chef - [chef] Re: Re: Check if a user exists?

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: Check if a user exists?

From: Alexander Skwar < >
To:
Subject: [chef] Re: Re: Check if a user exists?
Date: Wed, 23 Sep 2015 14:52:40 +0200

I don't have knife, I'm using chef-solo. Should've mentioned this, sorry :/

Well, but, no. For local users, ohai seems usable (→ "And "node['etc']['passwd']['local']" is not nil."). node['etc']['passwd']['root'] returns "something".

But for not local users (which are in sssd), ohai doesn't seem to work. As I said, for users stored in IPA, I get "nil" (→ "But "node['etc']['passwd']['ask']" is "nil""), when I check node['etc']['passwd']['ipa-username'].

What's the correct way to check if a user exists, if the user isn't local?

Regards,

Alexander

2015-09-23 14:13 GMT+02:00 Barthélemy Vessemont < " target="_blank"> >:

Just use ohai !!!

Ohai gather up all system user :

> knife search 'name:my-server' -a etc.passwd.root.uid -a etc.passwd.root.gid

my-server:
etc.passwd.root.gid: 0
etc.passwd.root.uid: 0
On Wed, Sep 23, 2015 at 10:15 AM, Alexander Skwar < " target="_blank"> > wrote:
Hello

We're using an IPA server to store user accounts and such and Ubuntu clients with FreeIPA to access this. I would now like to do something, based on the existence of a user account in IPA.

How can I check if a user exists?

On Stack Overflow, I found this:
Ohai queries the users on the system for you:
if node['etc']['passwd']['random']
  # Do deploy
end
But this only works with local accounts; it does not work with accounts in IPA. In our nsswitch.conf, there's:

$ grep passwd /etc/nsswitch.conf
passwd: files sss

With getent, I can query accounts.

$ getent passwd ask
ask:*:10000:10000:Alexander Skwar:/home/ask:/usr/bin/zsh
$ getent passwd example-does-not-exist
$ getent passwd local
local:x:1000:1000::/home/local:/bin/zsh

"ask" is stored in IPA; "example-does-not-exist" is a non-existant account; "local" is a user from /etc/passwd.

But "node['etc']['passwd']['ask']" is "nil". And "node['etc']['passwd']['local']" is not nil.

How can I check if a user exists? Do I really have to resort to calling getent?

Thanks,
Alexander
--
Barthélemy Vessemont - " target="_blank">
Ingénieur en informatique diplômé de l'UTC (Compiègne)
Contributeur Chef ( )



Alexander
-- 
=>        Google+ => http://plus.skwar.me         <==
=> Chat (Jabber/Google Talk) => 
 
 " target="_blank">
  <==

[chef] Check if a user exists?, Alexander Skwar, 09/23/2015
- [chef] Re: Check if a user exists?, Barthélemy Vessemont, 09/23/2015
  - [chef] Re: Re: Check if a user exists?, Alexander Skwar, 09/23/2015
    - [chef] Re: Re: Re: Check if a user exists?, Matthew Moretti, 09/23/2015
      - [chef] Re: Re: Re: Re: Check if a user exists?, John Rowe, 09/23/2015
        
        [chef] Re: Re: Re: Re: Re: Check if a user exists?, Alexander Skwar, 09/24/2015
      - [chef] Re: Re: Re: Re: Check if a user exists?, Alexander Skwar, 09/24/2015