Page MenuHomeDevCentral

Create software build account
ClosedPublic

Authored by dereckson on Feb 23 2017, 18:26.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Nov 13, 04:02
Unknown Object (File)
Thu, Oct 31, 04:48
Unknown Object (File)
Thu, Oct 31, 01:40
Unknown Object (File)
Sun, Oct 27, 14:09
Unknown Object (File)
Sun, Oct 27, 14:09
Unknown Object (File)
Sun, Oct 27, 14:09
Unknown Object (File)
Thu, Oct 24, 08:08
Unknown Object (File)
Tue, Oct 22, 05:48
Subscribers
None

Details

Summary

Account 'builder' can be used to install software, so a non privileged
account is used to operations like git clone, ./configure or make.

The group 'deployment' will contain deployment accounts, and users
allowed to sudo to these groups.

Ref T1159

Test Plan
  • check builder account exists
  • check deployment group exists
  • test sudo -u builder whoami

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
No Lint Coverage
Unit
No Test Coverage
Branch
wraith (branched from master)
Build Status
Buildable 1423
Build 1671: arc lint + arc unit

Event Timeline

Salt master
$ cd /opt/nasqueron-operations
$ arc patch D923
$ salt '*' saltutil.refresh_pillar
$ salt eglide state.apply roles/shellserver/users/
$ salt eglide state.apply roles/shellserver/userland-software/account
Eglide
$ id
uid=5001(dereckson) gid=5001(dereckson) groups=5001(dereckson),0(wheel),200(shell),828(deployment),829(nasqueron-irc)
$ sudo -u builder whoami
builder
This revision is now accepted and ready to land.Feb 23 2017, 18:58
This revision was automatically updated to reflect the committed changes.