The_miro
/
Dotfiles
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Dotfiles/setup/modules/FreeipaAnsible/ansible
History
Amir Alexander Abdelbaki 9289f01965 feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 
All ansipa host/user group names now follow a consistent prefix scheme:

  dev_mod_<name>          — dotfiles module install (was ansipa-module-)
  dev_fp_<app-id>         — Flatpak install (was fp_install_)
  dev_pkg_<package>       — native package install (was ansipa-install-)
  dev_daemon-enable-<u>   — service enable policy (was policy-daemon-enable-)
  dev_daemon-disable-<u>  — service disable policy (was policy-daemon-disable-)
  dev_timeshift-backup    — backup policy (was policy-timeshift-backup)
  dev_security-scan       — scan policy (was policy-security-scan)
  dev_no-local-users      — auth lockdown (was no_local_users)
  dev_local-sudo-<user>   — per-device sudo grant (was local_sudo_)
  usr_block-binary-<name> — per-user binary block (was policy-block-binary-)
  usr_scan-notify         — per-user alert notification (was policy-scan-notify)

Also adds a JSON state manifest (manifest.json) to ansipa-install-modules
and tightens the FreeIPA enrollment guard to check /etc/ipa/default.conf.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01LcnnA1whUwQkDv1omsgh9Y
 		2026-06-26 11:48:24 +02:00
..
ansipa-enforce-policies.sh feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-fetch-alerts.sh feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install-flatpaks.service feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install-flatpaks.sh feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install-flatpaks.timer setup: add FreeIPA Flatpak group installer (fp_install_* groups) 2026-05-18 11:52:27 +02:00
ansipa-install-modules.service feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install-modules.sh feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install-modules.timer setup: add freeipa-client module and FreeIPA group-based module automation 2026-05-18 11:40:51 +02:00
ansipa-install-packages.sh feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install.service feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
ansipa-install.timer Add setup/modules/FreeipaAnsible/ansible/ansipa-install.timer 2026-04-27 16:44:18 +02:00
ansipa-scan-notify.sh feat(freeipa): scan result reporting, alert notifications, and SMB share 2026-05-20 12:32:21 +02:00
auto-add-baseuser.sh Update setup/modules/FreeipaAnsible/ansible/auto-add-baseuser.sh 2026-04-27 16:37:39 +02:00
baseuser-sync.path Add setup/modules/FreeipaAnsible/ansible/baseuser-sync.path 2026-04-27 16:39:11 +02:00
baseuser-sync.service Add setup/modules/FreeipaAnsible/ansible/baseuser-sync.service 2026-04-27 16:38:37 +02:00
collect-luks-keys.yml feat(ansipa): store LUKS backup keys on SMB share with KeyAdmin access control 2026-05-20 15:33:17 +02:00
deploy-ansipa-install.yml feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
deploy-ansipa-modules.yml feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
deploy-ansipa-policies.yml feat(ansipa): unify FreeIPA group naming with dev_* / usr_* prefixes 2026-06-26 11:48:24 +02:00
deploy-baseuser-sync.yml Add setup/modules/FreeipaAnsible/ansible/deploy-baseuser-sync.yml 2026-04-27 16:39:34 +02:00
manage-sudo-rules.yml feat(freeipa): add policy enforcement for binary blocking, backups, scans, and sudo 2026-05-20 11:34:09 +02:00