Comments (5)
anl
commented on July 21, 2024
Take a look at the end of conf.pp; it's used to order filenames in $sudo_config_dir:
file { "${priority}_${name}":
ensure => $ensure,
path => "${sudo_config_dir}${priority}_${name}",
owner => 'root',
group => $sudo::params::config_file_group,
mode => '0440',
source => $source,
content => $content_real,
from puppet-sudo.
kithokit
commented on July 21, 2024
Would the order of the file names influences the configuration of sudoers file? That's what I wanna ask. Thanks
from puppet-sudo.
anl
commented on July 21, 2024
Yes - trying not to go too far afield from the scope of this module, from sudoers(5):
When multiple entries match for a user, they are applied in order. Where there are multiple matches, the last match is used (which is not necessarily the most specific match).
and
sudo will read each file in /etc/sudoers.d, skipping file names that end in ~ or contain a . character to avoid causing problems with package manager or editor temporary/backup files. Files are parsed in sorted lexical order.
from puppet-sudo.
kithokit
commented on July 21, 2024
It is useful. Thanks
from puppet-sudo.
ITBlogger
commented on July 21, 2024
Yes, so higher priority (larger number) wins when there's a match.
Similar to adding zz to the front of a sudoers.d/ filename so that it is sorted to the bottom and thus "wins" if there's a match
from puppet-sudo.
Related Issues (20)
- Template for rhel8 is mising HOT 10
- unable to use hiera.yaml with module profile HOT 4
- is this still maintained HOT 4
- Facter error on Windows HOT 3
- Module fails with resolving custom fact "sudoversion" HOT 3
- Group names with space HOT 6
- Dependency pinning resolves version 4.1.0 with new stdlib version 7.0.0 HOT 2
- update ::sudoversion to facts hash HOT 3
- Release 6.0.1? HOT 1
- Bump required stdlib version to <8.0.0 HOT 1
- sudo::content parameter is poorly named HOT 2
- Puppetlabs stdlib 8.x.x support
- wheel_config defaulting to 'absent' is undesirable, change to 'password' HOT 3
- 'versioncmp' parameter 'a' expects a String value, got Undef HOT 7
- Add ability to set passprompt or not mange main config file/package HOT 3
- Upgrade to Hiera 5 HOT 2
- Not All Files in /etc/sudoers.d Getting Purged HOT 10
- Publish new version to forge
- sudo::purge_ignore: '*[!_puppet]' erase more then *_puppet HOT 1
- stdlib 9.x.x compat HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from puppet-sudo.