Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/mudler/entities

:lock_with_ink_pen: Declarative modern identity manager for UNIX systems in Go
https://github.com/mudler/entities

Last synced: 2 months ago
JSON representation

:lock_with_ink_pen: Declarative modern identity manager for UNIX systems in Go

Awesome Lists containing this project

README 

        
# :lock_with_ink_pen: Entities



Modern go identity manager for UNIX systems.



Entities parses includes file to generate UNIX-compliant `/etc/passwd` , `/etc/shadow` and `/etc/groups` files.

It can be used to handle identities management and honors already existing entities in the system.



```



$> entities apply 

$> entities delete 

$> entities create 



```



## Entities file format



### Passwd



```yaml

kind: "user"

username: "foo"

password: "pass"

uid: 0

gid: 0

info: "Foo!"

homedir: "/home/foo"

shell: "/bin/bash"

```



To use dynamic uid allocation set the `uid` field with value `-1`:



```yaml

kind: "user"

username: "foo"

password: "pass"

uid: -1

gid: 500

info: "Foo!"

homedir: "/home/foo"

shell: "/bin/bash"

```



`entities` will searching for the first available range specified by the env variable

`ENTITY_DYNAMIC_RANGE` or by the default the range `500-999`.



To set gid with a dynamic id based by the group name you can set the `group` attribute:

```yaml

kind: "user"

username: "foo"

password: "pass"

uid: 100

group: "foogroup"

info: "Foo!"

homedir: "/home/foo"

shell: "/bin/bash"

```



`entities` will retrieve the `gid` from existing `/etc/group` file.



### Gshadow



```yaml

kind: "gshadow"

name: "postmaster"

password: "foo"

administrators: "barred"

members: "baz"

```



### Shadow



```yaml

kind: "shadow"

username: "foo"

password: "bar"

last_changed: 1

minimum_changed: 2

maximum_changed: 3

warn: 4

inactive: 5

expire: 6

```



To define `last_changed` with a value equal to current days from 1970 use `now`.



### Group



```yaml

kind: "group"

group_name: "sddm"

password: "xx"

gid: 1

users: "one,two,tree"

```



To assign a dynamic gid it's possible to use the value `-1`:



```yaml

kind: "group"

group_name: "foogroup"

password: "xx"

gid: -1

users: "one,two,tree"

```



`entities` will searching for the first available range specified by the env variable

`ENTITY_DYNAMIC_RANGE` or by the default the range `500-999`.