Page MenuHomeDevCentral
Differential D923

Create software build account
ClosedPublic
Actions

Authored by dereckson on Feb 23 2017, 18:26.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Aug 16, 22:11
Unknown Object (File)
Fri, Aug 15, 14:50
Unknown Object (File)
Tue, Aug 12, 03:11
Unknown Object (File)
Mon, Aug 11, 07:01
Unknown Object (File)
Mon, Aug 11, 05:35
Unknown Object (File)
Mon, Aug 11, 01:17
Unknown Object (File)
Sun, Aug 10, 22:19
Unknown Object (File)
Sun, Aug 10, 17:32
View All Files
Subscribers
None

Details

Reviewers
dereckson
Maniphest Tasks
T1159: Deploy Wraith on Eglide
Commits
rOPS27562546c554: Create software build account
Summary

Account 'builder' can be used to install software, so a non privileged
account is used to operations like git clone, ./configure or make.

The group 'deployment' will contain deployment accounts, and users
allowed to sudo to these groups.

Ref T1159

Test Plan
  • check builder account exists
  • check deployment group exists
  • test sudo -u builder whoami

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

dereckson created this revision.Feb 23 2017, 18:26
Harbormaster completed remote builds in B1422: Diff 2342.Feb 23 2017, 18:26
dereckson edited the summary of this revision. (Show Details)Feb 23 2017, 18:26
dereckson added a task: T1159: Deploy Wraith on Eglide.
dereckson accepted this revision.Feb 23 2017, 18:58
Salt master
$ cd /opt/nasqueron-operations
$ arc patch D923
$ salt '*' saltutil.refresh_pillar
$ salt eglide state.apply roles/shellserver/users/
$ salt eglide state.apply roles/shellserver/userland-software/account
Eglide
$ id
uid=5001(dereckson) gid=5001(dereckson) groups=5001(dereckson),0(wheel),200(shell),828(deployment),829(nasqueron-irc)
$ sudo -u builder whoami
builder
This revision is now accepted and ready to land.Feb 23 2017, 18:58
dereckson updated this revision to Diff 2343.Feb 23 2017, 18:59

Fix sudoers path

Closed by commit rOPS27562546c554: Create software build account (authored by dereckson, committed by dereckson). · Explain WhyFeb 23 2017, 19:01
This revision was automatically updated to reflect the committed changes.
dereckson mentioned this in T1310: Merge deploy and deployment groups.Nov 15 2018, 20:22

Revision Contents
Changeset List

PathSize
1 line
1 line
pillar/
users/
5 lines
roles/
shellserver/
userland-software/
36 lines
files/
17 lines
1 line

Diff 2344

View Options

GIDs

Loading...
View Options

UIDs

Loading...
View Options

pillar/users/shellgroups.sls

Loading...
View Options

roles/shellserver/userland-software/account.sls

Loading...
View Options

roles/shellserver/userland-software/files/builder.sudoers

Loading...
View Options

roles/shellserver/userland-software/init.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator