Merge pull request 'Manage common SSH server' (#6) from ssh into production

Reviewed-on: https://git.com.de/LibertaCasa/salt/pulls/6
author: Georg Pfuetzenreuter 2023-01-27 11:48:51 +0100
committer: Georg Pfuetzenreuter 2023-01-27 11:48:51 +0100
commit: b7ec9e683fd299b088d59c84e669eccd372aa7f3 (patch)
tree: e23a9ce4be37b8134d9bf14c1046d5ecf73ad540 /salt/common
parent: f949c0aba0bd9863474a35e1613eb23554acc449 (diff)
parent: 698234c0402eeff37517869695c75682a3fad332 (diff)
download: salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.tar.gz
salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.tar.bz2
salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.zip
2 files changed, 13 insertions, 1 deletions
diff --git a/salt/common/ssh.sls b/salt/common/ssh.sls
new file mode 100644
index 0000000..76033fd
--- /dev/null
+++ b/salt/common/ssh.sls
@@ -0,0 +1,12 @@
+include:
+  - openssh.banner
+  - openssh.config
+
+/etc/ssh/user_ca:
+  file.managed:
+    - contents:
+      {%- for key in salt['pillar.get']('secret_ssh:userca_keys') -%}
+      - {{ key }}
+      {%- endfor -%}
+    - require:
+      - pkg: openssh
diff --git a/salt/common/suse.sls b/salt/common/suse.sls
index b4abd7a..bd252c8 100644
--- a/salt/common/suse.sls
+++ b/salt/common/suse.sls
@@ -3,7 +3,7 @@ include:
   - profile.zypp
   - profile.node_exporter
   - users
-  - postfix
+  - .ssh
   - postfix.config
 
 {#- to-do: move this to some formula or macro -#}
author	Georg Pfuetzenreuter	2023-01-27 11:48:51 +0100
committer	Georg Pfuetzenreuter	2023-01-27 11:48:51 +0100
commit	b7ec9e683fd299b088d59c84e669eccd372aa7f3 (patch)
tree	e23a9ce4be37b8134d9bf14c1046d5ecf73ad540 /salt/common
parent	f949c0aba0bd9863474a35e1613eb23554acc449 (diff)
parent	698234c0402eeff37517869695c75682a3fad332 (diff)
download	salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.tar.gz salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.tar.bz2 salt-b7ec9e683fd299b088d59c84e669eccd372aa7f3.zip