|
10 | 10 |
|
11 | 11 | * [`ssh`](#ssh): This class manages ssh client and server |
12 | 12 | * [`ssh::client`](#ssh--client): This class add ssh client management |
13 | | -* [`ssh::hostkeys`](#ssh--hostkeys): This class manages hostkeys |
14 | | -* [`ssh::knownhosts`](#ssh--knownhosts): This class manages knownhosts if collection is enabled. |
15 | | -* [`ssh::server`](#ssh--server): This class managed ssh server |
| 13 | +* [`ssh::hostkeys`](#ssh--hostkeys): This class manages hostkeys. It is intended to be called from `ssh::server`, |
| 14 | +and directly accesses variables from there. |
| 15 | +* [`ssh::server`](#ssh--server): This class manages the ssh server and related resources, including host keys. |
16 | 16 |
|
17 | 17 | #### Private Classes |
18 | 18 |
|
@@ -337,6 +337,8 @@ The following parameters are available in the `ssh::client` class: |
337 | 337 | * [`options_absent`](#-ssh--client--options_absent) |
338 | 338 | * [`default_options`](#-ssh--client--default_options) |
339 | 339 | * [`match_block`](#-ssh--client--match_block) |
| 340 | +* [`collect_enabled`](#-ssh--client--collect_enabled) |
| 341 | +* [`storeconfigs_group`](#-ssh--client--storeconfigs_group) |
340 | 342 |
|
341 | 343 | ##### <a name="-ssh--client--ssh_config"></a>`ssh_config` |
342 | 344 |
|
@@ -366,7 +368,7 @@ Data type: `Boolean` |
366 | 368 |
|
367 | 369 | Collected host keys from servers will be written to known_hosts unless storeconfigs_enabled is false |
368 | 370 |
|
369 | | -Default value: `true` |
| 371 | +Default value: `$collect_enabled` |
370 | 372 |
|
371 | 373 | ##### <a name="-ssh--client--options"></a>`options` |
372 | 374 |
|
@@ -406,117 +408,30 @@ Add ssh match_block (with concat) |
406 | 408 |
|
407 | 409 | Default value: `{}` |
408 | 410 |
|
409 | | -### <a name="ssh--hostkeys"></a>`ssh::hostkeys` |
410 | | - |
411 | | -This class manages hostkeys |
412 | | - |
413 | | -#### Parameters |
414 | | - |
415 | | -The following parameters are available in the `ssh::hostkeys` class: |
416 | | - |
417 | | -* [`export_ipaddresses`](#-ssh--hostkeys--export_ipaddresses) |
418 | | -* [`storeconfigs_group`](#-ssh--hostkeys--storeconfigs_group) |
419 | | -* [`extra_aliases`](#-ssh--hostkeys--extra_aliases) |
420 | | -* [`exclude_interfaces`](#-ssh--hostkeys--exclude_interfaces) |
421 | | -* [`exclude_interfaces_re`](#-ssh--hostkeys--exclude_interfaces_re) |
422 | | -* [`exclude_ipaddresses`](#-ssh--hostkeys--exclude_ipaddresses) |
423 | | -* [`use_trusted_facts`](#-ssh--hostkeys--use_trusted_facts) |
424 | | -* [`tags`](#-ssh--hostkeys--tags) |
425 | | - |
426 | | -##### <a name="-ssh--hostkeys--export_ipaddresses"></a>`export_ipaddresses` |
| 411 | +##### <a name="-ssh--client--collect_enabled"></a>`collect_enabled` |
427 | 412 |
|
428 | 413 | Data type: `Boolean` |
429 | 414 |
|
430 | | -Whether ip addresses should be added as aliases |
| 415 | +Enable collection |
431 | 416 |
|
432 | 417 | Default value: `true` |
433 | 418 |
|
434 | | -##### <a name="-ssh--hostkeys--storeconfigs_group"></a>`storeconfigs_group` |
| 419 | +##### <a name="-ssh--client--storeconfigs_group"></a>`storeconfigs_group` |
435 | 420 |
|
436 | 421 | Data type: `Optional[String[1]]` |
