$rabbit_password = $roles::pubsub::parameters::rabbit_password
ssl::service { 'db.debian.org':
- notify => Exec['service apache2 reload'],
+ notify => [ Exec['service apache2 reload'],
+ Service['slapd'] ],
+ key => true,
+ tlsaport => [443, 389, 636],
+ }
+
+ file { "/etc/ldap/db.debian.org.key":
+ ensure => present,
+ mode => '0440',
+ group => 'openldap',
+ content => inline_template('<%= File.read(scope().call_function("hiera", ["paths.letsencrypt_dir"]) + "/db.debian.org.key") %>'),
+ links => follow,
}
roles::pubsub::config { 'generate':
username => $::fqdn,
password => $rabbit_password
}
+
+ service { 'slapd':
+ ensure => running,
+ }
}