mig5/enroll
1
0
Fork 0
Code Issues Pull requests Projects Releases 21 Packages Wiki Activity Actions
138 commits 1 branch 21 tags 3.7 MiB
Commit graph

11 commits

Author SHA1 Message Date
Miguel Jacq
d3fdfc9ef7
Manage certain symlinks e.g for apache2/nginx sites-enabled and so on
Some checks failed
Lint / test (push) Waiting to run
Details
Trivy / test (push) Waiting to run
Details
CI / test (push) Has been cancelled
Details
2026-01-05 16:29:21 +11:00
Miguel Jacq
91ec1b8791
Ignore files ending in - in the /etc/ dir e.g /etc/shadow-
Some checks failed
CI / test (push) Failing after 1m43s
Details
Lint / test (push) Successful in 32s
Details
Trivy / test (push) Successful in 23s
Details
2026-01-05 15:48:17 +11:00
Miguel Jacq
b5e32770a3
Ignore files that end with a tilde (probably backup files generated by editors) 2026-01-05 15:23:45 +11:00
Miguel Jacq
c88405ef01
Ensure directories in the tree of anything included with --include are defined in the state and manifest so we make dirs before we try to create files 2026-01-02 21:10:32 +11:00
Miguel Jacq
984b0fa81b
Add ability to enroll RH-style systems (DNF5/DNF/RPM)
All checks were successful
CI / test (push) Successful in 5m9s
Details
Lint / test (push) Successful in 27s
Details
Trivy / test (push) Successful in 17s
Details
2025-12-29 14:59:34 +11:00
Miguel Jacq
054a6192d1
Capture more singletons in /etc and avoid apt duplication
Some checks failed
Lint / test (push) Waiting to run
Details
Trivy / test (push) Waiting to run
Details
CI / test (push) Has been cancelled
Details
2025-12-27 19:02:22 +11:00
Miguel Jacq
4660a0703e
Include files from /usr/local/bin and /usr/local/etc in harvest (assuming they aren't binaries or symlinks) and store in usr_local_custom role, similar to etc_custom.
All checks were successful
CI / test (push) Successful in 5m43s
Details
Lint / test (push) Successful in 30s
Details
Trivy / test (push) Successful in 19s
Details
2025-12-18 17:11:04 +11:00
Miguel Jacq
33b1176800
Add --sops mode to encrypt harvest and manifest data at rest (especially useful if using --dangerous)
Some checks failed
CI / test (push) Successful in 5m35s
Details
Lint / test (push) Failing after 29s
Details
Trivy / test (push) Successful in 18s
Details
2025-12-17 18:51:40 +11:00
Miguel Jacq
6a36a9d2d5
Remote mode and dangerous flag, other tweaks 
* Add remote mode for harvesting a remote machine via a local workstation (no need to install enroll remotely)
   Optionally use `--no-sudo` if you don't want the remote user to have passwordless sudo when conducting the
   harvest, albeit you'll end up with less useful data (same as if running `enroll harvest` on a machine without
   sudo)
 * Add `--dangerous` flag to capture even sensitive data (use at your own risk!)
 * Do a better job at capturing other config files in `/etc/<package>/` even if that package doesn't normally
   ship or manage those files.
 2025-12-17 17:02:16 +11:00
Miguel Jacq
f255ba566c
biiiiig refactor to support jinjaturtle and multi site mode 2025-12-16 20:14:20 +11:00
Miguel Jacq
e4be7f5975
Rename secrets to ignore as it does more than secrets
All checks were successful
CI / test (push) Successful in 5m35s
Details
Lint / test (push) Successful in 27s
Details
Trivy / test (push) Successful in 17s
Details
2025-12-15 17:03:28 +11:00
Renamed from enroll/secrets.py (Browse further)