user-ssh-keys-cookbook

Deploys SSH keys and authorized keys

Supported Platforms

CentOS 6.5
Debian 7

Attributes

The root key of all attributes is user_ssh_keys.

Key	Type	Default	Description
`data_bag`	String	`ssh_keys`	Databag where to search for keys
`users`	Hash	`{}`	A list of users with names as key

Users

Key	Type	Default	Description
`authorized_keys`	Array	`[]`	Array of strings representing authorized SSH public keys
`authorized_users`	Array	`[]`	Array of strings representing authorized users (found in the databag)

LWRP

This cookbook provides one resource:

`user_ssh_keys_key`

user_ssh_keys_key 'john' do
  authorized_keys [
    'ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDmz4D...',
    'ssh-rsa sFE5JafGV4UmfxGP5/vpAAADWC8HcoQAyYT...'
  ]
  authorized_users %w(bob joe)
end

This resource will add authorized keys from the provided list (authorized_keys) and from users declared in the databag (bob and joe) to the john user.

Databag

The databag is a Hash with usernames as keys. Each user can have a list of keypairs (as an Array). A keypair is described as follow:

Key	Type	Default	Description
`id`	String	`nil`	Arbitrary name for the key
`priv`	String	`nil`	Public key content
`pub`	String	`nil`	Private key content

Usage

You can use this cookbook in two ways:

using the default recipe and providing (attributes)[#attributes]
using the LWRP

Both methods require you to define a databag to define SSH key pairs. Defining attributes is not required if you only want to use the LWRP.

Note that the user whose keys you wish to populate must already exist, and also have a databag entry. That is, if you have:

user_ssh_keys_key 'root' do
  authorized_users %w(bob)
  data_bag 'keys'
  action :create
end

then you must have a databag entry for both "bob" and "root".

user-ssh-keys::default

Include user-ssh-keys in your node's run_list:

{
  "run_list": [
    "recipe[user-ssh-keys]"
  ]
}

Example databag

{
    "id": "bob",
    "keys": [
        {
            "id": "my_key",
            "pub": "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDmz4D...",
            "priv": [
                "-----BEGIN RSA PRIVATE KEY-----",
                "MIIEpgIBAAKCAQEA5s+A461t/v8mQB9UQpaYwGWNl...",
                "...",
                "-----END RSA PRIVATE KEY-----"
            ]
        },
        {
            "id": "my_other_key",
            "pub": "ssh-rsa sFE5JafGV4UmfxGP5/vpWC8HcoQAyYT...",
            "priv": [
                "-----BEGIN RSA PRIVATE KEY-----",
                "XFQg/FfgRC+rwooxKXsxqjA/zapfkzFVBchsjmYpx...",
                "...",
                "-----END RSA PRIVATE KEY-----"
            ]
        }
    ]
}

Name		Name	Last commit message	Last commit date
Latest commit History 27 Commits
attributes		attributes
libraries		libraries
providers		providers
recipes		recipes
resources		resources
spec		spec
templates/default		templates/default
.rspec		.rspec
.travis.yml		.travis.yml
Berksfile		Berksfile
Berksfile.lock		Berksfile.lock
CHANGELOG.md		CHANGELOG.md
Gemfile		Gemfile
Gemfile.lock		Gemfile.lock
README.md		README.md
Rakefile		Rakefile
chefignore		chefignore
metadata.rb		metadata.rb

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

user-ssh-keys-cookbook

Supported Platforms

Attributes

Users

LWRP

`user_ssh_keys_key`

Databag

Usage

user-ssh-keys::default

Example databag

About

Releases 2

Packages

Contributors 5

Languages

pmsipilot/user-ssh-keys-cookbook

Folders and files

Latest commit

History

Repository files navigation

user-ssh-keys-cookbook

Supported Platforms

Attributes

Users

LWRP

user_ssh_keys_key

Databag

Usage

user-ssh-keys::default

Example databag

About

Resources

Stars

Watchers

Forks

Releases 2

Packages 0

Contributors 5

Languages

`user_ssh_keys_key`

Packages