Delete sudo files

Check if files exist in /etc/sudoers.d/ that chef-client would not put there. If so delete them. This is necessary for the automatic cleanup of extended privileges that are not longer needed.

Of course that might destroy a number of rules that are not in chef, yet still necessary.

added 1 commit

• 7f262e16 - Fix filenames, add cleanup-option

Compare with previous version

added 1 commit

• 2e219e46 - Use guards

Compare with previous version

Da fehlt natürlich noch ein Unit-Test.

Und dazu muss man Dir.glob stubben, damit das nicht so aussieht:

Untouched Resources:

  file[/etc/sudoers.d/README]        /recipes/sudo.rb:41
  file[/etc/sudoers.d/admin]         /recipes/sudo.rb:41
  file[/etc/sudoers.d/hpc]           /recipes/sudo.rb:41
  file[/etc/sudoers.d/x2goserver]    /recipes/sudo.rb:41

Außerdem sollte README doch ausgenommen sein. Wurde das wegoptimiert?

added 1 commit

• 42dd038e - Extend test suite and see it fail :(

Compare with previous version

Geht leider so noch nicht, weil das Recipe davon ausgeht, dass cleanup ein Strauß voll sudo-Regeln ist.

Das müsste man also irgendwie abfangen.

added 1 commit

• 7503621a - Filter out cleanup flag in sudo rules handling

Compare with previous version

Was noch fehlt sind Tests

closed