mirror of
https://github.com/willshersystems/ansible-sshd
synced 2025-01-05 15:00:20 +01:00
f6ae2094fe
Specifics:
* Debian 12 has no longer the instantiated service using inet, see the
following commit:
0dc73888bb
* I am not matching the Description tag verbosely as I do not find it
crucial for functionality.
* We generate additional -f switch to the sshd CLI pointing go the main
sshd config we manage
* The Before=sshd.service in the socket is not generated as I find it
unnecessary when we conflict the service.
* Recent Ubuntu versions have RuntimeDirectoryPreserve option, which I
set for all Ubuntu/Debian as it should not hurt.
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
45 lines
1.4 KiB
Django/Jinja
45 lines
1.4 KiB
Django/Jinja
[Unit]
|
|
Description=OpenBSD Secure Shell server
|
|
After=network.target{{ (__sshd_service_after is none) | ternary('', ' ' ~ __sshd_service_after) }}
|
|
{% if __sshd_service_wants is string %}
|
|
Wants={{ __sshd_service_wants }}
|
|
{% elif __sshd_service_wants is iterable %}
|
|
{% for file in __sshd_service_wants %}
|
|
Wants={{ file }}
|
|
{% endfor %}
|
|
{% endif %}
|
|
Documentation=man:sshd(8) man:sshd_config(5)
|
|
|
|
[Service]
|
|
Type=notify
|
|
{% if __sshd_environment_file is string %}
|
|
EnvironmentFile=-{{ __sshd_environment_file }}
|
|
{% elif __sshd_environment_file is iterable %}
|
|
{% for file in __sshd_environment_file %}
|
|
EnvironmentFile=-{{ file }}
|
|
{% endfor %}
|
|
{% endif %}
|
|
ExecStartPre={{ sshd_binary }} -t
|
|
ExecStart={{ sshd_binary }} -D {{ __sshd_environment_variable }} -f {% if sshd_main_config_file is not none %}
|
|
{{- sshd_main_config_file }}
|
|
{% else %}
|
|
{{- sshd_config_file }}
|
|
{% endif %}
|
|
ExecReload={{ sshd_binary }} -t
|
|
ExecReload=/bin/kill -HUP $MAINPID
|
|
KillMode=process
|
|
Restart=on-failure
|
|
{% if __sshd_service_restart_timeout is not none %}
|
|
RestartSec={{ __sshd_service_restart_timeout }}
|
|
{% endif %}
|
|
RestartPreventExitStatus=255
|
|
{% if __sshd_runtime_directory is not none %}
|
|
RuntimeDirectory={{ __sshd_runtime_directory }}
|
|
RuntimeDirectoryMode={{ __sshd_runtime_directory_mode }}
|
|
{% endif %}
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|
|
{% if __sshd_service_alias is not none %}
|
|
Alias={{ __sshd_service_alias }}.service
|
|
{% endif %}
|