ssh_authorized_key should have a replace attribute
|Affected Puppet version:||Branch:|
It would be useful to have a ‘true|false’ replace attribute for the ssh_authorized_key resource. Currently, it just appends, which is nice, but being able to replace would make key expiry easy.
#1 Updated by Jacob Helwig about 2 years ago
- Status changed from Unreviewed to Accepted
Sounds like you want the purge behaviour that some of the other resource types support. It would definitely be nice to be able to manage exactly which keys are in the
authorized_keys file, without having to use actual file resources to overwrite the entire file.