diff options
| author | Rob Thomas <xrobau@gmail.com> | 2018-10-14 20:27:25 -0300 |
|---|---|---|
| committer | Rob Thomas <xrobau@gmail.com> | 2018-10-14 20:27:25 -0300 |
| commit | 3afa57bc96807a72ceb55d0c493d7cc80a11226b (patch) | |
| tree | d4d2e8b99ca6cfad0306db9af30e67867af86d32 /lib/puppet | |
| parent | 47dca14a37f9970f9c34b1210651eabaf46fba04 (diff) | |
| download | puppet-sshkeys_core-3afa57bc96807a72ceb55d0c493d7cc80a11226b.tar.gz puppet-sshkeys_core-3afa57bc96807a72ceb55d0c493d7cc80a11226b.tar.bz2 | |
Update desc field
Diffstat (limited to 'lib/puppet')
| -rw-r--r-- | lib/puppet/type/ssh_authorized_key.rb | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/lib/puppet/type/ssh_authorized_key.rb b/lib/puppet/type/ssh_authorized_key.rb index 5c4df53..4eff840 100644 --- a/lib/puppet/type/ssh_authorized_key.rb +++ b/lib/puppet/type/ssh_authorized_key.rb @@ -107,7 +107,17 @@ module Puppet newproperty(:options, array_matching: :all) do desc "Key options; see sshd(8) for possible values. Multiple values - should be specified as an array." + should be specified as an array. For example, you could use the + following to install a SSH CA that allows someone with the + 'superuser' principal to log in as root + + ssh_authorized_key { 'Company SSH CA': + ensure => present, + user => 'root', + type => 'ssh-ed25519', + key => 'AAAAC3NzaC[...]CeA5kG', + options => [ 'cert-authority', 'principals=\"superuser\"' ], + }" defaultto { :absent } |