From 754a6ae63ad336c568d8adaed651de5c24d5736b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Hugo=20H=C3=B6rnquist?= <hugo@lysator.liu.se>
Date: Mon, 10 Jan 2022 11:45:14 +0100
Subject: Replace homewritten ssh module with pre-made one.

---
 modules/ssh                   |  1 +
 modules/ssh/manifests/init.pp | 45 -------------------------------------------
 2 files changed, 1 insertion(+), 45 deletions(-)
 create mode 160000 modules/ssh
 delete mode 100644 modules/ssh/manifests/init.pp

(limited to 'modules')

diff --git a/modules/ssh b/modules/ssh
new file mode 160000
index 0000000..b84d4dc
--- /dev/null
+++ b/modules/ssh
@@ -0,0 +1 @@
+Subproject commit b84d4dcea802ce0a12e7d1d96bd71e993cd579bd
diff --git a/modules/ssh/manifests/init.pp b/modules/ssh/manifests/init.pp
deleted file mode 100644
index 8a50ef1..0000000
--- a/modules/ssh/manifests/init.pp
+++ /dev/null
@@ -1,45 +0,0 @@
-class ssh (
-  Variant[Enum['prohibit-password'], Boolean] $permit_root_login = false,
-  Array[String] $authorized_keys = [],
-) {
-
-  $pkgs = $facts['os']['family'] ? {
-    'Debian' => ['openssh-server'],
-    'Archlinux' => ['openssh'],
-  }
-
-  ensure_packages($pkgs)
-
-  $root_login = $permit_root_login ? {
-    'prohibit-password' => 'prohibit-password',
-    true                => 'yes',
-    false               => 'no',
-  }
-
-  file_line { 'sshd permit_root_login':
-    ensure => present,
-    path   => '/etc/ssh/sshd_config',
-    line   => "PermitRootLogin ${root_login}",
-    match  => '^#? *PermitRootLogin ',
-  }
-
-  file { '/root/.ssh':
-    ensure => directory,
-  }
-
-  file { '/root/.ssh/authorized_keys':
-    ensure => file,
-  }
-
-  $authorized_keys.each |$key| {
-    file_line { "Authorize ssh key ${key}":
-      path => '/root/.ssh/authorized_keys',
-      line => $key,
-    }
-  }
-
-  # file { '/etc/ssh/sshd_config':
-  #   ensure  => file,
-  #   content => epp('ssh/sshd_config.epp'),
-  # }
-}
-- 
cgit v1.2.3