From b685f16c914b9fa05bda7c69ce9e157d04262d09 Mon Sep 17 00:00:00 2001
From: Georg Pfuetzenreuter
Date: Sun, 30 Apr 2023 16:07:21 +0200
Subject: Add manage_firewall conditional

Allow us to enroll machines in Salt which do not yet have their firewall
configuration imported without having their rules overwritten.

Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>
---
 salt/common/suse.sls | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'salt/common')

diff --git a/salt/common/suse.sls b/salt/common/suse.sls
index 764517e..01c7333 100644
--- a/salt/common/suse.sls
+++ b/salt/common/suse.sls
@@ -1,5 +1,8 @@
 include:
+  {#- drop pillar check after all firewall configurations have been imported #}
+  {%- if salt['pillar.get']('manage_firewall'), False %}
   - firewalld
+  {%- endif %}
   - profile.seccheck
   - profile.zypp
   - profile.prometheus.node_exporter
-- 
cgit v1.2.3