-
Notifications
You must be signed in to change notification settings - Fork 50
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Hook up certificate policy manager to parent manager
- Loading branch information
1 parent
265d8a1
commit 9d9d604
Showing
31 changed files
with
189 additions
and
7 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1 change: 1 addition & 0 deletions
1
...or_backend_online_status_returns_an_error/etc/apparmor.d/adsys/machine/nested/usr.bin.baz
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
/usr/bin/baz {} |
1 change: 1 addition & 0 deletions
1
...cking_for_backend_online_status_returns_an_error/etc/apparmor.d/adsys/machine/usr.bin.bar
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
/usr/bin/bar {} |
1 change: 1 addition & 0 deletions
1
...cking_for_backend_online_status_returns_an_error/etc/apparmor.d/adsys/machine/usr.bin.foo
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
/usr/bin/foo {} |
5 changes: 5 additions & 0 deletions
5
...cceed_if_checking_for_backend_online_status_returns_an_error/etc/dconf/db/machine.d/adsys
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
[path/to] | ||
key1='ValueOfKey1' | ||
key2='ValueOfKey2 | ||
On | ||
Multilines' |
2 changes: 2 additions & 0 deletions
2
...if_checking_for_backend_online_status_returns_an_error/etc/dconf/db/machine.d/locks/adsys
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
/path/to/key1 | ||
/path/to/key2 |
6 changes: 6 additions & 0 deletions
6
...s_returns_an_error/etc/polkit-1/localauthority.conf.d/99-adsys-privilege-enforcement.conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
# This file is managed by adsys. | ||
# Do not edit this file manually. | ||
# Any changes will be overwritten. | ||
|
||
[Configuration] | ||
AdminIdentities=unix-user:alice@domain;unix-user:bob@domain2;unix-group:mygroup@domain;unix-user:cosmic carole@domain |
9 changes: 9 additions & 0 deletions
9
...g_for_backend_online_status_returns_an_error/etc/sudoers.d/99-adsys-privilege-enforcement
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
# This file is managed by adsys. | ||
# Do not edit this file manually. | ||
# Any changes will be overwritten. | ||
|
||
"alice@domain" ALL=(ALL:ALL) ALL | ||
"bob@domain2" ALL=(ALL:ALL) ALL | ||
"%mygroup@domain" ALL=(ALL:ALL) ALL | ||
"cosmic carole@domain" ALL=(ALL:ALL) ALL | ||
|
17 changes: 17 additions & 0 deletions
17
..._online_status_returns_an_error/etc/systemd/system/adsys-cifs-example.com-smb_share.mount
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
# This template defines the basic structure of a mount unit generated by ADSys for system mounts. | ||
[Unit] | ||
Description=ADSys mount for smb://example.com/smb_share | ||
After=network-online.target | ||
Requires=network-online.target | ||
|
||
[Mount] | ||
What=//example.com/smb_share | ||
Where=/adsys/cifs/example.com/smb_share | ||
Type=cifs | ||
Options=defaults | ||
# This option prevents hangs on shutdown due to an unreachable network share. | ||
LazyUnmount=true | ||
TimeoutSec=30 | ||
|
||
[Install] | ||
WantedBy=default.target |
17 changes: 17 additions & 0 deletions
17
..._online_status_returns_an_error/etc/systemd/system/adsys-fuse-example.com-ftp_share.mount
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
# This template defines the basic structure of a mount unit generated by ADSys for system mounts. | ||
[Unit] | ||
Description=ADSys mount for ftp://example.com/ftp_share | ||
After=network-online.target | ||
Requires=network-online.target | ||
|
||
[Mount] | ||
What=curlftpfs#example.com | ||
Where=/adsys/fuse/example.com/ftp_share | ||
Type=fuse | ||
Options=defaults | ||
# This option prevents hangs on shutdown due to an unreachable network share. | ||
LazyUnmount=true | ||
TimeoutSec=30 | ||
|
||
[Install] | ||
WantedBy=default.target |
17 changes: 17 additions & 0 deletions
17
...d_online_status_returns_an_error/etc/systemd/system/adsys-nfs-example.com-nfs_share.mount
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
# This template defines the basic structure of a mount unit generated by ADSys for system mounts. | ||
[Unit] | ||
Description=ADSys mount for nfs://example.com/nfs_share | ||
After=network-online.target | ||
Requires=network-online.target | ||
|
||
[Mount] | ||
What=example.com:/nfs_share | ||
Where=/adsys/nfs/example.com/nfs_share | ||
Type=nfs | ||
Options=defaults | ||
# This option prevents hangs on shutdown due to an unreachable network share. | ||
LazyUnmount=true | ||
TimeoutSec=30 | ||
|
||
[Install] | ||
WantedBy=default.target |
Empty file.
