hiera -> hiera role; explicitly include apache2

[mirror/dsa-puppet.git] / modules / roles / manifests / archvsync_base.pp

diff --git a/modules/roles/manifests/archvsync_base.pp b/modules/roles/manifests/archvsync_base.pp
index 513c8fc..a92297b 100644 (file)
--- a/modules/roles/manifests/archvsync_base.pp
+++ b/modules/roles/manifests/archvsync_base.pp
@@ -1,15 +1,20 @@
+# this is usually pulled in by *-mirror or syncproxy roles
 class roles::archvsync_base {
        file { '/srv/mirrors':
                ensure => directory,
-               owner  => 1176,
-               group  => 1176,
-               mode   => '0755',
-               links  => follow,
+               owner  => root,
+               group  => 1176, # archvsync
+               mode   => '0775',
+               # links  => follow,
        }
 
        file { '/srv/mirrors/.nobackup':
                ensure  => present,
                content => '',
-               mode    => '0444',
+       }
+
+       file { '/etc/ssh/userkeys/archvsync':
+               ensure => 'link',
+               target => '/home/archvsync/.ssh/authorized_keys',
        }
 }