3e414c032f69d6bf3d45422dc6f2b9effe88697c
[mirror/dsa-puppet.git] / modules / ssh / manifests / authorized_key_collect.pp
1 # collect authorized_keys stored using authorized_key_add
2
3 define ssh::authorized_key_collect(
4   String $target_user,
5   String $collect_tag,
6 ) {
7   file { "/etc/ssh/userkeys/${target_user}":
8     ensure => 'absent',
9   }
10   concat { "/etc/ssh/puppetkeys/${target_user}": }
11   concat::fragment { "/etc/ssh/puppetkeys/${target_user}-header":
12     target  => "/etc/ssh/puppetkeys/${target_user}",
13     order   => '000',
14     content => "# This file is maintained with puppet\n",
15   }
16   Concat::Fragment <<| tag == "ssh::authorized_key::fragment::${collect_tag}::${target_user}" |>>
17
18   Ferm::Rule <<| tag == "ssh::authorized_key::ferm::${collect_tag}::${target_user}" |>>
19 }