- 'zumbi@oron.es'
root_mail_alias:
- 'debian-admin@debian.org'
+paths:
+ letsencrypt_dir: '/srv/puppet.debian.org/from-letsencrypt'
roles:
bugsmx:
- buxtehude.debian.org
<IfModule mod_macro.c>
<%=
- $cert_dir_le = '/srv/puppet.debian.org/from-letsencrypt'
+ $cert_dir_le = scope().call_function('hiera', ['paths.letsencrypt_dir'])
$cert_dir_backup = '/srv/puppet.debian.org/backup-keys'
def make_pin_macro(site)
ensure => present,
mode => '0440',
group => 'openldap',
- content => inline_template('<%= File.read("/srv/puppet.debian.org/from-letsencrypt/db.debian.org.key") %>'),
+ content => inline_template('<%= File.read(scope().call_function("hiera", ["paths.letsencrypt_dir"]) + "/db.debian.org.key") %>'),
links => follow,
}
ensure => present,
mode => '0440',
group => 'gobby',
- content => inline_template('<%= File.read("/srv/puppet.debian.org/from-letsencrypt/gobby.debian.org.key") %>'),
+ content => inline_template('<%= File.read(scope().call_function("hiera", ["paths.letsencrypt_dir"]) + "/gobby.debian.org.key") %>'),
links => follow,
}
}
rule => '&SERVICE(tcp, 1873)',
}
+ $certdir = hiera('paths.letsencrypt_dir')
dnsextras::tlsa_record{ "tlsa-${sslname}-1873":
zone => 'debian.org',
- certfile => [ "/srv/puppet.debian.org/from-letsencrypt/${sslname}.crt" ],
+ certfile => [ "${certdir}/${sslname}.crt" ],
port => 1873,
hostname => $sslname,
}
if (size($tlsaports) > 0 and $ssl_ensure == "present") {
$portlist = join($tlsaports, "-")
+ $certdir = hiera('paths.letsencrypt_dir')
dnsextras::tlsa_record{ "tlsa-${name}-${portlist}":
zone => 'debian.org',
- certfile => [ "/srv/puppet.debian.org/from-letsencrypt/${name}.crt" ],
+ certfile => [ "${certdir}/${name}.crt" ],
port => $tlsaport,
hostname => "$name",
}
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.crt-chain"
+ dir = scope().call_function('hiera', ['paths.letsencrypt_dir'])
+ fn = "#{dir}/#{@name}.crt-chain"
out = File.read(fn)
out
%>
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.crt-chained"
+ dir = scope().call_function('hiera', ['paths.letsencrypt_dir'])
+ fn = "#{dir}/#{@name}.crt-chained"
out = File.read(fn)
out
%>
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.crt"
+ dir = scope().call_function('hiera', ['paths.letsencrypt_dir'])
+ fn = "#{dir}/#{@name}.crt"
out = File.read(fn)
out
%>
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.key"
+ dir = scope().call_function('hiera', ['paths.letsencrypt_dir'])
+
+ fn = "#{dir}/#{@name}.key"
out = File.read(fn)
out
%>
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.crt-chained"
+ fn = "#{dir}/#{@name}.crt-chained"
out = File.read(fn)
out
%>
<%=
- fn = "/srv/puppet.debian.org/from-letsencrypt/#{@name}.key"
+ dir = scope().call_function('hiera', ['paths.letsencrypt_dir'])
+ fn = "#{dir}/#{@name}.key"
out = File.read(fn)
out
%>
projects / mirror / dsa-puppet.git / commitdiff