Hi,
On 04/22/2011 07:50 PM, Corey Osman wrote:
> Yes but if I am understanding you correctly I can't just let puppet
> own the required resources. The directories are created automatically
> via PAM config upon initial login. I can't define a user type or a
> file type as I don't know the UID.
tricky. Am I right to assume that you don't have half a mind to push
your LDAP user maps to all your Linux boxes as duplicates using puppet?
> ssh_authorized_key{ "billys key":
> ensure => present,
> key => 'billys sshkey',
> name => "super duper key",
> type => ssh-rsa,
> user =>"billy",
> onlyif => "test -d /home/${user}"
> }
> I am assuming that I can refer to the user with ${user} and that
> onlyif is a valid parameter.
$user does, in fact, not work. I don't see why you'd want it here
though: "billy" is hardcoded, no need to make the "onlyif" condition
generic.
> Does every defined type have onlyif parameter built in?
That would indeed be of great help here.
A fugly workaround for the time being: Just let the keys fail. Set their
"loglevel" param to "debug" so your logs don't get cluttered by tons of
failed key resources.
Of course, you won't notice actual actions anymore, either. But this may
be of minor concern in this scenario.
HTH,
Felix
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
