]> git.donarmstrong.com Git - dsa-puppet.git/blobdiff - modules/dacs/manifests/init.pp
fix syntax
[dsa-puppet.git] / modules / dacs / manifests / init.pp
index e8abf313a158b03ecf835a93e4eaf1b34cf9cdc4..79cf4841f651e84d212cee1c55419266f321288b 100644 (file)
@@ -5,7 +5,15 @@ class dacs {
     }
 
     file {
+        "/var/log/dacs":
+             ensure  => directory,
+             owner   => root,
+             group   => www-data,
+             mode    => 770,
+             purge   => true
+             ;
         "/etc/dacs/federations":
+             require => Package["libapache2-mod-dacs"],
              ensure  => directory,
              owner   => root,
              group   => www-data,
@@ -14,6 +22,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/":
+             require => Package["libapache2-mod-dacs"],
              ensure  => directory,
              owner   => root,
              group   => www-data,
@@ -22,6 +31,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN":
+             require => Package["libapache2-mod-dacs"],
              ensure  => directory,
              owner   => root,
              group   => www-data,
@@ -30,6 +40,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN/acls":
+             require => Package["libapache2-mod-dacs"],
              ensure  => directory,
              owner   => root,
              group   => www-data,
@@ -38,6 +49,16 @@ class dacs {
              ;
         
         "/etc/dacs/federations/debian.org/DEBIAN/groups":
+             require => Package["libapache2-mod-dacs"],
+             ensure  => directory,
+             owner   => root,
+             group   => www-data,
+             mode    => 750,
+             purge   => true
+             ;
+
+        "/etc/dacs/federations/debian.org/DEBIAN/groups/DACS":
+             require => Package["libapache2-mod-dacs"],
              ensure  => directory,
              owner   => root,
              group   => www-data,
@@ -46,6 +67,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/site.conf":
+             require => Package["libapache2-mod-dacs"],
              source  => [ "puppet:///modules/dacs/per-host/$fqdn/site.conf",
                           "puppet:///modules/dacs/common/site.conf" ],
              mode    => 640,
@@ -54,6 +76,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN/dacs.conf":
+             require => Package["libapache2-mod-dacs"],
              source  => [ "puppet:///modules/dacs/per-host/$fqdn/dacs.conf",
                           "puppet:///modules/dacs/common/dacs.conf" ],
              mode    => 640,
@@ -62,6 +85,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN/acls/revocations":
+             require => Package["libapache2-mod-dacs"],
              source  => [ "puppet:///modules/dacs/per-host/$fqdn/revocations",
                           "puppet:///modules/dacs/common/revocations" ],
              mode    => 640,
@@ -69,25 +93,37 @@ class dacs {
              group   => www-data
              ;
 
+        "/etc/dacs/federations/debian.org/DEBIAN/groups/DACS/jurisdictions.grp":
+             require => Package["libapache2-mod-dacs"],
+             source  => [ "puppet:///modules/dacs/per-host/$fqdn/jurisdictions.grp",
+                          "puppet:///modules/dacs/common/jurisdictions.grp" ],
+             mode    => 640,
+             owner   => root,
+             group   => www-data
+             ;
+
         "/etc/dacs/federations/debian.org/DEBIAN/acls/acl-noauth.0":
+             require => Package["libapache2-mod-dacs"],
              source  => [ "puppet:///modules/dacs/per-host/$fqdn/acl-noauth.0",
                           "puppet:///modules/dacs/common/acl-noauth.0" ],
              mode    => 640,
              owner   => root,
-             group   => www-data
+             group   => www-data,
              notify  => Exec["dacsacl"]
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN/acls/acl-private.0":
+             require => Package["libapache2-mod-dacs"],
              source  => [ "puppet:///modules/dacs/per-host/$fqdn/acl-private.0",
                           "puppet:///modules/dacs/common/acl-private.0" ],
              mode    => 640,
              owner   => root,
-             group   => www-data
+             group   => www-data,
              notify  => Exec["dacsacl"]
              ;
 
         "/etc/dacs/federations/debian.org/federation_keyfile":
+             require => Package["libapache2-mod-dacs"],
              source  => "puppet:///modules/dacs/private/debian.org_federation_keyfile",
              mode    => 640,
              owner   => root,
@@ -95,6 +131,7 @@ class dacs {
              ;
 
         "/etc/dacs/federations/debian.org/DEBIAN/jurisdiction_keyfile":
+             require => Package["libapache2-mod-dacs"],
              source  => "puppet:///modules/dacs/private/DEBIAN_jurisdiction_keyfile",
              mode    => 640,
              owner   => root,
@@ -105,7 +142,7 @@ class dacs {
 
     exec {
         "dacsacl":
-            command     => "dacsacl -uj DEBIAN",
+            command     => "dacsacl -sc /etc/dacs/federations/site.conf -c /etc/dacs/federations/debian.org/DEBIAN/dacs.conf -uj DEBIAN && chown root:www-data /etc/dacs/federations/debian.org/DEBIAN/acls/INDEX",
             refreshonly => true,
     }