Remove unmanaged ssh keys
[cacert-puppet.git] / sitemodules / profiles / manifests / base.pp
index f892bce..dcc2cc1 100644 (file)
@@ -41,12 +41,13 @@ class profiles::base (
       ensure => present,
     } ->
     user { $user['username']:
-      ensure   => present,
-      comment  => $user['fullname'],
-      gid      => $user['username'],
-      groups   => ['sudo', 'adm'],
-      password => $user['password'],
-      uid      => $user['uid'],
+      ensure         => present,
+      comment        => $user['fullname'],
+      gid            => $user['username'],
+      groups         => ['sudo', 'adm'],
+      password       => $user['password'],
+      uid            => $user['uid'],
+      purge_ssh_keys => true,
     }
     $user['ssh_keys'].each |Hash[String, Data] $keydata| {
        $osusername = $user['username']