| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Signed-off-by: Pete Higgins <pete@peterhiggins.org>
|
| |
|
|
|
|
|
|
| |
Legally incredibly dubious, particularly since we don't follow it
strictly as policy, and we have git history instead, which does it right.
This is just a waste of time and a cargo cult.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
This is the implementation of [RFC-087](https://github.com/chef-boneyard/chef-rfc/blob/master/rfc087-distro-sugar-helpers.md)
although some of the specifics have been iterated on and changed.
The documentation will be in the [README.md](https://github.com/chef/chef/tree/master/chef-utils/README.md) once this is merged.
While this PR mostly moves chef-sugar utilities into core-chef via this chef-utils gem, the scope of the chef-utils gem
should be considered larger than just that. As an example this PR moves the Mash class into this gem for reuse in ohai
as well.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Provide a user resource that is compatible with default TCC restrictions
that were introduced in macOS 10.14.
Changes:
* This resource and the corresponding provider have been modified to
work with default macOS TCC policies. Direct access to user binary
plists are no longer permitted by default, thus we've chosen to use
use newer methods of creating, modifying and removing users.
* Due to the tooling required by the provider this provider is only
suitable for use on macOS >= 10.14. Support for older platforms has
been removed.
New Features:
* Primary group management is now included.
* 'admin' is now a boolean property that configures a user to an admin.
* 'admin_username' and 'admin_password' are new properties that define the
admin user credentials required for toggling SecureToken for an
exiting user.
The 'admin_username' must correspond to a system admin with SecureToken
enabled in order to toggle SecureToken.
* 'secure_token' is a boolean property that sets the desired state
for SecureToken. SecureToken token is required for FileVault full
disk encryption.
Signed-off-by: Ryan Cragun <ryan@chef.io>
|
| |
|
|
|
|
| |
This was entirely wrong. We're setting the comment to nil and proving that it ends up being the user and not the comment, but then we actually expected it to be the comment. This spec did not due what the description said it did. Now it does.
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
| |
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
|
|
| |
These are the opposite
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
| |
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
|
|
| |
We can greatly simplify our dscl user provider by removing support for macOS 10.7 and 10.7 which has been upgraded to 10.8. No one is using this anyone as it's beyond EOL with Apple and has been for years.
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
| |
Signed-off-by: vasu1105 <vasundhara.jagdale@msystechnologies.com>
|
| |
|
|
| |
Signed-off-by: NAshwini <ashwini.nehate@msystechnologies.com>
|
| |\
| |
| | |
Update wording in resource specs for attributes -> properties
|
| | |
| |
| |
| | |
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |/
|
|
|
|
| |
the dscl user provider uses mixin/shell_out instead and the specs don't seem to use mixlib/shellout or actually need the require.
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
| |
converts all usage to just shell_out() from the numerous helper
utilities that we've had previously.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |\
| |
| | |
Cleanup AIX and Solaris user resources.
|
| | |
| |
| |
| | |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| | |
| |
| |
| | |
Signed-off-by: Nick McSpadden <nmcspadden@gmail.com>
|
| |/ |
|
| |
|
|
| |
Signed-off-by: Thom May <thom@chef.io>
|
| |
|
|
| |
Signed-off-by: Sean Karlage <skarlage@fb.com>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |\
| |
| | |
Clean up more stubbed properties in tests
|
| | |
| |
| |
| | |
Signed-off-by: Noah Kantrowitz <noah@coderanger.net>
|
| |/
|
|
|
|
| |
Fixes: #6092
Signed-off-by: Thom May <thom@chef.io>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
still there on service (where it makes some sense)
also still on mount (because i have no idea if that is actively being
used or if it makes any sense at all).
converts it to a property on mount + service as well.
also removed setting it as an array -- did we ever document that and/or
does anyone use it? i'm not religiously against that way of setting
it, but if nobody ever used it i'd rather remove the YAGNI.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
|
| |
* removes more run_command
* converts to shell_out_compact
* some other misc style cleanup
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
|
|
| |
manage_home: true is not a proper resource property. It should be manage_home true instead.
Signed-off-by: Tim Smith <tsmith@chef.io>
|
| |
|
|
|
|
|
|
| |
This adds URLs to each class of deprecation, and correctly prints and
formats them for maximum user efficiency. We also provide the URL to the
data collector for Visibility to ingest.
Signed-off-by: Thom May <thom@chef.io>
|
| |
|
|
|
|
|
|
|
| |
According to `man shadow` on Solaris 10 and 11, an account is only
locked if the first four characters in the password field are
`*LK*`. The same is true for SmartOS (the OS for which the initial code
was contributed).
Signed-off-by: Tom Duffield <tom@chef.io>
|
| |
|
|
|
|
|
|
|
| |
On Solaris, the 'shadow' database does not exist within `getent`, so the
checking for the username there won't return accurate results. As the
Solaris provider assumes user management via /etc/shadow, we can very
easily parse the contents of the file directly.
Signed-off-by: Tom Duffield <tom@chef.io>
|
| |
|
|
| |
Signed-off-by: Noah Kantrowitz <noah@coderanger.net>
|
| |
|
|
| |
Signed-off-by: Noah Kantrowitz <noah@coderanger.net>
|
| |
|
|
| |
Signed-off-by: Noah Kantrowitz <noah@coderanger.net>
|
| |
|
|
| |
Signed-off-by: Noah Kantrowitz <noah@coderanger.net>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
| |
even though i violently disagree that this is correct behavior and we're
just going to break everyone in one massive go when we hit Chef 13.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
|
|
|
|
|
| |
split out the user provider into 1:1 resources.
fix the behavior of the linux user provider to implement
manage_home behavior correctly.
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| |
|
|
| |
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
|
| | |
|
| | |
|
| |\
| |
| | |
Refactor test to remove duplicate definition of ShellCmdResult
|
