From e6d8ba264c8abf1aac1fbae42cf0e2c65c565c70 Mon Sep 17 00:00:00 2001
From: jitakirin <jitakirin@gmail.com>
Date: Fri, 26 Jun 2015 10:23:42 +0100
Subject: [PATCH] Add Fedora support

Based on RedHat 7 with few modifications (ed25519 hostkey for F22,
GSSAPICleanupCredentials defaults to no, s/LC_TYPE/LC_CTYPE/ in
AcceptEnv).

Tested on Fedora 20 & 22.
---
 README.md          |  1 +
 meta/main.yml      |  4 ++++
 vars/Fedora.yml    | 25 +++++++++++++++++++++++++
 vars/Fedora_22.yml | 26 ++++++++++++++++++++++++++
 4 files changed, 56 insertions(+)
 create mode 100644 vars/Fedora.yml
 create mode 100644 vars/Fedora_22.yml

diff --git a/README.md b/README.md
index 04475ae..5d5efb9 100644
--- a/README.md
+++ b/README.md
@@ -32,6 +32,7 @@ Tested on:
 * Debian wheezy, jessie
 * FreeBSD 10.1
 * EL 6,7 derived distributions
+* Fedora 20, 22
 
 It will likely work on other flavours and more direct support via suitable
 [vars/](vars/) files is welcome.
diff --git a/meta/main.yml b/meta/main.yml
index 5515780..ce10ca7 100644
--- a/meta/main.yml
+++ b/meta/main.yml
@@ -21,6 +21,10 @@ galaxy_info:
     versions:
     - 6
     - 7
+  - name: Fedora
+    versions:
+    - 20
+    - 22
   categories:
   - networking
   - system
diff --git a/vars/Fedora.yml b/vars/Fedora.yml
new file mode 100644
index 0000000..aeafd85
--- /dev/null
+++ b/vars/Fedora.yml
@@ -0,0 +1,25 @@
+---
+sshd_packages:
+  - openssh
+  - openssh-server
+sshd_sftp_server: /usr/libexec/openssh/sftp-server
+sshd_defaults:
+  HostKey:
+    - /etc/ssh/ssh_host_rsa_key
+    - /etc/ssh/ssh_host_ecdsa_key
+  SyslogFacility: AUTHPRIV
+  AuthorizedKeysFile: .ssh/authorized_keys
+  PasswordAuthentication: yes
+  ChallengeResponseAuthentication: no
+  GSSAPIAuthentication: yes
+  GSSAPICleanupCredentials: no
+  UsePAM: yes
+  X11Forwarding: yes
+  UsePrivilegeSeparation: sandbox
+  AcceptEnv:
+    - LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
+    - LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
+    - LC_IDENTIFICATION LC_ALL LANGUAGE
+    - XMODIFIERS
+  Subsystem: "sftp {{ sshd_sftp_server }}"
+sshd_os_supported: yes
diff --git a/vars/Fedora_22.yml b/vars/Fedora_22.yml
new file mode 100644
index 0000000..883a028
--- /dev/null
+++ b/vars/Fedora_22.yml
@@ -0,0 +1,26 @@
+---
+sshd_packages:
+  - openssh
+  - openssh-server
+sshd_sftp_server: /usr/libexec/openssh/sftp-server
+sshd_defaults:
+  HostKey:
+    - /etc/ssh/ssh_host_rsa_key
+    - /etc/ssh/ssh_host_ecdsa_key
+    - /etc/ssh/ssh_host_ed25519_key
+  SyslogFacility: AUTHPRIV
+  AuthorizedKeysFile: .ssh/authorized_keys
+  PasswordAuthentication: yes
+  ChallengeResponseAuthentication: no
+  GSSAPIAuthentication: yes
+  GSSAPICleanupCredentials: no
+  UsePAM: yes
+  X11Forwarding: yes
+  UsePrivilegeSeparation: sandbox
+  AcceptEnv:
+    - LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
+    - LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
+    - LC_IDENTIFICATION LC_ALL LANGUAGE
+    - XMODIFIERS
+  Subsystem: "sftp {{ sshd_sftp_server }}"
+sshd_os_supported: yes