Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/improbable-eng/puppet-crypt

Last synced: 2 days ago
JSON representation

Host: GitHub
URL: https://github.com/improbable-eng/puppet-crypt
Owner: improbable-eng
License: apache-2.0
Created: 2019-09-20T14:05:22.000Z (over 5 years ago)
Default Branch: master
Last Pushed: 2019-09-20T15:03:19.000Z (over 5 years ago)
Last Synced: 2024-11-10T17:40:46.596Z (2 months ago)
Language: Puppet
Size: 15.6 KB
Stars: 0
Watchers: 3
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # puppet-crypt

This is a Puppet module to install and configure [Crypt](https://github.com/grahamgilbert/crypt).

## Configuration

``` yaml

---

classes:

 - crypt

crypt::crypt_version: '3.0.0'

crypt::server_url: 'http://crypt'

crypt::remove_plist: true

crypt::package_source : 'puppet:///modules/bigfiles/crypt/my_special_crypt.pkg'

crypt::payload_organization: 'Example Organization'

crypt::crypt_files:

 - '/Library/Crypt/checkin'

 - '/Library/Crypt/FoundationPlist.py'

 - '/Library/LaunchDaemons/com.grahamgilbert.crypt.plist'

 - '/Library/Security/SecurityAgentPlugins/Crypt.bundle/Contents/MacOS/Crypt'

crypt::wait_for_user: false

crypt::force_install: false

crypt::output_path: '/var/root/crypt_output.plist'

```

The path to the install package on your Puppet server. Defaults to `puppet:///modules/bigfiles/crypt/-${munkitools_version}.pkg`, which means that the install package should be in the `bigfiles` module, in `files/crypt`, named to match the version.

By default this module will only manage Crypt on macOS devices that are either:

* Laptops

* Have Crypt managed by Munki

If you wish to install and configure it on all macOS devices, regardless of their state, set `crypt::force_install` to `true`.

There have been issues with installing and configuring Crypt's modifications to the Authorization database when there are no users configured on the system. To stop this happening, set `crypt::wait_for_user` to `true` (the default). Set this to `false` only if you know the risks involved.

Pass a list of files to watch for that if missing, will trigger an installation of the Crypt package via `crypt::crypt_files`. The defaults should be fine, unless the package has been modified.

## Requirements

* [apple_package](https://github.com/macadmins/puppet-apple_package)

* [client_stdlib](https://github.com/macadmins/puppet-client_stdlib)

* [macauthdb](https://github.com/macadmins/puppet-macauthdb)

* [mac_facts](https://github.com/grahamgilbert/grahamgilbert-mac_facts)

* [mac_profiles_handler](https://github.com/keeleysam/puppet-mac_profiles_handler)

* [munki](https://github.com/airbnb/puppet-munki)