From 10b57abffc39c2731686081de9d6c572acfefdc1 Mon Sep 17 00:00:00 2001
From: Ben Vincent <ben@unkin.net>
Date: Mon, 23 Sep 2024 22:08:52 +1000
Subject: [PATCH 1/2] feat: add terraform service account

- add terraform service account
---
 hieradata/roles/infra/auth/glauth.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/hieradata/roles/infra/auth/glauth.yaml b/hieradata/roles/infra/auth/glauth.yaml
index e6bb033..136b529 100644
--- a/hieradata/roles/infra/auth/glauth.yaml
+++ b/hieradata/roles/infra/auth/glauth.yaml
@@ -211,6 +211,12 @@ glauth::services:
     uidnumber: 30007
     primarygroup: 20001
     passsha256: 'b27786b22c5938d24ffc9be049de366b055c9f054bf38fb73bbd6fba9e1bd525'
+  svc_terraform:
+    service_name: 'svc_terraform'
+    mail: 'terraform@service.main.unkin.net'
+    uidnumber: 30008
+    primarygroup: 20001
+    passsha256: 'b27786b22c5938d24ffc9be049de366b055c9f054bf38fb73bbd6fba9e1bd525'
 
 glauth::groups:
   users:
-- 
2.47.3


From 4a0760516f0b29e4fb3345878a2da8d1b1b6d36f Mon Sep 17 00:00:00 2001
From: Ben Vincent <ben@unkin.net>
Date: Mon, 23 Sep 2024 22:13:48 +1000
Subject: [PATCH 2/2] feat: add vault service account

- used by vault to bind to ldap
---
 hieradata/roles/infra/auth/glauth.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/hieradata/roles/infra/auth/glauth.yaml b/hieradata/roles/infra/auth/glauth.yaml
index 136b529..cabeaa2 100644
--- a/hieradata/roles/infra/auth/glauth.yaml
+++ b/hieradata/roles/infra/auth/glauth.yaml
@@ -217,6 +217,12 @@ glauth::services:
     uidnumber: 30008
     primarygroup: 20001
     passsha256: 'b27786b22c5938d24ffc9be049de366b055c9f054bf38fb73bbd6fba9e1bd525'
+  svc_vault:
+    service_name: 'svc_vault'
+    mail: 'vault@service.main.unkin.net'
+    uidnumber: 30009
+    primarygroup: 20001
+    passsha256: 'd63b04884d5c7d630b0c06896046065a0926ac5c3d6177ef85320e5fa1be00b9'
 
 glauth::groups:
   users:
-- 
2.47.3