Skip to content

Instantly share code, notes, and snippets.

@nomad-fr

nomad-fr/gen-backup-authorized.sls

Created February 6, 2018 10:43
Show Gist options
  • Save nomad-fr/d1ae1704666c08f7b2c51e29a912f4b1 to your computer and use it in GitHub Desktop.
Save nomad-fr/d1ae1704666c08f7b2c51e29a912f4b1 to your computer and use it in GitHub Desktop.
Download ZIP
salt : limit ssh key with options in authorized_keys
Raw
gen-backup-authorized.sls
{% set option1 = 'no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty,no-user-rc' %}
{% set command = '/home/backupuser/authorized.sh' %}
{%
set blah = {
'user1': {
'ip': '192.168.0.2',
'comment': 'Nom Prenom 20.11.2017',
'vol': 'volume1',
'clef': 'ssh-rsa AAAA...6a0mtJbezwmHIZ2ifTmyASBaKpR3XnV9RfDXeovzEwWot'}
,
'user2': {
'ip': '192.168.0.2',
'comment': 'Nom Prenom 24.11.2017',
'vol': 'volume2',
'clef': 'ssh-rsa BBBB...6a0mtJbezwmHIZ2ifTmyASBaKpR3XnV9RfDXeovzEwWot'}
,
'user3': {
'ip': '192.168.0.3',
'comment': 'Nom Prenom 20.11.2017',
'vol': 'volume3',
'clef':'ssh-rsa CCCC...6a0mtJbezwmHIZ2ifTmyASBaKpR3XnV9RfDXeovzEwWot'}
}
%}
{% for name, values in blah.items() %}
ssh-auth-{{ name }}:
ssh_auth.present:
- user: backupuser
- config: /%h/.ssh/authorized_keys
- names:
- from="{{ values.ip }}",command="{{ command }} {{ values.vol }}",{{ option1 }} {{ values.clef }} {{ values.comment }}
{% endfor %}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment