X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=modules%2Fferm%2Fmanifests%2Finit.pp;h=709effc4dcb1d9bfdecdad14720d68778a41ae4d;hb=78ceca7ca6540a83d24a89016263235c923543db;hp=0fa60634d3f0004f8d33a099b60b24b212e23418;hpb=c7efeb3b34546e8c252d9a258346f5251953bef4;p=dsa-puppet.git diff --git a/modules/ferm/manifests/init.pp b/modules/ferm/manifests/init.pp index 0fa60634..709effc4 100644 --- a/modules/ferm/manifests/init.pp +++ b/modules/ferm/manifests/init.pp @@ -10,15 +10,41 @@ class ferm { } } + # realize (i.e. enable) all @ferm::rule virtual resources + Rule <| |> + + package { ferm: ensure => installed } + file { - "/etc/ferm": - ensure => directory; - "/etc/ferm/dsa.d": - ensure => directory; + "/etc/ferm/dsa.d": + ensure => directory, + purge => true, + force => true, + recurse => true, + source => "puppet:///files/empty/", + require => Package["ferm"]; + "/etc/ferm/conf.d": + ensure => directory, + require => Package["ferm"]; + "/etc/ferm/ferm.conf": + source => "puppet:///ferm/ferm.conf", + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; + "/etc/ferm/conf.d/me.conf": + content => template("ferm/me.conf.erb"), + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; + "/etc/ferm/conf.d/defs.conf": + source => "puppet:///ferm/defs.conf", + require => Package["ferm"], + mode => 0400, + notify => Exec["ferm restart"]; } exec { "ferm restart": - command => "/bin/true", + command => "/etc/init.d/ferm restart", refreshonly => true, }