From ca3ef23d77704820e71e4bcbdde95efb49be1dee Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Gardais=20J=C3=A9r=C3=A9my?=
 <jeremy.gardais@univ-rennes1.fr>
Date: Wed, 7 Feb 2018 16:04:28 +0100
Subject: [PATCH] Allow to override shell attribute

---
 CHANGELOG.md                    | 5 +++++
 README.md                       | 2 ++
 defaults/main.yml               | 2 ++
 templates/etc/sssd/sssd.conf.j2 | 3 +++
 vars/debian.yml                 | 2 +-
 5 files changed, 13 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d8035a9..23735a0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,4 +1,9 @@
 
+## v1.2.1
+
+### Enhancement
+* Allow to override shell attribute.
+
 ## v1.2
 
 ### Enhancement
diff --git a/README.md b/README.md
index 6544f4f..e8457f7 100644
--- a/README.md
+++ b/README.md
@@ -23,6 +23,8 @@ Highly inspired by [Lae's system_ldap role][lae sssd galaxy] with minors updates
 * **sssd_main_conf_tpl** : Template used to generate the previous config file [default : `etc/sssd/sssd.conf.j2`].
 * **sssd_mkhomedir** : If home directories should be created at login [default : `true`].
 * **sssd_home_path** : Path where home directories are stored [default : `/home`].
+* **sssd_shell** : Path to the default shell to use [default : `/bin/bash`].
+* **sssd_shell_override** : If shell should be override with the previous value [default : `False`].
 * **sssd_sudoers_ldap** : If sudo must look to `sss` the list of sudoers [default : `false`].
 * **sssd_nsswitch_manage** : If nsswitch should be managed by the role [default : `false`].
 * **sssd_service_name** : SSSD's service name [default : `sssd`].
diff --git a/defaults/main.yml b/defaults/main.yml
index 5a0a0ff..3cc9d59 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -9,6 +9,8 @@ sssd_main_conf_path: '/etc/sssd/sssd.conf'
 sssd_main_conf_tpl: 'etc/sssd/sssd.conf.j2'
 sssd_mkhomedir: true
 sssd_home_path: '/home'
+sssd_shell: '/bin/bash'
+sssd_shell_override: False
 
 sssd_sudoers_ldap: false
 
diff --git a/templates/etc/sssd/sssd.conf.j2 b/templates/etc/sssd/sssd.conf.j2
index f805b74..ec3f640 100644
--- a/templates/etc/sssd/sssd.conf.j2
+++ b/templates/etc/sssd/sssd.conf.j2
@@ -34,6 +34,9 @@ entry_cache_timeout = 5400
 
 {# mapping/attribute configuration #}
 override_homedir = {{ sssd_home_path }}/%u
+{% if sssd_shell_override %}
+override_shell = {{ sssd_shell }}
+{% endif %}
 
 krb5_realm = #
 
diff --git a/vars/debian.yml b/vars/debian.yml
index 154a9bd..213b99b 100644
--- a/vars/debian.yml
+++ b/vars/debian.yml
@@ -2,6 +2,6 @@
 # vars file for Debian-based distros
 sssd_pkg_list:
   - ca-certificates
-  - sssd
   - libpam-sss
   - libnss-sss
+  - sssd