mirror of
https://github.com/ben-grande/qusal.git
synced 2024-12-27 16:39:42 -05:00
475b81a67f
Skipping the Git system configuration on Whonix weakens the state as it starts depending on the dotfiles, but it is the only way to not break system updates due to Whonix security-misc package owning the same file. Fix: https://github.com/ben-grande/qusal/issues/101
65 lines
1.4 KiB
Plaintext
65 lines
1.4 KiB
Plaintext
{#
|
|
SPDX-FileCopyrightText: 2023 - 2024 Benjamin Grande M. S. <ben.grande.b@gmail.com>
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-or-later
|
|
#}
|
|
|
|
include:
|
|
- utils.tools.common.update
|
|
- dotfiles.copy-git
|
|
- dotfiles.copy-sh
|
|
- dotfiles.copy-x11
|
|
- sys-pgp.install-client
|
|
|
|
"{{ slsdotpath }}-installed":
|
|
pkg.installed:
|
|
- require:
|
|
- sls: utils.tools.common.update
|
|
- install_recommends: False
|
|
- skip_suggestions: True
|
|
- setopt: "install_weak_deps=False"
|
|
- pkgs:
|
|
- git
|
|
- man-db
|
|
|
|
{% set git = {
|
|
'Debian': {
|
|
'exec_path': '/usr/lib/git-core',
|
|
},
|
|
'RedHat': {
|
|
'exec_path': '/usr/libexec/git-core',
|
|
},
|
|
'Qubes OS': {
|
|
'exec_path': '/usr/libexec/git-core',
|
|
},
|
|
}.get(grains.os_family) -%}
|
|
|
|
"{{ slsdotpath }}-install-client-git-core-dir":
|
|
file.recurse:
|
|
- require:
|
|
- pkg: {{ slsdotpath }}-installed
|
|
- source: salt://{{ slsdotpath }}/files/client/git-core
|
|
- name: {{ git.exec_path }}
|
|
- file_mode: '0755'
|
|
- dir_mode: '0755'
|
|
- user: root
|
|
- group: root
|
|
- makedirs: True
|
|
- recurse:
|
|
- mode
|
|
- user
|
|
- group
|
|
|
|
{% if not salt['file.file_exists']('/usr/share/whonix/marker') -%}
|
|
{#
|
|
Whonix's security-misc package owns /etc/gitconfig, fallback to Git dotfiles
|
|
to set this option.
|
|
#}
|
|
|
|
"{{ slsdotpath }}-install-client-allow-protocol":
|
|
cmd.run:
|
|
- name: git config --system protocol.qrexec.allow always
|
|
- runas: root
|
|
|
|
{% endif -%}
|