misc_lxc-template-generator/base.yaml

image:
  name: debian-disco-x86_64
  distribution: debian
  release: bookworm
  description: |-
    Debian {{ image.release }}
  architecture: amd64

source:
  downloader: debootstrap
  url: http://ftp.debian.org/debian/

targets:
  lxc:
    create_message: |-
      You just created an {{ image.description }} container.

      To enable SSH, run: apt install openssh-server
      No default root or user password are set by LXC.
    config:
    - type: all
      before: 5
      content: |-
        lxc.include = LXC_TEMPLATE_CONFIG/debian.common.conf

    - type: user
      before: 5
      content: |-
        lxc.include = LXC_TEMPLATE_CONFIG/debian.userns.conf

    - type: all
      after: 4
      content: |-
        lxc.include = LXC_TEMPLATE_CONFIG/common.conf

    - type: user
      after: 4
      content: |-
        lxc.include = LXC_TEMPLATE_CONFIG/userns.conf

    - type: all
      content: |-
        lxc.arch = {{ image.architecture_personality }}

files:
- path: /etc/hostname
  generator: hostname

- path: /etc/hosts
  generator: hosts

- path: /etc/resolvconf/resolv.conf.d/original
  generator: remove

- path: /etc/resolvconf/resolv.conf.d/tail
  generator: remove

- path: /etc/machine-id
  generator: dump

- path: /var/lib/dbus/machine-id
  generator: remove

- path: /skynet/resolv.conf
  generator: copy
  source: ./files/resolv.conf

- path: /skynet/sshd_config
  generator: copy
  source: ./files/sshd_config

- path: /skynet/sssd.conf
  generator: copy
  source: ./files/sssd.conf_base

- path: /skynet/sudoers
  generator: copy
  source: ./files/sudoers_base


packages:
  manager: apt
  update: true
  cleanup: true
  sets:
  - packages:
    - openssh-client
    - openssh-server
    - sudo
    action: install

  # for the sshd/login
  - packages:
    - sssd
    - libpam-sss
    - libnss-sss
    - sssd-tools
    - libsss-sudo
    action: install


actions:
- trigger: post-files
  action: |-
    #!/bin/sh
    set -eux

    cp /skynet/sshd_config /etc/ssh/sshd_config

    cp /skynet/resolv.conf /etc/resolv.conf

    cp /skynet/sssd.conf /etc/sssd/sssd.conf
    chmod 600 /etc/sssd/sssd.conf

    cp /skynet/sudoers /etc/sudoers
    chmod 440 /etc/sudoers
initial commit with a working debian base and sssd working correctly Signed-off-by: Brendan Golden <git_laptop@brendan.ie> 2024-01-24 16:56:57 +00:00			`image:`
			`name: debian-disco-x86_64`
			`distribution: debian`
			`release: bookworm`
			`description: \|-`
			`Debian {{ image.release }}`
			`architecture: amd64`

			`source:`
			`downloader: debootstrap`
			`url: http://ftp.debian.org/debian/`

			`targets:`
			`lxc:`
			`create_message: \|-`
			`You just created an {{ image.description }} container.`

			`To enable SSH, run: apt install openssh-server`
			`No default root or user password are set by LXC.`
			`config:`
			`- type: all`
			`before: 5`
			`content: \|-`
			`lxc.include = LXC_TEMPLATE_CONFIG/debian.common.conf`

			`- type: user`
			`before: 5`
			`content: \|-`
			`lxc.include = LXC_TEMPLATE_CONFIG/debian.userns.conf`

			`- type: all`
			`after: 4`
			`content: \|-`
			`lxc.include = LXC_TEMPLATE_CONFIG/common.conf`

			`- type: user`
			`after: 4`
			`content: \|-`
			`lxc.include = LXC_TEMPLATE_CONFIG/userns.conf`

			`- type: all`
			`content: \|-`
			`lxc.arch = {{ image.architecture_personality }}`

			`files:`
			`- path: /etc/hostname`
			`generator: hostname`

			`- path: /etc/hosts`
			`generator: hosts`

			`- path: /etc/resolvconf/resolv.conf.d/original`
			`generator: remove`

			`- path: /etc/resolvconf/resolv.conf.d/tail`
			`generator: remove`

			`- path: /etc/machine-id`
			`generator: dump`

			`- path: /var/lib/dbus/machine-id`
			`generator: remove`

			`- path: /skynet/resolv.conf`
			`generator: copy`
			`source: ./files/resolv.conf`

			`- path: /skynet/sshd_config`
			`generator: copy`
			`source: ./files/sshd_config`

			`- path: /skynet/sssd.conf`
			`generator: copy`
			`source: ./files/sssd.conf_base`

			`- path: /skynet/sudoers`
			`generator: copy`
			`source: ./files/sudoers_base`


			`packages:`
			`manager: apt`
			`update: true`
			`cleanup: true`
			`sets:`
			`- packages:`
			`- openssh-client`
			`- openssh-server`
			`- sudo`
			`action: install`

			`# for the sshd/login`
			`- packages:`
			`- sssd`
			`- libpam-sss`
			`- libnss-sss`
			`- sssd-tools`
			`- libsss-sudo`
			`action: install`


			`actions:`
			`- trigger: post-files`
			`action: \|-`
			`#!/bin/sh`
			`set -eux`

			`cp /skynet/sshd_config /etc/ssh/sshd_config`

			`cp /skynet/resolv.conf /etc/resolv.conf`

			`cp /skynet/sssd.conf /etc/sssd/sssd.conf`
			`chmod 600 /etc/sssd/sssd.conf`

			`cp /skynet/sudoers /etc/sudoers`
			`chmod 440 /etc/sudoers`