48 lines
No EOL
1.8 KiB
Text
48 lines
No EOL
1.8 KiB
Text
variant: fcos
|
|
version: 1.5.0
|
|
passwd:
|
|
users:
|
|
- name: core
|
|
password_hash: $y$j9T$Ww5YZpVbpY474eIDLe3Pj/$D79wYZxooJyVKJTeodhyJ53c1dE2Kituh0cY3Nqw4AA
|
|
ssh_authorized_keys:
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILqathM/KAjYvI4NzwDs4UJxVcMyv+xwYt0axPP7HzmZ
|
|
|
|
systemd:
|
|
units:
|
|
# Installing Cockpit as a layered package with rpm-ostree
|
|
- name: rpm-ostree-install-cockpit.service
|
|
enabled: true
|
|
contents: |
|
|
[Unit]
|
|
Description=Layer Cockpit with rpm-ostree
|
|
Wants=network-online.target
|
|
After=network-online.target
|
|
# We run before `zincati.service` to avoid conflicting rpm-ostree
|
|
# transactions.
|
|
Before=zincati.service
|
|
ConditionPathExists=!/var/lib/%N.stamp
|
|
|
|
[Service]
|
|
Type=oneshot
|
|
RemainAfterExit=yes
|
|
# `--allow-inactive` ensures that rpm-ostree does not return an error
|
|
# if the package is already installed. This is useful if the package is
|
|
# added to the root image in a future Fedora CoreOS release as it will
|
|
# prevent the service from failing.
|
|
ExecStart=/usr/bin/rpm-ostree install --apply-live --allow-inactive cockpit-system cockpit-ostree cockpit-podman cockpit-storaged cockpit-networkmanager cockpit-ostree cockpit-selinux cockpit-kdump cockpit-certificates cockpit-sosreport cockpit-tailscale cockpit-pcp
|
|
ExecStart=/bin/touch /var/lib/%N.stamp
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|
|
|
|
|
|
storage:
|
|
files:
|
|
- path: /etc/ssh/sshd_config.d/20-enable-passwords.conf
|
|
mode: 0644
|
|
contents:
|
|
inline: |
|
|
# Fedora CoreOS disables SSH password login by default.
|
|
# Enable it.
|
|
# This file must sort before 40-disable-passwords.conf.
|
|
PasswordAuthentication yes |