Puppet Class: sudo

Inherits:
sudo::params
Defined in:
manifests/init.pp

Overview

Class: sudo

Parameters:

  • manage_sudoers_file (Any) (defaults to: true)
  • manage_sudoersd (Any) (defaults to: true)
  • keep_os_defaults (Any) (defaults to: true)
  • package_name (Any) (defaults to: $sudo::params::package_name)
  • package_ensure (Any) (defaults to: $sudo::params::package_ensure)
  • sudoers_file_path (Any) (defaults to: $sudo::params::sudoers_file_path)
  • sudoersd_path (Any) (defaults to: $sudo::params::sudoersd_path)
  • sudoers_file_content (Any) (defaults to: undef)
  • defaults_hash (Any) (defaults to: undef)
  • confs_hash (Any) (defaults to: undef) 


3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
 
# File 'manifests/init.pp', line 3

class sudo (
  $manage_sudoers_file   = true,
  $manage_sudoersd       = true,
  $keep_os_defaults      = true,
  $package_name          = $sudo::params::package_name,
  $package_ensure        = $sudo::params::package_ensure,
  $sudoers_file_path     = $sudo::params::sudoers_file_path,
  $sudoersd_path         = $sudo::params::sudoersd_path,
  $sudoers_file_content  = undef,
  $defaults_hash         = undef,
  $confs_hash            = undef
) inherits sudo::params {

  package { $package_name:
    ensure => $package_ensure,
  }

  if $manage_sudoers_file {

    if $sudoers_file_content {
      $content_real = $sudoers_file_content
    } else {
      $content_real = template('sudo/sudoers_file.erb')
    }

    file { $sudoers_file_path:
      ensure  => file,
      owner   => 'root',
      group   => 'root',
      mode    => '0440',
      replace => $manage_sudoers_file,
      content => $content_real,
      require => Package[$package_name],
    }
  }

  if $manage_sudoersd {
    file { $sudoersd_path:
      ensure  => directory,
      owner   => 'root',
      group   => 'root',
      mode    => '0550',
      recurse => $manage_sudoersd,
      purge   => $manage_sudoersd,
      require => Package[$package_name],
    }
  }

  if $keep_os_defaults {
    sudo::defaults { 'os_defaults':
      defaults_hash => $sudo::params::os_defaults,
    }
  }

  if $defaults_hash {
    sudo::defaults { 'custom_defaults':
      defaults_hash => $defaults_hash,
    }
  }

  if $confs_hash {
    create_resources('sudo::conf', $confs_hash)
  }
}