X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fferm%2Fmanifests%2Finit.pp;h=84fc808d735283d09b5b004793c54243881a98cf;hb=c46d1f99d0294179797fb90e3b9fc5b44780bde5;hp=0fa60634d3f0004f8d33a099b60b24b212e23418;hpb=c0e53775066a91f5249c367408c72df04d9ff363;p=mirror%2Fdsa-puppet.git diff --git a/modules/ferm/manifests/init.pp b/modules/ferm/manifests/init.pp index 0fa60634d..84fc808d7 100644 --- a/modules/ferm/manifests/init.pp +++ b/modules/ferm/manifests/init.pp @@ -10,15 +10,46 @@ class ferm { } } + # realize (i.e. enable) all @ferm::rule virtual resources + Ferm::Rule <| |> + + package { ferm: ensure => installed } + file { - "/etc/ferm": - ensure => directory; - "/etc/ferm/dsa.d": - ensure => directory; + "/etc/ferm/dsa.d": + ensure => directory, + purge => true, + force => true, + recurse => true, + source => "puppet:///files/empty/", + require => Package["ferm"]; + "/etc/ferm/conf.d": + ensure => directory, + require => Package["ferm"]; + "/etc/ferm/ferm.conf": + source => "puppet:///ferm/ferm.conf", + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; + "/etc/ferm/conf.d/me.conf": + content => template("ferm/me.conf.erb"), + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; + "/etc/ferm/conf.d/defs.conf": + content => template("ferm/defs.conf.erb"), + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; + "/etc/ferm/conf.d/interfaces.conf": + content => template("ferm/interfaces.conf.erb"), + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; } exec { "ferm restart": - command => "/bin/true", + command => "/etc/init.d/ferm restart", refreshonly => true, }