Skip to content

cybozu-go/etcdpasswd

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

241 Commits
.github
.github
 
 
agent
agent
 
 
debian/DEBIAN
debian/DEBIAN
 
 
docs
docs
 
 
mtest
mtest
 
 
pkg
pkg
 
 
syncer
syncer
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
RELEASE.md
RELEASE.md
 
 
client.go
client.go
 
 
config.go
config.go
 
 
config.yml.example
config.yml.example
 
 
config_test.go
config_test.go
 
 
constants.go
constants.go
 
 
control
control
 
 
database.go
database.go
 
 
database_test.go
database_test.go
 
 
errors.go
errors.go
 
 
etcd_config.go
etcd_config.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
group.go
group.go
 
 
group_test.go
group_test.go
 
 
lock.go
lock.go
 
 
lock_test.go
lock_test.go
 
 
main_test.go
main_test.go
 
 
sync.go
sync.go
 
 
user.go
user.go
 
 
user_test.go
user_test.go
 
 
validation.go
validation.go
 
 
version.go
version.go
 
 

Repository files navigation

GitHub release Go Reference CI Go Report Card

etcdpasswd

etcdpasswd manages Linux users and groups with a central database on etcd. This repository provides following two programs:

  • ep-agent: a background service that watches etcd database and synchronize Linux users/groups.
  • etcdpasswd: CLI tool to edit the central database on etcd.

Build

$ go install github.com/cybozu-go/etcdpasswd/...

Installation

  1. Prepare an etcd cluster.

  2. Create /etc/etcdpasswd/config.yml.

    This file provides parameters to connect to the etcd cluster. A sample configuration looks like this:

    endpoints:
  - http://12.34.56.78:2379
username: cybozu
password: xxxxxxxx

tls-cert-file: /etc/etcdpasswd/etcd.crt
tls-key-file: /etc/etcdpasswd/etcd.key

  3. Run ep-agent.

    A sample systemd unit file is available at cmd/ep-agent/ep-agent.service. Use it to run ep-agent as a systemd service as follows:

    $ sudo cp $GOPATH/bin/ep-agent /usr/local/sbin
$ sudo cp ep-agent.service /etc/systemd/system
$ sudo systemctl daemon-reload
$ sudo systemctl enable ep-agent.service
$ sudo systemctl start ep-agent.service

  4. Use etcdpasswd to initialize the database.

    $ etcdpasswd set start-uid 2000
$ etcdpasswd set start-gid 2000
$ etcdpasswd set default-group cybozu
$ etcdpasswd set default-groups sudo,adm

Usage

See pkg/etcdpasswd/USAGE.md.

Specifications

Read docs/spec.md.

License

etcdpasswd is licensed under the Apache License, Version 2.0.

About

Distributed Linux user management using etcd

Topics

ssh etcd user-management passwd

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

47 stars

Watchers

11 watching

Forks

4 forks
Report repository

Releases 21

v1.4.8 Latest
Sep 6, 2024
+ 20 releases

Packages

No packages published

Contributors 19

+ 5 contributors

Languages