437 | 422 |
|
438 | | -Tag hostkeys with this group to allow segregation |
| 423 | +Define the hostkeys tag to filter with |
439 | 424 |
|
440 | 425 | Default value: `undef` |
441 | 426 |
|
442 | | -##### <a name="-ssh--hostkeys--extra_aliases"></a>`extra_aliases` |
443 | | - |
444 | | -Data type: `Array` |
445 | | - |
446 | | -Additional aliases to set for host keys |
447 | | - |
448 | | -Default value: `[]` |
449 | | - |
450 | | -##### <a name="-ssh--hostkeys--exclude_interfaces"></a>`exclude_interfaces` |
451 | | - |
452 | | -Data type: `Array` |
453 | | - |
454 | | -List of interfaces to exclude |
455 | | - |
456 | | -Default value: `[]` |
457 | | - |
458 | | -##### <a name="-ssh--hostkeys--exclude_interfaces_re"></a>`exclude_interfaces_re` |
459 | | - |
460 | | -Data type: `Array` |
461 | | - |
462 | | -List of regular expressions to exclude interfaces |
463 | | - |
464 | | -Default value: `[]` |
465 | | - |
466 | | -##### <a name="-ssh--hostkeys--exclude_ipaddresses"></a>`exclude_ipaddresses` |
467 | | - |
468 | | -Data type: `Array` |
469 | | - |
470 | | -List of ip addresses to exclude |
471 | | - |
472 | | -Default value: `[]` |
473 | | - |
474 | | -##### <a name="-ssh--hostkeys--use_trusted_facts"></a>`use_trusted_facts` |
475 | | - |
476 | | -Data type: `Boolean` |
477 | | - |
478 | | -Whether to use trusted or normal facts |
479 | | - |
480 | | -Default value: `false` |
481 | | - |
482 | | -##### <a name="-ssh--hostkeys--tags"></a>`tags` |
483 | | - |
484 | | -Data type: `Optional[Array[String[1]]]` |
485 | | - |
486 | | -Array of custom tags |
487 | | - |
488 | | -Default value: `undef` |
489 | | - |
490 | | -### <a name="ssh--knownhosts"></a>`ssh::knownhosts` |
491 | | - |
492 | | -This class manages knownhosts if collection is enabled. |
493 | | - |
494 | | -#### Parameters |
495 | | - |
496 | | -The following parameters are available in the `ssh::knownhosts` class: |
497 | | - |
498 | | -* [`collect_enabled`](#-ssh--knownhosts--collect_enabled) |
499 | | -* [`storeconfigs_group`](#-ssh--knownhosts--storeconfigs_group) |
500 | | - |
501 | | -##### <a name="-ssh--knownhosts--collect_enabled"></a>`collect_enabled` |
502 | | - |
503 | | -Data type: `Boolean` |
504 | | - |
505 | | -Enable collection |
506 | | - |
507 | | -Default value: `$ssh::knownhosts::collect_enabled` |
508 | | - |
509 | | -##### <a name="-ssh--knownhosts--storeconfigs_group"></a>`storeconfigs_group` |
510 | | - |
511 | | -Data type: `Optional[String[1]]` |
512 | | - |
513 | | -Define the hostkeys group storage |
| 427 | +### <a name="ssh--hostkeys"></a>`ssh::hostkeys` |
514 | 428 |
|
515 | | -Default value: `undef` |
| 429 | +This class manages hostkeys. It is intended to be called from `ssh::server`, |
| 430 | +and directly accesses variables from there. |
516 | 431 |
|
517 | 432 | ### <a name="ssh--server"></a>`ssh::server` |
518 | 433 |
|
519 | | -This class managed ssh server |
| 434 | +This class manages the ssh server and related resources, including host keys. |
520 | 435 |
|
521 | 436 | #### Examples |
522 | 437 |
|
@@ -555,6 +470,14 @@ The following parameters are available in the `ssh::server` class: |
555 | 470 | * [`use_issue_net`](#-ssh--server--use_issue_net) |
556 | 471 | * [`sshd_environments_file`](#-ssh--server--sshd_environments_file) |
557 | 472 | * [`server_package_name`](#-ssh--server--server_package_name) |
| 473 | +* [`export_ipaddresses`](#-ssh--server--export_ipaddresses) |
| 474 | +* [`storeconfigs_group`](#-ssh--server--storeconfigs_group) |
| 475 | +* [`extra_aliases`](#-ssh--server--extra_aliases) |
| 476 | +* [`exclude_interfaces`](#-ssh--server--exclude_interfaces) |
| 477 | +* [`exclude_interfaces_re`](#-ssh--server--exclude_interfaces_re) |
| 478 | +* [`exclude_ipaddresses`](#-ssh--server--exclude_ipaddresses) |
| 479 | +* [`use_trusted_facts`](#-ssh--server--use_trusted_facts) |
| 480 | +* [`tags`](#-ssh--server--tags) |
558 | 481 |
|
559 | 482 | ##### <a name="-ssh--server--service_name"></a>`service_name` |
560 | 483 |
|
@@ -710,6 +633,70 @@ Name of the server package to install |
710 | 633 |
|
711 | 634 | Default value: `undef` |
712 | 635 |
|
| 636 | +##### <a name="-ssh--server--export_ipaddresses"></a>`export_ipaddresses` |
| 637 | + |
| 638 | +Data type: `Boolean` |
| 639 | + |
| 640 | +Whether IP addresses should be added as aliases for host keys |
| 641 | + |
| 642 | +Default value: `true` |
| 643 | + |
| 644 | +##### <a name="-ssh--server--storeconfigs_group"></a>`storeconfigs_group` |
| 645 | + |
| 646 | +Data type: `Optional[String[1]]` |
| 647 | + |
| 648 | +Tag host keys with this group to allow segregation |
| 649 | + |
| 650 | +Default value: `undef` |
| 651 | + |
| 652 | +##### <a name="-ssh--server--extra_aliases"></a>`extra_aliases` |
| 653 | + |
| 654 | +Data type: `Array` |
| 655 | + |
| 656 | +Additional aliases to set for host keys |
| 657 | + |
| 658 | +Default value: `[]` |
| 659 | + |
| 660 | +##### <a name="-ssh--server--exclude_interfaces"></a>`exclude_interfaces` |
| 661 | + |
| 662 | +Data type: `Array` |
| 663 | + |
| 664 | +List of interfaces to exclude when collecting IPs for host keys |
| 665 | + |
| 666 | +Default value: `[]` |
| 667 | + |
| 668 | +##### <a name="-ssh--server--exclude_interfaces_re"></a>`exclude_interfaces_re` |
| 669 | + |
| 670 | +Data type: `Array` |
| 671 | + |
| 672 | +List of regular expressions to exclude interfaces |
| 673 | + |
| 674 | +Default value: `[]` |
| 675 | + |
| 676 | +##### <a name="-ssh--server--exclude_ipaddresses"></a>`exclude_ipaddresses` |
| 677 | + |
| 678 | +Data type: `Array` |
| 679 | + |
| 680 | +List of IP addresses to exclude from host key aliases |
| 681 | + |
| 682 | +Default value: `[]` |
| 683 | + |
| 684 | +##### <a name="-ssh--server--use_trusted_facts"></a>`use_trusted_facts` |
| 685 | + |
| 686 | +Data type: `Boolean` |
| 687 | + |
| 688 | +Whether to use trusted facts instead of legacy facts |
| 689 | + |
| 690 | +Default value: `false` |
| 691 | + |
| 692 | +##### <a name="-ssh--server--tags"></a>`tags` |
| 693 | + |
| 694 | +Data type: `Optional[Array[String[1]]]` |
| 695 | + |
| 696 | +Array of custom tags to apply to exported host keys |
| 697 | + |
| 698 | +Default value: `undef` |
| 699 | + |
713 | 700 | ## Defined types |
714 | 701 |
|
715 | 702 | ### <a name="ssh--client--config--user"></a>`ssh::client::config::user` |
|
0 commit comments