diff options
author | Jesse Luehrs <doy@tozt.net> | 2018-11-13 01:20:44 -0500 |
---|---|---|
committer | Jesse Luehrs <doy@tozt.net> | 2018-11-13 01:21:19 -0500 |
commit | c3659899860d8519deec2c1f8993e4262e5f7f6c (patch) | |
tree | d071625dd2966ef0b3e83dc6b93bf0629441b40e | |
parent | 53a9de2c9b4cf7b595e4553775b44895ee6c36d4 (diff) | |
download | puppet-tozt-c3659899860d8519deec2c1f8993e4262e5f7f6c.tar.gz puppet-tozt-c3659899860d8519deec2c1f8993e4262e5f7f6c.zip |
move password hashes to secrets
-rw-r--r-- | modules/secret/functions/value.pp | 3 | ||||
-rw-r--r-- | modules/tozt/manifests/users.pp | 4 |
2 files changed, 5 insertions, 2 deletions
diff --git a/modules/secret/functions/value.pp b/modules/secret/functions/value.pp new file mode 100644 index 0000000..8b42d7d --- /dev/null +++ b/modules/secret/functions/value.pp @@ -0,0 +1,3 @@ +function secret::value(String $name) >> String { + file("secret/$name") +} diff --git a/modules/tozt/manifests/users.pp b/modules/tozt/manifests/users.pp index b07373b..0c097b5 100644 --- a/modules/tozt/manifests/users.pp +++ b/modules/tozt/manifests/users.pp @@ -1,10 +1,10 @@ class tozt::users { tozt::user { 'root': - pwhash => '$6$cqlzoze/Mq3$bHGFqjPF6wBRLcI0VWuQa9cg8c1DfGWL21QdA9KUuDqhtnCfjyaKryu.ACxP9umzuYsWpikegZN6wbTU2JX6V1'; + pwhash => secret::value('passwd/root'); } tozt::user { 'doy': - pwhash => '$6$Q6Y/nmt/QZbU$6D692oUPiFvnQEwoPtL7l83l/KaY/czy9/KI9.GnEEOslQumU39qteDDp.0i9E7nSDodWGOmPgfAsoYJBYrta1', + pwhash => secret::value('passwd/doy'), extra_groups => ['wheel'], homedir_mode => '0701'; } |