Demonstrate per-minion client_acl.

The client_acl system supports setting restrictions based on minion name. Update the Client ACL System reference page to reflect this.
2025-04-17 10:10:20 +00:00 · 2015-07-14 12:59:43 +10:00 · 2015-07-14 12:59:43 +10:00 · 50e0baf270
commit 50e0baf270
parent d02f388b08
1 changed files with 6 additions and 4 deletions
--- a/doc/ref/clientacl.rst
+++ b/doc/ref/clientacl.rst
@ -13,13 +13,15 @@ specified user. This configuration is much like the ``peer`` configuration:

 .. code-block:: yaml

-    # Allow thatch to execute anything and allow fred to use ping and pkg
    client_acl:
+      # Allow thatch to execute anything.
      thatch:
        - .*
+      # Allow fred to use ping and pkg, but only on "web*" minions.
      fred:
-        - test.*
-        - pkg.*
+        - web*
+          - test.*
+          - pkg.*

 Permission Issues
 =================
@ -45,4 +47,4 @@ existing user keys and re-start the Salt master:
 .. code-block:: bash

    rm /var/cache/salt/.*key
-    service salt-master restart
+    service salt-master restart