Empty file.
1 change: 1 addition & 0 deletions
1
...d_if_checking_for_backend_online_status_returns_an_error/run/adsys/machine/scripts/logoff
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
scripts/otherfolder/script-user-logoff |
1 change: 1 addition & 0 deletions
1
...ed_if_checking_for_backend_online_status_returns_an_error/run/adsys/machine/scripts/logon
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
scripts/script-user-logon |
Empty file.
1 change: 1 addition & 0 deletions
1
..._online_status_returns_an_error/run/adsys/machine/scripts/scripts/final-machine-script.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
final machine script |
1 change: 1 addition & 0 deletions
1
..._status_returns_an_error/run/adsys/machine/scripts/scripts/otherfolder/script-user-logoff
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
script user logoff |
1 change: 1 addition & 0 deletions
1
..._online_status_returns_an_error/run/adsys/machine/scripts/scripts/script-machine-shutdown
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
script machine shutdown |
1 change: 1 addition & 0 deletions
1
...d_online_status_returns_an_error/run/adsys/machine/scripts/scripts/script-machine-startup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
script machine startup |
1 change: 1 addition & 0 deletions
1
...ackend_online_status_returns_an_error/run/adsys/machine/scripts/scripts/script-user-logon
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
script user logon |
1 change: 1 addition & 0 deletions
1
...d_online_status_returns_an_error/run/adsys/machine/scripts/scripts/subfolder/other-script
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
subfolder other script |
1 change: 1 addition & 0 deletions
1
...ackend_online_status_returns_an_error/run/adsys/machine/scripts/scripts/unreferenced-data
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
unreferenced data |
1 change: 1 addition & 0 deletions
1
...kend_online_status_returns_an_error/run/adsys/machine/scripts/scripts/unreferenced-script
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
unreferenced script |
1 change: 1 addition & 0 deletions
1
...if_checking_for_backend_online_status_returns_an_error/run/adsys/machine/scripts/shutdown
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
scripts/script-machine-shutdown |
3 changes: 3 additions & 0 deletions
3
..._if_checking_for_backend_online_status_returns_an_error/run/adsys/machine/scripts/startup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
scripts/script-machine-startup | ||
scripts/subfolder/other-script | ||
scripts/final-machine-script.sh |
Empty file.
1 change: 1 addition & 0 deletions
1
...checking_for_backend_online_status_returns_an_error/sys/kernel/security/apparmor/profiles
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
someprofile (enforce) |
Binary file added
BIN
+4.38 KB
...ng_for_backend_online_status_returns_an_error/var/cache/adsys/policies/hostname/assets.db
Binary file not shown.
70 changes: 70 additions & 0 deletions
70
...ing_for_backend_online_status_returns_an_error/var/cache/adsys/policies/hostname/policies
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,70 @@ | ||
gpos: | ||
- id: '{GPOId}' | ||
name: GPOName | ||
rules: | ||
apparmor: | ||
- key: apparmor-machine | ||
value: | | ||
usr.bin.foo | ||
usr.bin.bar | ||
nested/usr.bin.baz | ||
disabled: false | ||
dconf: | ||
- key: path/to/key1 | ||
value: ValueOfKey1 | ||
disabled: false | ||
meta: s | ||
- key: path/to/key2 | ||
value: | | ||
ValueOfKey2 | ||
On | ||
Multilines | ||
disabled: false | ||
meta: s | ||
mount: | ||
- key: system-mounts | ||
value: | | ||
nfs://example.com/nfs_share | ||
smb://example.com/smb_share | ||
ftp://example.com/ftp_share | ||
disabled: false | ||
privilege: | ||
- key: allow-local-admins | ||
value: "" | ||
disabled: false | ||
- key: client-admins | ||
value: | | ||
alice@domain | ||
bob@domain2 | ||
%mygroup@domain | ||
cosmic carole@domain | ||
disabled: false | ||
proxy: | ||
- key: proxy/auto | ||
value: http://example.com/proxy.pac | ||
disabled: false | ||
- key: proxy/http | ||
value: "" | ||
disabled: true | ||
- key: proxy/no-proxy | ||
value: localhost,127.0.0.1,::1 | ||
disabled: false | ||
scripts: | ||
- key: startup | ||
value: | | ||
script-machine-startup | ||
subfolder/other-script | ||
final-machine-script.sh | ||
disabled: false | ||
- key: shutdown | ||
value: | | ||
script-machine-shutdown | ||
disabled: false | ||
- key: logon | ||
value: | | ||
script-user-logon | ||
disabled: false | ||
- key: logoff | ||
value: | | ||
otherfolder/script-user-logoff | ||
disabled: false |