Refactor puppetserver alias

cmd-ntrf · cmd-ntrf · commit 073c31c2895f · 2025-03-21T15:32:27.000-04:00
diff --git a/site/profile/manifests/puppetserver.pp b/site/profile/manifests/puppetserver.pp
@@ -1,10 +1,13 @@
 class profile::puppetserver {
+  $eyaml_path = '/opt/puppetlabs/puppet/bin/eyaml'
+  $boot_private_key_path = '/etc/puppetlabs/puppet/eyaml/boot_private_key.pkcs7.pem'
+  $boot_eyaml = '/etc/puppetlabs/code/environments/production/data/bootstrap.yaml'
   $local_users = lookup('profile::users::local::users', undef, undef, {})
   $local_users.each | $user, $attrs | {
     if pick($attrs['sudoer'], false) {
       file_line { "${user}_eyamlbootstrap":
         path => "/${user}/.bashrc",
-        line => 'alias eyamlbootstrap="sudo /opt/puppetlabs/puppet/bin/eyaml decrypt --pkcs7-private-key /etc/puppetlabs/puppet/eyaml/boot_private_key.pkcs7.pem -f /etc/puppetlabs/code/environments/production/data/bootstrap.yaml | less"'
+        line => "alias eyamlbootstrap=\"sudo ${eyaml_path} decrypt --pkcs7-private-key ${boot_private_key_path} -f ${boot_eyaml} | less\"",
       }
     }
   }

Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,13 @@`
`1`	`1`	`class profile::puppetserver {`
	`2`	`+ $eyaml_path = '/opt/puppetlabs/puppet/bin/eyaml'`
	`3`	`+ $boot_private_key_path = '/etc/puppetlabs/puppet/eyaml/boot_private_key.pkcs7.pem'`
	`4`	`+ $boot_eyaml = '/etc/puppetlabs/code/environments/production/data/bootstrap.yaml'`
`2`	`5`	`$local_users = lookup('profile::users::local::users', undef, undef, {})`
`3`	`6`	`$local_users.each \| $user, $attrs \| {`
`4`	`7`	`if pick($attrs['sudoer'], false) {`
`5`	`8`	`file_line { "${user}_eyamlbootstrap":`
`6`	`9`	`path => "/${user}/.bashrc",`
`7`		`- line => 'alias eyamlbootstrap="sudo /opt/puppetlabs/puppet/bin/eyaml decrypt --pkcs7-private-key /etc/puppetlabs/puppet/eyaml/boot_private_key.pkcs7.pem -f /etc/puppetlabs/code/environments/production/data/bootstrap.yaml \| less"'`
	`10`	`+ line => "alias eyamlbootstrap=\"sudo ${eyaml_path} decrypt --pkcs7-private-key ${boot_private_key_path} -f ${boot_eyaml} \| less\"",`
`8`	`11`	`}`
`9`	`12`	`}`
`10`	`13`	`}`