Page MenuHomeDevCentral
Differential D923

Create software build account
ClosedPublic
Actions

Authored by dereckson on Feb 23 2017, 18:26.
Tags
None
Referenced Files
F4079155: D923.id2344.diff
Fri, Jan 31, 08:22
F4078012: D923.id2343.diff
Fri, Jan 31, 00:10
Unknown Object (File)
Thu, Jan 30, 00:51
Unknown Object (File)
Sun, Jan 26, 19:15
Unknown Object (File)
Sun, Jan 26, 18:38
Unknown Object (File)
Sat, Jan 25, 06:07
Unknown Object (File)
Tue, Jan 21, 05:01
Unknown Object (File)
Sun, Jan 19, 16:00
View All Files
Subscribers
None

Details

Reviewers
dereckson
Maniphest Tasks
T1159: Deploy Wraith on Eglide
Commits
rOPS27562546c554: Create software build account
Summary

Account 'builder' can be used to install software, so a non privileged
account is used to operations like git clone, ./configure or make.

The group 'deployment' will contain deployment accounts, and users
allowed to sudo to these groups.

Ref T1159

Test Plan
  • check builder account exists
  • check deployment group exists
  • test sudo -u builder whoami

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
No Lint Coverage
Unit
No Test Coverage
Branch
wraith (branched from master)
Build Status
Buildable 1422
Build 1670: arc lint + arc unit

Event Timeline

dereckson created this revision.Feb 23 2017, 18:26
Harbormaster completed remote builds in B1422: Diff 2342.Feb 23 2017, 18:26
dereckson edited the summary of this revision. (Show Details)Feb 23 2017, 18:26
dereckson added a task: T1159: Deploy Wraith on Eglide.
dereckson accepted this revision.Feb 23 2017, 18:58
Salt master
$ cd /opt/nasqueron-operations
$ arc patch D923
$ salt '*' saltutil.refresh_pillar
$ salt eglide state.apply roles/shellserver/users/
$ salt eglide state.apply roles/shellserver/userland-software/account
Eglide
$ id
uid=5001(dereckson) gid=5001(dereckson) groups=5001(dereckson),0(wheel),200(shell),828(deployment),829(nasqueron-irc)
$ sudo -u builder whoami
builder
This revision is now accepted and ready to land.Feb 23 2017, 18:58
dereckson updated this revision to Diff 2343.Feb 23 2017, 18:59

Fix sudoers path

Closed by commit rOPS27562546c554: Create software build account (authored by dereckson, committed by dereckson). · Explain WhyFeb 23 2017, 19:01
This revision was automatically updated to reflect the committed changes.
dereckson mentioned this in T1310: Merge deploy and deployment groups.Nov 15 2018, 20:22

Revision Contents
Changeset List

PathSize
1 line
1 line
pillar/
users/
5 lines
roles/
shellserver/
userland-software/
36 lines
files/
17 lines
1 line

Diff 2342

View Options

GIDs

Loading...
View Options

UIDs

Loading...
View Options

pillar/users/shellgroups.sls

Loading...
View Options

roles/shellserver/userland-software/account.sls

Loading...
View Options

roles/shellserver/userland-software/files/builder.sudoers

Loading...
View Options

roles/shellserver/userland-software/init.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator