38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
|
# File 'manifests/faillock.pp', line 38
class pam::faillock (
Stdlib::Absolutepath $config_file = '/etc/security/faillock.conf',
String[1] $config_file_owner = 'root',
String[1] $config_file_group = 'root',
Stdlib::Filemode $config_file_mode = '0644',
String[1] $config_file_template = 'pam/faillock.conf.erb',
Optional[Stdlib::Filesource] $config_file_source = undef,
Stdlib::Absolutepath $dir = '/var/run/faillock',
Optional[Boolean] $audit_enabled = undef,
Optional[Boolean] $silent = undef,
Optional[Boolean] $no_log_info = undef,
Optional[Boolean] $local_users_only = undef,
Integer[0] $deny = 3,
Integer[0] $fail_interval = 900,
Integer[0] $unlock_time = 600,
Optional[Boolean] $even_deny_root = undef,
Integer[0] $root_unlock_time = $unlock_time,
Optional[String[1]] $admin_group = undef,
) {
include pam
if $config_file_source {
$_config_file_content = undef
} else {
$_config_file_content = template($config_file_template)
}
file { 'faillock.conf':
ensure => 'file',
path => $config_file,
owner => $config_file_owner,
group => $config_file_group,
mode => $config_file_mode,
content => $_config_file_content,
source => $config_file_source,
require => Package[$pam::package_name],
}
}
|