Page MenuHomeDevCentral
Differential D923

Create software build account
ClosedPublic
Actions

Authored by dereckson on Feb 23 2017, 18:26.
Tags
None
Referenced Files
F24376393: D923.id2344.diff
Mon, Feb 16, 17:03
F24375701: D923.id2344.diff
Mon, Feb 16, 15:26
F24375605: D923.id2343.diff
Mon, Feb 16, 15:19
F24375587: D923.id2342.diff
Mon, Feb 16, 15:18
F24374705: D923.id2344.diff
Mon, Feb 16, 13:38
F24374644: D923.id2343.diff
Mon, Feb 16, 13:36
F24374625: D923.id2342.diff
Mon, Feb 16, 13:36
F24372572: D923.id2344.diff
Mon, Feb 16, 10:00
View All Files
Subscribers
None

Details

Reviewers
dereckson
Maniphest Tasks
T1159: Deploy Wraith on Eglide
Commits
rOPS27562546c554: Create software build account
Summary

Account 'builder' can be used to install software, so a non privileged
account is used to operations like git clone, ./configure or make.

The group 'deployment' will contain deployment accounts, and users
allowed to sudo to these groups.

Ref T1159

Test Plan
  • check builder account exists
  • check deployment group exists
  • test sudo -u builder whoami

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
No Lint Coverage
Unit
No Test Coverage
Branch
wraith (branched from master)
Build Status
Buildable 1422
Build 1670: arc lint + arc unit

Event Timeline

dereckson created this revision.Feb 23 2017, 18:26
Harbormaster completed remote builds in B1422: Diff 2342.Feb 23 2017, 18:26
dereckson edited the summary of this revision. (Show Details)Feb 23 2017, 18:26
dereckson added a task: T1159: Deploy Wraith on Eglide.
dereckson accepted this revision.Feb 23 2017, 18:58
Salt master
$ cd /opt/nasqueron-operations
$ arc patch D923
$ salt '*' saltutil.refresh_pillar
$ salt eglide state.apply roles/shellserver/users/
$ salt eglide state.apply roles/shellserver/userland-software/account
Eglide
$ id
uid=5001(dereckson) gid=5001(dereckson) groups=5001(dereckson),0(wheel),200(shell),828(deployment),829(nasqueron-irc)
$ sudo -u builder whoami
builder
This revision is now accepted and ready to land.Feb 23 2017, 18:58
dereckson updated this revision to Diff 2343.Feb 23 2017, 18:59

Fix sudoers path

Closed by commit rOPS27562546c554: Create software build account (authored by dereckson, committed by dereckson). · Explain WhyFeb 23 2017, 19:01
This revision was automatically updated to reflect the committed changes.
dereckson mentioned this in T1310: Merge deploy and deployment groups.Nov 15 2018, 20:22

Revision Contents
Changeset List

PathSize
1 line
1 line
pillar/
users/
5 lines
roles/
shellserver/
userland-software/
36 lines
files/
17 lines
1 line

Diff 2342

View Options

GIDs

Loading...
View Options

UIDs

Loading...
View Options

pillar/users/shellgroups.sls

Loading...
View Options

roles/shellserver/userland-software/account.sls

Loading...
View Options

roles/shellserver/userland-software/files/builder.sudoers

Loading...
View Options

roles/shellserver/userland-software/init.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator