Page MenuHomeDevCentral

Create software build account

Authored by dereckson on Feb 23 2017, 18:26.



Account 'builder' can be used to install software, so a non privileged
account is used to operations like git clone, ./configure or make.

The group 'deployment' will contain deployment accounts, and users
allowed to sudo to these groups.

Ref T1159

Test Plan
  • check builder account exists
  • check deployment group exists
  • test sudo -u builder whoami

Diff Detail

rOPS Nasqueron Operations
Automatic diff as part of commit; lint not applicable.
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

dereckson created this revision.Feb 23 2017, 18:26
dereckson edited the summary of this revision. (Show Details)Feb 23 2017, 18:26
dereckson accepted this revision.Feb 23 2017, 18:58
Salt master
$ cd /opt/nasqueron-operations
$ arc patch D923
$ salt '*' saltutil.refresh_pillar
$ salt eglide state.apply roles/shellserver/users/
$ salt eglide state.apply roles/shellserver/userland-software/account
$ id
uid=5001(dereckson) gid=5001(dereckson) groups=5001(dereckson),0(wheel),200(shell),828(deployment),829(nasqueron-irc)
$ sudo -u builder whoami
This revision is now accepted and ready to land.Feb 23 2017, 18:58
dereckson updated this revision to Diff 2343.Feb 23 2017, 18:59

Fix sudoers path

This revision was automatically updated to reflect the committed changes.