Merge pull request #42709 from whiteinge/doc-token_expire_user_override

Add token_expire_user_override link to auth runner docstring
2024-11-07 17:09:03 +00:00 · 2017-08-14 15:03:05 -04:00 · 2017-08-14 15:03:05 -04:00 · d2b6ce327a
commit d2b6ce327a
parent c6a7bf02e9 c7ea631558
1 changed files with 14 additions and 2 deletions
--- a/salt/runners/auth.py
+++ b/salt/runners/auth.py
@ -17,16 +17,28 @@ import salt.netapi


 def mk_token(**load):
-    '''
+    r'''
    Create an eauth token using provided credentials

+    Non-root users may specify an expiration date -- if allowed via the
+    :conf_master:`token_expire_user_override` setting -- by passing an
+    additional ``token_expire`` param. This overrides the
+    :conf_master:`token_expire` setting of the same name in the Master config
+    and is how long a token should live in seconds.
+
    CLI Example:

    .. code-block:: shell

        salt-run auth.mk_token username=saltdev password=saltdev eauth=auto
-        salt-run auth.mk_token username=saltdev password=saltdev eauth=auto \\
+
+        # Create a token valid for three years.
+        salt-run auth.mk_token username=saltdev password=saltdev eauth=auto \
            token_expire=94670856
+
+        # Calculate the number of seconds using expr.
+        salt-run auth.mk_token username=saltdev password=saltdev eauth=auto \
+            token_expire=$(expr \( 365 \* 24 \* 60 \* 60 \) \* 3)
    '''
    # This will hang if the master daemon is not running.
    netapi = salt.netapi.NetapiClient(__opts__)