feat(TOFS): ssh sshd configs known_host and banner by sticky-note · Pull Request #164 · saltstack-formulas/openssh-formula

sticky-note · 2019-06-25T05:37:03Z

Here is a contribution to openssh-formula.
Don't know how to handle source filenames here, so I decided to keep backward compatibility.
What do you think about it ?
Ping @myii

daks

You need to copy from template-formula the TOFS doc.

Otherwise LGTM, good job :)

myii · 2019-06-25T16:29:29Z

@sticky-note These TOFS PRs need to be checked thoroughly, in a similar way that has been done for the other two TOFS PRs we've worked on:

Could you please provide this output for this PR?

sticky-note · 2019-07-01T03:48:09Z

You need to copy from template-formula the TOFS doc.

Otherwise LGTM, good job :)

Added docs/TOFS-pattern.rst

sticky-note · 2019-07-01T04:25:21Z

@myii, Here is my output for this PR:
salt 'tgt' state.show_sls openssh.banner :

(...)
  sshd_banner:
  (...)
        file:
            |_
              ----------
              name:
                  /etc/ssh/banner
            |_
              ----------
              source:
                  - salt://openssh/files/tgt/banner
                  - salt://openssh/files/FreeBSD/banner
                  - salt://openssh/files/default/banner
(...)

salt 'tgt' state.show_sls openssh.config :

(...)
    ssh_config:
    (...)
        file:
            |_
              ----------
              name:
                  /etc/ssh/ssh_config
            |_
              ----------
              source:
                  - salt://openssh/files/tgt/ssh_config
                  - salt://openssh/files/FreeBSD/ssh_config
                  - salt://openssh/files/default/ssh_config
    (...)
    sshd_config:
    (...)
        file:
            |_
              ----------
              name:
                  /etc/ssh/sshd_config
            |_
              ----------
              source:
                  - salt://openssh/files/tgt/sshd_config
                  - salt://openssh/files/FreeBSD/sshd_config
                  - salt://openssh/files/default/sshd_config
    (...)

salt 'tgt' state.show_sls openssh.known_hosts :

(...)
    manage ssh_known_hosts file:
    (...)
        file:
            |_
              ----------
              name:
                  /etc/ssh/ssh_known_hosts
            |_
              ----------
              source:
                  - salt://openssh/files/tgt/ssh_known_hosts
                  - salt://openssh/files/FreeBSD/ssh_known_hosts
                  - salt://openssh/files/default/ssh_known_hosts
    (...)

myii · 2019-07-03T08:40:52Z

@sticky-note Apologies for the delay. Thanks for this PR, I've done most of the checks and it's generally fine. I've got some comments but I will need to come back to this when I've got some more time available.

* Use consistent Jinja whitespace control `{%- ... -}` * Improve debug output (comments & whitespace control) * Use exact state names with TOFS `files_switch` * Add `ssh_known_hosts_src` to `defaults` (for consistency) * Restrict `pillar.example` changes to TOFS only * Use `fire_banner` in `pillar.example` to indicate available template

myii · 2019-07-04T00:47:46Z

@sticky-note So now it's time for me to turn the tables on you -- it's your turn to review my changes! See the commit that I've added here (f6dbca3). Here's my explanation about what I'm proposing:

Use consistent Jinja whitespace control {%- ... -}
Improve debug output (comments & whitespace control)
Use exact state names with TOFS files_switch
Add ssh_known_hosts_src to defaults (for consistency)
Restrict pillar.example changes to TOFS only
Use fire_banner in pillar.example to indicate available template

Feel free to agree or disagree. I can explain further if necessary. I look forward to your advice.

Note, if all is OK, nothing else needs to be done from your side. The merge can proceed as usual.

myii · 2019-07-04T01:02:13Z

For completeness, the diff of changes before and after this PR (after the last commit added).

openssh.banner (non-TOFS)

No change.

openssh.banner (TOFS)

-      - salt://openssh/files/banner
+      - salt://openssh/files/ABC/banner
+      - salt://openssh/files/Debian/banner
+      - salt://openssh/files/default/banner

openssh.config (non-TOFS)

No change.

openssh.config (TOFS)

-      - salt://openssh/files/sshd_config
+      - salt://openssh/files/ABC/sshd_config
+      - salt://openssh/files/Debian/sshd_config
+      - salt://openssh/files/default/sshd_config

...

-      - salt://openssh/files/ssh_config
+      - salt://openssh/files/ABC/ssh_config
+      - salt://openssh/files/Debian/ssh_config
+      - salt://openssh/files/default/ssh_config

openssh.known_hosts

-      - salt://openssh/files/ssh_known_hosts
+      - salt://openssh/files/ABC/ssh_known_hosts
+      - salt://openssh/files/Debian/ssh_known_hosts
+      - salt://openssh/files/default/ssh_known_hosts

sticky-note · 2019-07-04T23:06:46Z

It looks more consistent
I'm okay with these changes, thanks @myii
I'm wondering why you want to remove tofs indications that are not in tofs block
It was intended to indicate the user can use tofs on these files

myii · 2019-07-06T10:10:59Z

Merged, thanks for the excellent work and patience, @sticky-note!

daks reviewed Jun 25, 2019

View reviewed changes

Comment thread pillar.example Outdated

feat(TOFS): ssh sshd configs known_host and banner

a47596f

sticky-note force-pushed the feat/tofs branch from 523a2d2 to a47596f Compare July 1, 2019 03:47

myii reviewed Jul 5, 2019

View reviewed changes

Comment thread pillar.example Outdated

myii reviewed Jul 5, 2019

View reviewed changes

Comment thread pillar.example Outdated

myii approved these changes Jul 6, 2019

View reviewed changes

myii merged commit 193ff7e into saltstack-formulas:master Jul 6, 2019

baby-gnu mentioned this pull request Sep 27, 2020

fix(pillar): tofs must not be under mine_functions #196

Merged

19 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(TOFS): ssh sshd configs known_host and banner#164

feat(TOFS): ssh sshd configs known_host and banner#164
myii merged 2 commits into
saltstack-formulas:masterfrom
sticky-note:feat/tofs

sticky-note commented Jun 25, 2019

Uh oh!

daks left a comment •

edited

Loading

Uh oh!

Uh oh!

myii commented Jun 25, 2019

Uh oh!

sticky-note commented Jul 1, 2019

Uh oh!

sticky-note commented Jul 1, 2019 •

edited

Loading

Uh oh!

myii commented Jul 3, 2019

Uh oh!

myii commented Jul 4, 2019

Uh oh!

myii commented Jul 4, 2019

Uh oh!

sticky-note commented Jul 4, 2019 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

myii commented Jul 6, 2019

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

sticky-note commented Jun 25, 2019

Uh oh!

daks left a comment • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

myii commented Jun 25, 2019

Uh oh!

sticky-note commented Jul 1, 2019

Uh oh!

sticky-note commented Jul 1, 2019 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

myii commented Jul 3, 2019

Uh oh!

myii commented Jul 4, 2019

Uh oh!

myii commented Jul 4, 2019

openssh.banner (non-TOFS)

openssh.banner (TOFS)

openssh.config (non-TOFS)

openssh.config (TOFS)

openssh.known_hosts

Uh oh!

sticky-note commented Jul 4, 2019 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

myii commented Jul 6, 2019

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

daks left a comment •

edited

Loading

sticky-note commented Jul 1, 2019 •

edited

Loading

sticky-note commented Jul 4, 2019 •

edited

Loading