Version 1 (modified by desai, 14 years ago) (diff)


Templating Access Data

These examples depend on the BB plugin in 1.0/trunk. The BB plugin provides additional data about users that have been allocated nodes. It maps in a dictionary of user priviledges to client metadata instances. Each of these plugins use this data. On this system, node allocations map to sudo and root access.


# /etc/sudoers
# This file MUST be edited with the 'visudo' command as root.
# See the man page for details on how to write a sudoers file.
# Host alias specification

# User alias specification
User_Alias ADMIN = ${','.join(metadata.BB['users'].keys())},admin1,admin2
User_Alias IMAGERS = user1,user2,user3

# Cmnd alias specification
Cmnd_Alias      SYSTEMIMAGER = /usr/sbin/getimage [A-z]* [A-z]* 

# Defaults

Defaults        !lecture,tty_tickets,!fqdn

# User privilege specification
root    ALL=(ALL) ALL

# Members of the admin group may gain root privileges


{% for user in metadata.BB['users'] %}
{% end %}