X-Git-Url: https://review.fuel-infra.org/gitweb?a=blobdiff_plain;ds=sidebyside;f=README.md;fp=README.md;h=9ece72bd1d83d63fcd2e93bda343ed87d9e745d1;hb=d4e1a346103ed0eb5d60e311da79f2ed315b716b;hp=73272c2ffaa6e2e2ae3ca415aa0ce9130238fb8b;hpb=d939cbd5f18ce8852713a74045b84df0b4bbc2bb;p=puppet-modules%2Fpuppetlabs-apt.git diff --git a/README.md b/README.md index 73272c2..9ece72b 100644 --- a/README.md +++ b/README.md @@ -226,6 +226,38 @@ apt::source { "archive.ubuntu.com-${lsbdistcodename}-backports": } ``` +### Manage login configuration settings for an APT source or proxy in `/etc/apt/auth.conf` + +Starting with APT version 1.5 you can define login configuration settings (like +username and password) for APT sources or proxies that require authentication +in the file `/etc/apt/auth.conf`. This is preferable to embedding login +information directly in `source.list` entries which are usually world-readable. + +The file `/etc/apt/auth.conf` follows the format of netrc (as used by ftp or +curl) and has restrictive file permissions. See +https://manpages.debian.org/testing/apt/apt_auth.conf.5.en.html for details. + +Use the optional `apt::auth_conf_entries` parameter to specify an array of +hashes containing login configuration settings. These hashes may only contain +the keys `machine`, `login` and `password`. + +```puppet +class { 'apt': + auth_conf_entries => [ + { + 'machine' => 'apt-proxy.example.net', + 'login' => 'proxylogin', + 'password' => 'proxypassword', + }, + { + 'machine' => 'apt.example.com/ubuntu', + 'login' => 'reader', + 'password' => 'supersecret', + }, + ], +} +``` + ## Reference ### Classes @@ -298,7 +330,7 @@ All parameters are optional unless specified. * `https`: Specifies whether to enable https proxies. Valid options: `true` and `false`. Default: `false`. * `ensure`: Optional parameter. Valid options: 'file', 'present', and 'absent'. Default: `undef`. Prefer 'file' over 'present'. - + * `direct`: Specifies whether or not to use a 'DIRECT' https proxy if http proxy is used but https is not. Valid options: `true` and `false`. Default: `false`. * `purge`: Specifies whether to purge any existing settings that aren't managed by Puppet. Valid options: a hash made up from the following keys: @@ -313,6 +345,8 @@ All parameters are optional unless specified. * `settings`: Creates new `apt::setting` resources. Valid options: a hash to be passed to the [`create_resources` function](https://docs.puppetlabs.com/references/latest/function.html#createresources). Default: {}. +* `auth_conf_entries`: An optional array of login configuration settings (hashes) that will be recorded in the file `/etc/apt/auth.conf`. This file has a netrc-like format (similar to what curl uses) and contains the login configuration for APT sources and proxies that require authentication. See https://manpages.debian.org/testing/apt/apt_auth.conf.5.en.html for details. If specified each hash must contain the keys `machine`, `login` and `password` and no others. Default: []. + * `sources`: Creates new `apt::source` resources. Valid options: a hash to be passed to the [`create_resources` function](https://docs.puppetlabs.com/references/latest/function.html#createresources). Default: {}. * `pins`: Creates new `apt::pin` resources. Valid options: a hash to be passed to the [`create_resources` function](https://docs.puppetlabs.com/references/latest/function.html#createresources). Default: {}.