cluster/services/idm: add policy for soda
This commit is contained in:
parent
6dcdf7aeaa
commit
a9801c3308
2 changed files with 12 additions and 0 deletions
|
|
@ -11,6 +11,7 @@
|
||||||
nodes = {
|
nodes = {
|
||||||
server = [ "VEGAS" ];
|
server = [ "VEGAS" ];
|
||||||
client = [ "checkmate" "VEGAS" "prophet" "soda" "thunderskin" ];
|
client = [ "checkmate" "VEGAS" "prophet" "soda" "thunderskin" ];
|
||||||
|
client-soda = [ "soda" ];
|
||||||
};
|
};
|
||||||
nixos = {
|
nixos = {
|
||||||
server = ./server.nix;
|
server = ./server.nix;
|
||||||
|
|
@ -18,6 +19,9 @@
|
||||||
./client.nix
|
./client.nix
|
||||||
./policies/infra-admins.nix
|
./policies/infra-admins.nix
|
||||||
];
|
];
|
||||||
|
client-soda = [
|
||||||
|
./policies/soda.nix
|
||||||
|
];
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
|
||||||
8
cluster/services/idm/policies/soda.nix
Normal file
8
cluster/services/idm/policies/soda.nix
Normal file
|
|
@ -0,0 +1,8 @@
|
||||||
|
{
|
||||||
|
services.kanidm.unixSettings = {
|
||||||
|
pam_allowed_login_groups = [
|
||||||
|
"soda"
|
||||||
|
"soda-admins"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
}
|
||||||
Loading…
Reference in a new issue