users: manage ssh authorised keys

Signed-off-by: Joe Groocock <me@frebib.net>
2020-07-19 15:08:02 +01:00
5 changed files with 6 additions and 14 deletions
--- a/pillar/top.sls
+++ b/pillar/top.sls
@ -1,3 +0,0 @@
 {{ saltenv }}:
  '*':
    []
--- a/stack/stack.cfg
+++ b/stack/stack.cfg
@ -1 +0,0 @@
 []
--- a/states/salt/minion/init.sls
+++ b/states/salt/minion/init.sls
@ -11,10 +11,10 @@ salt-minion:
 restart-salt-minion:
  cmd.run:
-  - name: sleep 10 && systemctl restart salt-minion
+  - name: "sleep 10 && systemctl restart salt-minion --no-block"
  - bg: true
  - order: last
-  - onchanges:
+  - watch:
    - pkg: salt-minion
    - file: /etc/salt/minion
  - require:
@ -34,7 +34,6 @@ restart-salt-minion:
 check-minion-config:
  cmd.run:
-  - name: sudo salt-call --local --skip-grains test.true
+  - name: sudo salt-call --local --skip-grains test.ping
-  - onchanges:
+  - watch:
    - pkg: salt-minion
    - file: /etc/salt/minion
--- a/states/users/init.sls
+++ b/states/users/init.sls
@ -18,7 +18,7 @@
  {%- endif %}
  ssh_auth.manage:
  - user: {{ name }}
-  {%- if user['ssh-keys'] is defined %}
+  {%- if user.ssh-keys is defined %}
-  - ssh_keys: {{ user['ssh-keys']|json }}
+  - ssh_keys: {{ user.ssh-keys|json }}
  {%- endif %}
 {%- endfor %}
--- a/states/users/users.jinja
+++ b/states/users/users.jinja
@ -4,9 +4,6 @@
  {%- do admin_groups.append('systemd-journal') %}
 {%- endif %}
 {# FIXME(frebib): manage Docker group instead of blindly adding it #}
 {%- do admin_groups.append('docker') %}
 frebib:
  groups:
 {%- for group in admin_groups %}