Do not notify rehash on update of chains

[dsa-puppet.git] / modules / ssl / manifests / service.pp

diff --git a/modules/ssl/manifests/service.pp b/modules/ssl/manifests/service.pp
index f0400525dd76313b9145e5911dacd9be03e0e67c..54a4110d8387162cf3ff47a70e2a6cd3094e9fa5 100644 (file)
--- a/modules/ssl/manifests/service.pp
+++ b/modules/ssl/manifests/service.pp
@@ -11,9 +11,13 @@ define ssl::service($ensure = present, $tlsaport = 443, $notify = []) {
        }
        file { "/etc/ssl/debian/certs/$name.crt-chain":
                source => [ "puppet:///modules/ssl/chains/${name}.crt", "puppet:///modules/ssl/servicecerts/${name}.crt" ],
-               notify => [ Exec['refresh_debian_hashes'], $notify ],
+               notify => [ $notify ],
                links  => follow,
        }
+       file { "/etc/ssl/debian/certs/$name.crt-chained":
+               content => template('ssl/chained.erb'),
+               notify => [ $notify ],
+       }
 
        if $tlsaport > 0 {
                dnsextras::tlsa_record{ "tlsa-${name}-${tlsaport}":