playbooks/trixie
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Improvements sambox-client.

Browse source
This commit is contained in:
Andreas B. Mundt 2022-06-18 09:35:59 +02:00 committed by Andreas B. Mundt
parent 06973c015b
commit d7d767fea9
3 changed files with 20 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

11
roles/smbsshfsclient/tasks/main.yml
View file

@ -6,6 +6,7 @@
- libpam-mount
- cifs-utils
- sshfs
- hxtools
state: latest # noqa package-latest
- name: add URI to ldap.conf
@ -32,7 +33,7 @@
mode: 0600
notify: restart sssd
- name: configure pam_mount
- name: configure pam_mount # interesting options: posix,mfsymlinks,nomapposix,noperm
blockinfile:
dest: /etc/security/pam_mount.conf.xml
block: |
@ -41,7 +42,7 @@
server="{{ home_server }}"
path="%(USER)"
mountpoint="/home/lan/%(USER)"
options="dir_mode=0750,file_mode=0640"
options="idsfromsid,modefromsid,mfsymlinks"
><not><or><user>root</user><user>ansible</user><user>Debian-gdm</user></or></not></volume -->
<volume
fstype="fuse"
@ -52,6 +53,12 @@
><not><or><user>root</user><user>ansible</user><user>Debian-gdm</user></or></not></volume>
insertafter: "<!-- Volume definitions -->"
- name: make sure umount is not blocked
replace:
path: /etc/security/pam_mount.conf.xml
regexp: '<logout wait="0".*'
replace: '<logout wait="3000" hup="yes" term="yes" kill="yes"/>'
- name: make sure .ssh exists
file:
path: /root/.ssh