sssd configuration extensibility

[disconn3ct]

We are hitting issues with the sssd configuration on Ubuntu clients. Ideally it could be resolved with https://forge.puppet.com/sgnl05/sssd and stdlib 'merge'

1. There is no way to list multiple primary/backup servers. This can be fixed with ipa_server/ipa_backup_server arrays:

ipa_server = srv1, srv2, srv3
ipa_backup_server = remotesrv1,remotesrv2,remotesrv3
2. There is no option for service selection. To enable sudo, for example:

[domain/foo]
sudo_provider = ipa
[sssd]
services = nss, pam, ssh, sudo
3. Other settings could be merged in as needed via stdlib merge

I realize ipa_client_install builds the initial configuration, but trying to manage it after results in resource duplication. The ipa module has all of the information to build the base sssd config hash.

(Alternately, using ensure_packages instead of realize would prevent the conflicts but end-users might accidentally wipe out the config.)

[robruma]

Hi @disconn3ct thanks for the feedback however, this module is woefully out of date and currently has no maintainers. If you'd like to fork the code and resume development with Puppet best practices, by all means do so. You have my blessing. I will be deprecating the repository soon either way.

[kallies]

Hi @robruma , what about donating this module to the Puppet community @voxpupuli ? There is even a howto for migrating modules to voxpopuli: https://voxpupuli.org/docs/#migrating-a-module-to-voxpupuli