {
>
> > realize User["user1"]
>
> > ssh::auth::client { "us...@lan": }
>
> > ssh::auth::server { "us...@lan": }
> > ssh::auth::server { "us...@lan": user => "user1" }
> > }
>
> > node node1 {
> > include user::admins
> > }
>
> > I get :
>
> > puppetd[6286]: (//user::virtuals/Ssh::Auth::key[us...@lan]/
> > ssh_auth_key_server[us...@lan]/File[/home/user2/.ssh/authorized_keys]/
> > ensure) change from absent to present failed: Could not set present on
> > ensure: No such file or directory - /home/user2/.ssh/authorized_keys
> > at /etc/puppet/modules/ssh/manifests/auth.pp:311
> > puppetd[6286]: (//user::virtuals/Ssh::Auth::key[us...@lan]/
> > ssh_auth_key_server[us...@lan]/ssh_authorized_key[us...@lan]/ensure)
> > created
> > puppetd[6286]: Got an uncaught exception of type Errno::ENOENT: No
> > such file or directory - /home/user2/.ssh
>
> > And us...@lan's key is not installed into user1's authorized_keys.
> > Anything I did wrong ?
>
> No, your code is right. It's a bug in ssh::auth. I'm working on this and
> hope to post a fix shortly.
Andrew, while you're in your code, can you let me know how I can
achieve this :
ssh::auth::server { "us...@lan": user => "user1" }
ssh::auth::server { "us...@lan": user => "root" }
I would like my big admin user to get access to several accounts. Is
there any trick that would do or does auth.pp needs more
functionnality ?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
