From 698234c0402eeff37517869695c75682a3fad332 Mon Sep 17 00:00:00 2001
From: Georg Pfuetzenreuter
Date: Thu, 26 Jan 2023 23:05:21 +0100
Subject: Manage common SSH server

Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>
---
 salt/common/ssh.sls  | 12 ++++++++++++
 salt/common/suse.sls |  2 +-
 2 files changed, 13 insertions(+), 1 deletion(-)
 create mode 100644 salt/common/ssh.sls

(limited to 'salt/common')

diff --git a/salt/common/ssh.sls b/salt/common/ssh.sls
new file mode 100644
index 0000000..76033fd
--- /dev/null
+++ b/salt/common/ssh.sls
@@ -0,0 +1,12 @@
+include:
+  - openssh.banner
+  - openssh.config
+
+/etc/ssh/user_ca:
+  file.managed:
+    - contents:
+      {%- for key in salt['pillar.get']('secret_ssh:userca_keys') -%}
+      - {{ key }}
+      {%- endfor -%}
+    - require:
+      - pkg: openssh
diff --git a/salt/common/suse.sls b/salt/common/suse.sls
index b4abd7a..bd252c8 100644
--- a/salt/common/suse.sls
+++ b/salt/common/suse.sls
@@ -3,7 +3,7 @@ include:
   - profile.zypp
   - profile.node_exporter
   - users
-  - postfix
+  - .ssh
   - postfix.config
 
 {#- to-do: move this to some formula or macro -#}
-- 
cgit v1.2.3