Version information
This version is compatible with:
- Puppet Enterprise 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x, 2018.1.x, 2017.3.x, 2017.2.x, 2017.1.x, 2016.5.x, 2016.4.x
- Puppet >= 4.0.0 < 7.0.0
- RedHat, Amazon, CentOS, Debian, Ubuntu, Gentoo, Suse
Start using this module
Add this module to your Puppetfile:
mod 'saz-limits', '3.0.4'
Learn more about managing modules with a PuppetfileDocumentation
puppet-limits
Manage user and group limits via Puppet
This module manages the limits of the PAM module pam_limits.
It creates files in /etc/security/limits.d
and does not manage the file /etc/security/limits.conf
How to use
Set limits using title pattern:
limits::limits{'*/nofile':
hard => 1048576,
soft => 1048576,
}
limits::limits{'root/nofile': both => 1048576; }
Parameters
purge_limits_d_dir
(Boolean, default: true) Whether or not to purge the limits.d directorymanage_limits_d_dir
(Boolean, default: true) Whether or not to manage the limits.d directorylimits_dir
: (String) The location of the limits.d directoryentries
: (Hash) A hash of limits entries, keys should be the name and the value as a hash made up of;ensure
: (String, default present) Values can be absent or presentuser
: (String) The user that the limit applies tolimit_type
(String) The limit typehard
: (Integer) the hard valuesoft
: (Integer) the soft valueboth
: (Integer) the value of both soft and hard
Using hiera
Puppet:
include ::limits
Hiera:
limits::entries:
'root/nofile':
both: 1048576
'*/memlock':
both: unlimited
Compatibility
Puppet 4.9+
This module is compatible with Puppet 4.9+, and Puppet 5.0+
Puppet 4.0 - 4.8
To use this module with previous versions of Puppet 4 (prior to Hiera 5) you should update your Hiera data to include the following
---
limits::limits_dir: /etc/security/limits.d
lookup_options:
limits::entries:
merge: deep
Purge limits.d directory
The class limits
will purge the limits.d directory by default.
You can explicit change this with the parameter purge_limits_d_dir
class { 'limits': }
limits::limits { 'username_nofile':
ensure => present,
user => 'username',
limit_type => 'nofile',
hard => 16384,
soft => 16384,
}
Do NOT purge limits.d directory explicitly
class { 'limits':
purge_limits_d_dir => false,
}
limits::limits { 'username_nofile':
ensure => present,
user => 'username',
limit_type => 'nofile',
hard => 16384,
}
Set both limit types in one line
limits::limits { 'username_nofile':
ensure => present,
user => 'username',
limit_type => 'nofile',
both => 16384,
}
One of hard, soft or both must be set!
Do not manage /etc/security/limits.d
In an effort to make this module compatible with similar modules, e.g.
puppet-module-pam, management
of /etc/security/limits.d
can be disabled by the manage_limits_d_dir
class parameter:
class { 'limits':
manage_limits_d_dir => false,
}
Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
[3.0.4]
Added
- CHANGELOG.md added
Changed
- Update Puppet version requirement to include version 6 (< 7.0.0)
Copyright 2011 Steffen Zieger Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.