2
的完整代碼在https://gist.github.com/c9815c1b19a36ed07ca5如何在puppet provider中創建ssh_authorized_key資源? (我強制刷新?)
在nodes.pp我
node 'random.brighterplanet.com' {
$deploy_user = 'www-data'
include secured_by_authorized_keys
include logs_in_as_deploy
}
在modules/logs_in_as_deploy/manifests/logs_in_as_deploy.pp我
class logs_in_as_deploy {
access_via_authorized_key { $deploy_user:
ensure => present
}
}
在modules/secured_by_authorized_keys/lib/puppet/provider/authorized_keys.rb我
# [...]
def to_ssh_authorized_key(name, ensure_status)
k = Puppet::Type.type(:ssh_authorized_key).new :name => id(name), :ensure => ensure_status, :key => public_key, :type => 'ssh-rsa', :user => name
k.provider.create
k
end
# [...]
Puppet::Type.type(:access_via_authorized_key).provide(:authorized_keys) do
# [...]
def create
ks = AuthorizedParty.all.map do |authorized_party|
authorized_party.to_ssh_authorized_key resource[:name], :present
end
end
# [...]
我看到
# puppet --debug /etc/puppet/manifests/site.pp
[...]
notice: /Stage[main]/Logs_in_as_deploy/Access_via_authorized_key[www-data]/ensure: created
debug: Finishing transaction -611364608
debug: Storing state
debug: Stored state in 0.01 seconds
notice: Finished catalog run in 2221.41 seconds
但是沒有東西寫入authorized_keys文件。我想我要麼必須
- 添加內置
ssh_authorized_key資源節點分類的它在某種程度上 - 呼叫沖洗莫名其妙
我在做什麼錯?