unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
f2a9f40f7f
puppet-prod/site/profiles/manifests/pki/puppetcerts.pp
Ben Vincent d8751ac6c8 feat: add minio profile 
- add additional modules in Puppetfile
- update puppetlabs-lvm to 2.1.0
- add facts.d base path to hieradata
- add infra/storage and infra/storage/minio role data to hieradata
- add new facts for minio setup status
- add a static yaml minio-facts file to assist dynamic ruby facts
- updated hiera with additional directories (country/{role,region})
2024-01-05 21:44:41 +11:00

43 lines
1.2 KiB
Puppet
Raw Blame History

# profiles::pki::puppetcerts
class profiles::pki::puppetcerts {
# Define the directory
file { '/etc/pki/tls/puppet':
ensure => 'directory',
owner => 'root',
group => 'root',
mode => '0755',
}
# Copy the CA certificate
file { '/etc/pki/tls/puppet/ca.pem':
ensure => 'file',
owner => 'root',
group => 'root',
mode => '0644',
source => '/etc/puppetlabs/puppet/ssl/certs/ca.pem',
require => File['/etc/pki/tls/puppet'],
}
# Copy the private key
file { "/etc/pki/tls/puppet/${facts['networking']['fqdn']}.key":
ensure => 'file',
owner => 'root',
group => 'root',
mode => '0600',
source => "/etc/puppetlabs/puppet/ssl/private_keys/${facts['networking']['fqdn']}.pem",
require => File['/etc/pki/tls/puppet'],
}
# Copy the certificate
$cert = "/etc/puppetlabs/puppet/ssl/certs/${facts['networking']['fqdn']}.pem"
file { "/etc/pki/tls/puppet/${facts['networking']['fqdn']}.crt":
ensure => 'file',
owner => 'root',
group => 'root',
mode => '0644',
source => "/etc/puppetlabs/puppet/ssl/certs/${facts['networking']['fqdn']}.pem",
require => File['/etc/pki/tls/puppet'],
}
}
Reference in New Issue View Git Blame Copy Permalink