notify => [ Exec['c_rehash /etc/ssl/debian/certs'], $notify ],
}
file { "/etc/ssl/debian/certs/$name.crt-chain":
- source => [ "puppet:///modules/ssl/servicecerts/${name}.crt-chain", "puppet:///modules/ssl/servicecerts/${name}.crt" ],
+ source => [ "puppet:///modules/ssl/chains/${name}.crt", "puppet:///modules/ssl/servicecerts/${name}.crt" ],
notify => [ Exec['c_rehash /etc/ssl/debian/certs'], $notify ],
links => follow,
}
if $tlsaport > 0 {
- dnsextras::tlsa_record{ "tlsa-${tlsaport}":
+ dnsextras::tlsa_record{ "tlsa-${name}-${tlsaport}":
zone => 'debian.org',
certfile => "/etc/puppet/modules/ssl/files/servicecerts/${name}.crt",
port => $tlsaport,