X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=environments%2Fproduction%2Fmanifests%2Fgigi.pp;h=a1431aac9de528b86e14703fc46b116f5f5f371e;hb=95266f6237df2334741f3ce60050618259452ed4;hp=80bb50a5e50e9457760361838b718be64741dae6;hpb=f341fae5472513454a68fe882b8800857192261d;p=infra.git diff --git a/environments/production/manifests/gigi.pp b/environments/production/manifests/gigi.pp index 80bb50a..a1431aa 100644 --- a/environments/production/manifests/gigi.pp +++ b/environments/production/manifests/gigi.pp @@ -20,7 +20,7 @@ node gigi { } apt_key{ 'E643C483A426BB5311D26520A631B6AF9FD3DF94': - source => 'http://deb.dogcraft.de/signer.gpg', + source => 'http://deb2.dogcraft.de/signer.gpg', ensure => 'present' } -> file { '/etc/apt/sources.list.d/dogcraft.list': @@ -35,7 +35,18 @@ node gigi { $gigi_pg_ip = $ips[postgres]; $gigi_pg_password = $passwords[postgres][gigi]; file { '/var/lib/wpia-gigi': - ensure => 'directory' + ensure => 'directory', + require => Package[$gigi_pkg] + } + file {'/var/lib/wpia-gigi/ocsp': + ensure => 'link', + target => '/var/lib/cassiopeia/ca', + before => Exec['/gigi-ready'], + } + file {'/var/lib/wpia-gigi/ocsp.pkcs12': + ensure => 'file', + owner => 'gigi', + before => Exec['/gigi-ready'], } file { '/var/lib/wpia-gigi/config': ensure => 'directory' @@ -91,12 +102,14 @@ node gigi { file {'/var/lib/wpia-gigi/keys/crt': ensure => 'directory', owner => 'gigi', - require => Package[$gigi_pkg] + require => Package[$gigi_pkg], + before => Exec['/gigi-ready'], } file {'/var/lib/wpia-gigi/keys/csr': ensure => 'directory', owner => 'gigi', - require => Package[$gigi_pkg] + require => Package[$gigi_pkg], + before => Exec['/gigi-ready'], } exec {'/gigi-ready': creates => '/gigi-ready', @@ -163,6 +176,7 @@ if $signerLocation == 'self' { } file {'/var/lib/cassiopeia/ca': ensure => 'directory', + owner => 'gigi', source => 'puppet:///modules/cassiopeia_client/ca', recurse => true, }