Update upstream cookbooks

2017-03-20 13:19:10 +00:00
parent bfd2d52ea8
commit bcfd44b923
340 changed files with 12576 additions and 5465 deletions
--- a/cookbooks/sudo/providers/default.rb
+++ b/cookbooks/sudo/providers/default.rb
@@ -1,11 +1,11 @@
 #
 # Author:: Bryan W. Berry (<bryan.berry@gmail.com>)
 # Author:: Seth Vargo (<sethvargo@gmail.com>)
-# Cookbook Name:: sudo
+# Cookbook:: sudo
 # Provider:: default
 #
-# Copyright 2011, Bryan w. Berry
-# Copyright 2012, Seth Vargo
+# Copyright:: 2011-2016, Bryan w. Berry
+# Copyright:: 2012-2016, Seth Vargo
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -20,6 +20,8 @@
 # limitations under the License.
 #

+use_inline_resources
+
 # This LWRP supports whyrun mode
 def whyrun_supported?
  true
@@ -45,7 +47,7 @@ def validate_fragment!(resource)
    file.rewind

    cmd = Mixlib::ShellOut.new("visudo -cf #{file.path}").run_command
-    unless cmd.exitstatus == 0
+    unless cmd.exitstatus.zero?
      Chef::Log.error("Fragment validation failed: \n\n")
      Chef::Log.error(file.read)
      Chef::Application.fatal!("Template #{file.path} failed fragment validation!")
@@ -87,6 +89,7 @@ def render_sudoer
                host:               new_resource.host,
                runas:              new_resource.runas,
                nopasswd:           new_resource.nopasswd,
+                noexec:             new_resource.noexec,
                commands:           new_resource.commands,
                command_aliases:    new_resource.command_aliases,
                defaults:           new_resource.defaults,
@@ -115,12 +118,13 @@ action :install do
    sudoers_dir.run_action(:create)
  end

+  Chef::Log.warn("#{sudo_filename} will be rendered, but will not take effect because node['authorization']['sudo']['include_sudoers_d'] is set to false!") unless node['authorization']['sudo']['include_sudoers_d']
  new_resource.updated_by_last_action(true) if render_sudoer
 end

 # Removes a user from the sudoers group
 action :remove do
-  resource = file "#{node['authorization']['sudo']['prefix']}/sudoers.d/#{new_resource.name}" do
+  resource = file "#{node['authorization']['sudo']['prefix']}/sudoers.d/#{sudo_filename}" do
    action :nothing
  end
  resource.run_action(:delete)
@@ -130,9 +134,9 @@ end
 private

 # acording to the sudo man pages sudo will ignore files in an include dir that have a `.` or `~`
-# It is quite common for users to have a `.` in their login, so we will convert this to `__`
+# We convert either to `__`
 def sudo_filename
-  new_resource.name.gsub(/\./, '__')
+  new_resource.name.gsub(/[\.~]/, '__')
 end

 # Capture a template to a string