authselect: Manage authselect's active profileauthselect::config: Configure authselectauthselect::package: Manage the authselect package(s)
authselect::custom_profile: Manage a custom authselect profileauthselect::custom_profile_content: Manage file contents in a custom authselect profile
This will select the requested authselect profile
group: files systemd {exclude if "with-custom-group"} netgroup: files {exclude if "with-custom-netgroup"} automount: files {exclude if "with-custom-automount"} services: files {exclude if "with-custom-services"} sudoers: files {include if "with-sudo"}' ensure: 'file' owner: 'root' group: 'root' mode: '0664'
authselect::profile: 'custom/custom_profile_name'authselect::profile: 'sssd'authselect::custom_profiles:
'local_user_minimal':
base_profile: 'minimal'
'local_user_linked_nsswitch':
symlink_nsswitch: true
'local_user_custom_nsswitch':
contents:
'nsswitch.conf':
content: 'passwd: files systemd {exclude if "with-custom-passwd"}The following parameters are available in the authselect class:
Data type: Boolean
Should this class manage the authselect package(s)
Data type: String
Passed to package ensure for the authselect package(s)
Data type: Array[String[1], 1]
Packages to manage in this class
Data type: Boolean
Should this class set the active profile
Data type: String[1]
Which authselect profile should be used. Note: If using a custom (non-vendor) profile you must prefix the name with 'custom/'
Data type: Array[String, 0]
What options should we pass to authselect ie, what features should be enabled/disabled?
Data type: Hash
Custom profiles to manage
Configure authselect
include authselect::configManage the authselect package(s)
include authselect::packageManage a custom authselect profile
authselect::custom_profile { 'namevar': }The following parameters are available in the authselect::custom_profile defined type:
Data type: Hash
Custom profile contents use this only if you fully understand how authselect works!
Default value: {}
Data type: Enum['sssd','winbind', 'nis', 'minimal']
the profile to base your custom profile off of, defaults to sssd
Default value: 'sssd'
Data type: Boolean
Specify whether this profile goes into the custom folder or the vendor profile in authselect keep in mind that if you wish to select a custom profile you must prefix the name of the profile with 'custom/' when setting authselect::profile
Default value: false
Data type: Boolean
Symlink meta files from the base profile instead of copying them
Default value: false
Data type: Boolean
Symlink nsswitch files from the base profile instead of copying them
Default value: false
Data type: Boolean
Symlink pam files from the base profile instead of copying them
Default value: false
Data type: Boolean
Symlink dconf files from the base profile instead of copying them
Default value: false
Manage file contents in a custom authselect profile
authselect::custom_profile_content { 'myprofile/filename':
content => "File contents\n",
}The following parameters are available in the authselect::custom_profile_content defined type:
Data type: String
The file resource content attribute
Data type:
Pattern[
/^\/etc\/authselect\/custom\/[^\/]+\/[^\/]+$/,
/^\/usr\/share\/authselect\/vendor\/[^\/]+\/[^\/]+$/
]The full path to the managed file
Default value: "/etc/authselect/custom/${name}"
Data type: Stdlib::Ensure::File
The file resource ensure attribute
Default value: 'file'
Data type: String[1]
The file resource owner attribute
Default value: 'root'
Data type: String[1]
The file resource group attribute
Default value: 'root'
Data type: Stdlib::Filemode
The file resource mode attribute
Default value: '0644'