Allow adayevskaya to ssh trigger puppetmaster/handel

author Peter Palfrader <peter@palfrader.org>

Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)

committer Peter Palfrader <peter@palfrader.org>

Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)
author Peter Palfrader <peter@palfrader.org>
Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)
committer Peter Palfrader <peter@palfrader.org>
Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)
diff --git a/modules/ferm/templates/me.conf.erb b/modules/ferm/templates/me.conf.erb

index 21d3548..c392a27 100644 (file)
--- a/modules/ferm/templates/me.conf.erb
+++ b/modules/ferm/templates/me.conf.erb
@@ -44,6 +44,10 @@ if restrict_ssh.include?(@hostname) then
                 ssh4allowed << %w{$HOST_DEBIAN_V4}
                 ssh6allowed << %w{$HOST_DEBIAN_V6}
         end
+       if scope.function_has_role(['puppetmaster']) then
+               ssh4allowed << "5.153.231.5" # adayevskaya
+               ssh6allowed << "2001:41c8:1000:21::21:5" # adayevskaya
+       end
         if scope.function_has_role(['dns_primary']) then
                 ssh4allowed << "5.153.231.5" # adayevskaya
                 ssh6allowed << "2001:41c8:1000:21::21:5" # adayevskaya
author	Peter Palfrader <peter@palfrader.org>
	Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)
committer	Peter Palfrader <peter@palfrader.org>
	Sat, 6 Jan 2018 13:13:04 +0000 (14:13 +0100)