fine-grained acls per minion

- adds minion-acl.conf
author: Seth Vidal <skvidal@fedoraproject.org> 2007-10-08 14:59:28 -0400
committer: Seth Vidal <skvidal@fedoraproject.org> 2007-10-08 14:59:28 -0400
commit: 9033fe7cc3c6a59bd90c4742a47536699dee612d (patch)
tree: 7464fb9f366e121d86947f2f900755d681612e14 /etc
parent: ce379bdb3d6ade0a6326d5d7cf9446389cf4d94b (diff)
download: func-9033fe7cc3c6a59bd90c4742a47536699dee612d.tar.gz
func-9033fe7cc3c6a59bd90c4742a47536699dee612d.tar.xz
func-9033fe7cc3c6a59bd90c4742a47536699dee612d.zip
2 files changed, 6 insertions, 1 deletions
diff --git a/etc/minion-acl.conf b/etc/minion-acl.conf
new file mode 100644
index 0000000..1a093a8
--- /dev/null
+++ b/etc/minion-acl.conf
@@ -0,0 +1,5 @@
+#config file for minion Access control lists
+#this specifies which methods a connecting client is allowed to run
+# format is: cn-certificate-hash = method1, method2, method3
+# default allows the certmaster key to run all methods
+
diff --git a/etc/minion.conf b/etc/minion.conf
index 9e18eac..dc4c0a1 100644
--- a/etc/minion.conf
+++ b/etc/minion.conf
@@ -4,4 +4,4 @@
 log_level = DEBUG
 certmaster = certmaster
 cert_dir = /etc/pki/func
-
+acl_config = /etc/func/minion-acl.conf
author	Seth Vidal <skvidal@fedoraproject.org>	2007-10-08 14:59:28 -0400
committer	Seth Vidal <skvidal@fedoraproject.org>	2007-10-08 14:59:28 -0400
commit	9033fe7cc3c6a59bd90c4742a47536699dee612d (patch)
tree	7464fb9f366e121d86947f2f900755d681612e14 /etc
parent	ce379bdb3d6ade0a6326d5d7cf9446389cf4d94b (diff)
download	func-9033fe7cc3c6a59bd90c4742a47536699dee612d.tar.gz func-9033fe7cc3c6a59bd90c4742a47536699dee612d.tar.xz func-9033fe7cc3c6a59bd90c4742a47536699dee612d.zip