projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Remove TLSA record for remaining gandi certificates
[mirror/dsa-puppet.git] / modules / roles / manifests / rtc.pp
diff --git a/modules/roles/manifests/rtc.pp b/modules/roles/manifests/rtc.pp
index 09ad058..888b113 100644 (file)
--- a/modules/roles/manifests/rtc.pp
+++ b/modules/roles/manifests/rtc.pp
@@ -1,16 +1,18 @@
 class roles::rtc {
 
        ssl::service { 'www.debian.org':
-               tlsaport => 0,
+               tlsaport => [],
+               notify  => Service['repro'],
        }
 
        ssl::service { 'sip-ws.debian.org':
+               tlsaport => [],
        }
 
        dnsextras::tlsa_record{ 'tlsa-xmpp':
                zone     => 'debian.org',
                certfile => "/etc/puppet/modules/ssl/files/servicecerts/www.debian.org.crt",
-               port     => '5061 5222 5269',
+               port     => [5061, 5222, 5269],
                hostname => $::fqdn,
        }
 
@@ -89,4 +91,8 @@ class roles::rtc {
        file { '/etc/monit/monit.d/50rtc':
                ensure  => absent,
        }
+
+       service { 'repro':
+               ensure  => running,
+       }
 }
Unnamed repository; edit this file 'description' to name the repository.