suite => "${::lsbdistcodename}-restricted",
components => 'non-free',
}
+
+ @@concat::fragment { "debian_org::apt_restricted::apache-acl::host::${name}":
+ tag => 'debian_org::apt_restricted::apache-acl',
+ target => '/etc/apache2/conf-available/puppet-restricted-acl.conf',
+ content => @("EOF"),
+ # ${::fqdn}
+ Require ip ${::base::public_addresses}
+ | EOF
+ }
}
ferm::rule::simple { 'ldap':
port => ['ldap', 'ldaps'],
}
+
+ concat { '/etc/apache2/conf-available/puppet-restricted-acl.conf':
+ mode => '0444',
+ ensure_newline => true,
+ warn => '# This file is maintained with puppet',
+ }
+ Concat::Fragment <<| tag == 'debian_org::apt_restricted::apache-acl' |>>
}