Issue #3922 has been updated by Sylvain Avril.
This is perhaps related to commit ae520057280c2454bc44c64ac1e6686bf2eb086d.
"Write ssh_authorized_keys as user
This is a targeted fix to the issue of permissions when writing ssh
authorized
key files by 1) requiring that an existing users be specified on the
resource
and 2) doing the write as that user. It's based on Michael DeHaan's initial
implementation of Luke's idea, but with a number of simplifications (mostly
by
testing necessary conditions as early as possible so the code isn't
cluttered
up with a lot of checks).
The tests in this version are modified slightly to remove some additional
implementation couplings that were added in master."
----------------------------------------
Bug #3922: Ssh_authorized_key "Could not apply complete catalog: Could not back
up"
http://projects.puppetlabs.com/issues/3922
Author: mélanie Gault
Status: Accepted
Priority: Normal
Assigned to: Matt Robinson
Category: ssh
Target version: 0.25.6
Affected version: 2.6.1rc2
Keywords: backup clientbucket catalog Ssh_authorized_key
Branch:
I manage user, directories, ssh_authorized_key, ... on redhat 4 and 5 boxes
with a master and a client with 0.25.5 version.
My puppet client runs as root and my maser with the user puppet.
Everything works fine for some of my users, but I got an error with
clientbucket directory :
<pre>info: Caching catalog for puppet-client
info: Applying configuration version '1275367180'
notice: //users/My::User[my.user]/Ssh_authorized_key[my.user]/ensure: created
err: Could not apply complete catalog: Could not back up
/home/my.user/.ssh/authorized_keys: Permission denied -
/var/lib/puppet/clientbucket/f
notice: Finished catalog run in 3.52 seconds</pre>
If I create manualy this directory I got the same error for
/var/lib/puppet/clientbucket/f/6 next for /var/lib/puppet/clientbucket/f/6/9...
And at the end I have :
<pre>[r...@monserveur: i386 ]$ puppetd --server my-puppet -t -o
info: Caching catalog for puppet-client
info: Applying configuration version '1275367180'
notice: //users/My::User[my.user]/Ssh_authorized_key[my.user]/ensure: created
err: Could not apply complete catalog: Could not back up
/home/my.user/.ssh/authorized_keys: Permission denied -
/var/lib/puppet/clientbucket/f/6/9/4/9/5/1/7/f6949517cbf4fddfa665d41361f8bce4
notice: Finished catalog run in 3.69 seconds</pre>
manifest citation :
<pre> ssh_authorized_key { $name:
ensure => $ensure,
type => "dsa",
key => $key,
user => $name,
require => File["/home/$name/.ssh"],
}
</pre>
With 0.25.3 I didn't have this issue.
--
You have received this notification because you have either subscribed to it,
or are involved in it.
To change your notification preferences, please click here:
http://projects.puppetlabs.com/my/account
--
You received this message because you are subscribed to the Google Groups
"Puppet Bugs" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/puppet-bugs?hl=en.
