From: Jan Kiszka <jan.kiszka@siemens.com>
To: Uladzimir Bely <ubely@ilbers.de>, isar-users@googlegroups.com
Subject: Re: [PATCH 12/13] kas: Add options to activate predefined users
Date: Sat, 16 Sep 2023 15:09:53 +0530 [thread overview]
Message-ID: <cf00f7bf-f04d-497a-b36f-f7ee36f7445c@siemens.com> (raw)
In-Reply-To: <20230915064426.27676-13-ubely@ilbers.de>
On 15.09.23 12:14, Uladzimir Bely wrote:
> This allows to enable 'root' and 'isar' users and set their passwords.
>
> Signed-off-by: Uladzimir Bely <ubely@ilbers.de>
> ---
> kas/opt/Kconfig | 41 +++++++++++++++++++++++++++++++++++++++++
> kas/opt/user-isar.yml | 16 ++++++++++++++++
> kas/opt/user-root.yml | 7 +++++++
> 3 files changed, 64 insertions(+)
> create mode 100644 kas/opt/user-isar.yml
> create mode 100644 kas/opt/user-root.yml
>
> diff --git a/kas/opt/Kconfig b/kas/opt/Kconfig
> index 113a6c9a..7eb4840b 100644
> --- a/kas/opt/Kconfig
> +++ b/kas/opt/Kconfig
> @@ -75,6 +75,47 @@ config KAS_INCLUDE_PACKAGES_DISTRO
> endmenu
>
>
> +menu "User management"
> +
> +config USER_ROOT
> + bool "Activate 'root' user"
> + help
> + Enables root user.
> +
> +config KAS_USER_ROOT_PASSWORD
> + string "Password for 'root' user"
> + default "$6$rounds=10000$RXeWrnFmkY$DtuS/OmsAS2cCEDo0BF5qQsizIrq6jPgXnwv3PHqREJeKd1sXdHX/ayQtuQWVDHe0KIO0/sVH8dvQm1KthF0d/"
Better ask for the cleartext password and set the required flag for root
as well.
Jan
> + depends on USER_ROOT
> + help
> + Set password for 'root' user. Default value 'root', encrypted by:
> + 'mkpasswd -m sha512crypt -R 10000'
> +
> +config KAS_INCLUDE_USER_ROOT
> + string
> + default "kas/opt/user-root.yml"
> + depends on USER_ROOT
> +
> +
> +config USER_ISAR
> + bool "Activate 'isar' user"
> + default y
> + help
> + Enables `isar` user.
> +
> +config KAS_USER_ISAR_PASSWORD
> + string "Password for 'isar' user"
> + default "isar"
> + depends on USER_ISAR
> + help
> + Set password for 'isar' user.
> +
> +config KAS_INCLUDE_USER_ISAR
> + string
> + default "kas/opt/user-isar.yml"
> + depends on USER_ISAR
> +
> +endmenu
> +
> config KAS_IMAGE_FSTYPES
> string "Additional image fstypes"
> default ""
> diff --git a/kas/opt/user-isar.yml b/kas/opt/user-isar.yml
> new file mode 100644
> index 00000000..f249e4e7
> --- /dev/null
> +++ b/kas/opt/user-isar.yml
> @@ -0,0 +1,16 @@
> +header:
> + version: 14
> +
> +local_conf_header:
> + user-isar: |
> + GROUPS += "isar"
> + GROUP_isar[flags] = "system"
> +
> + USERS += "isar"
> + USER_isar[gid] = "isar"
> + USER_isar[home] = "/var/lib/isar"
> + USER_isar[comment] = "My isar user"
> + USER_isar[flags] = "system create-home"
> +
> + USER_isar[password] = "${KAS_USER_ISAR_PASSWORD}"
> + USER_isar[flags] += "clear-text-password"
> diff --git a/kas/opt/user-root.yml b/kas/opt/user-root.yml
> new file mode 100644
> index 00000000..9c301767
> --- /dev/null
> +++ b/kas/opt/user-root.yml
> @@ -0,0 +1,7 @@
> +header:
> + version: 14
> +
> +local_conf_header:
> + user-root: |
> + USERS += "root"
> + USER_root[password] ??= "${KAS_USER_ROOT_PASSWORD}"
--
Siemens AG, Technology
Linux Expert Center
next prev parent reply other threads:[~2023-09-16 9:40 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-09-15 6:44 [PATCH 00/13] Support building Isar using kas Uladzimir Bely
2023-09-15 6:44 ` [PATCH 01/13] kas: Add initial Kconfig support Uladzimir Bely
2023-09-15 6:44 ` [PATCH 02/13] kas: Add a local copy of kas-container script Uladzimir Bely
2023-09-15 6:44 ` [PATCH 03/13] kas: Add dependencies between machine and distro configuration Uladzimir Bely
2023-09-16 9:34 ` Jan Kiszka
2023-09-19 6:30 ` Uladzimir Bely
2023-09-19 6:43 ` Jan Kiszka
2023-09-15 6:44 ` [PATCH 04/13] kas: Add mirror selection Uladzimir Bely
2023-09-16 9:34 ` Jan Kiszka
2023-09-19 6:31 ` Uladzimir Bely
2023-09-15 6:44 ` [PATCH 05/13] kas: Add packages selection Uladzimir Bely
2023-09-16 9:37 ` Jan Kiszka
2023-09-16 16:10 ` Jan Kiszka
2023-09-15 6:44 ` [PATCH 06/13] kas: Add COMPAT_ARCH support Uladzimir Bely
2023-09-15 6:44 ` [PATCH 07/13] kas: Add cross compilation mode selection support Uladzimir Bely
2023-09-15 6:44 ` [PATCH 08/13] kas: Add ccache option Uladzimir Bely
2023-09-15 6:44 ` [PATCH 09/13] kas: Add image type selection Uladzimir Bely
2023-09-16 9:57 ` Jan Kiszka
2023-09-19 6:32 ` Uladzimir Bely
2023-09-15 6:44 ` [PATCH 10/13] kas: Add IMAGE_FSTYPES selection Uladzimir Bely
2023-09-15 6:44 ` [PATCH 11/13] kas: Support CACHE_DEB_SRC option in menu Uladzimir Bely
2023-09-15 6:44 ` [PATCH 12/13] kas: Add options to activate predefined users Uladzimir Bely
2023-09-16 9:39 ` Jan Kiszka [this message]
2023-09-15 6:44 ` [PATCH 13/13] kas: Add Readme.md Uladzimir Bely
2023-09-16 9:40 ` [PATCH 00/13] Support building Isar using kas Jan Kiszka
2023-09-16 10:02 ` Jan Kiszka
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cf00f7bf-f04d-497a-b36f-f7ee36f7445c@siemens.com \
--to=jan.kiszka@siemens.com \
--cc=isar-users@googlegroups.com \
--cc=ubely@ilbers.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox