Odderon is an IRC bot to run under 'odderon' account,
with a 'nasqueron-irc' service group allowed to sudo.
Ref T1129
Details
Details
- Reviewers
dereckson Sandlayth - Maniphest Tasks
- T1129: Deploy Odderon on Eglide
- Commits
- rOPS618a748f0998: Create odderon service account on Eglide
sudo -u odderon whoami
Diff Detail
Diff Detail
- Repository
- rOPS Nasqueron Operations
- Lint
Lint Not Applicable - Unit
Tests Not Applicable
Event Timeline
| roles/shellserver/odderon/init.sls | ||
|---|---|---|
| 20 | + - home: /opt/odderon - groups: - nasqueron-irc | |
| roles/shellserver/odderon/init.sls | ||
|---|---|---|
| 20 | (or guid: 829 alternatively) | |
| roles/shellserver/odderon/init.sls | ||
|---|---|---|
| 10 | Could be split in several files:
| |
Comment Actions
Salt created correctly the user account, and it's correctly possible to use sudo.
Salt master
$ salt eglide state.apply roles/shellserver/odderon/ eglide: ---------- ID: odderon_account Function: user.present Name: odderon Result: True Comment: New user odderon created Started: 16:48:01.231197 Duration: 238.539 ms Changes: ---------- fullname: Odderon gid: 829 groups: - nasqueron-irc home: /opt/odderon homephone: name: odderon passwd: x roomnumber: shell: uid: 830 workphone: ---------- ID: odderon_sudo_capabilities_file Function: file.managed Name: /etc/sudoers.d/odderon Result: True Comment: File /etc/sudoers.d/odderon updated Started: 16:48:01.489876 Duration: 969.884 ms Changes: ---------- diff: New file mode: 0644 Summary for eglide ------------ Succeeded: 2 (changed=2) Failed: 0 ------------ Total states run: 2 Total run time: 1.208 s $ ssh eglide sudo -u odderon whoami odderon