Add tls key for gobby server

author Julien Cristau <jcristau@debian.org>

Tue, 3 Oct 2017 07:51:00 +0000 (09:51 +0200)

committer Julien Cristau <jcristau@debian.org>

Tue, 3 Oct 2017 07:52:26 +0000 (09:52 +0200)
author Julien Cristau <jcristau@debian.org>
Tue, 3 Oct 2017 07:51:00 +0000 (09:51 +0200)
committer Julien Cristau <jcristau@debian.org>
Tue, 3 Oct 2017 07:52:26 +0000 (09:52 +0200)
diff --git a/modules/roles/manifests/init.pp b/modules/roles/manifests/init.pp

index 45ca3a5..f9f14f1 100644 (file)
--- a/modules/roles/manifests/init.pp
+++ b/modules/roles/manifests/init.pp
@@ -247,6 +247,13 @@ class roles {
  
         if has_role('gobby_debian_org') {
                 ssl::service { 'gobby.debian.org': notify  => Exec['service apache2 reload'], key => true, tlsaport => [443, 6523], }
+               file { '/etc/ssl/debian-local/other-keys/gobby.debian.org.key':
+                       ensure => present,
+                       mode => '0440',
+                       group => 'gobby',
+                       source => 'puppet:///modules/ssl/from-letsencrypt/gobby.debian.org.key',
+                       links => follow,
+               }
         }
  
         if has_role('search_backend') {
author	Julien Cristau <jcristau@debian.org>
	Tue, 3 Oct 2017 07:51:00 +0000 (09:51 +0200)
committer	Julien Cristau <jcristau@debian.org>
	Tue, 3 Oct 2017 07:52:26 +0000 (09:52 +0200)