3 # This class installs and configures dacs for web auth
13 package { 'libapache2-mod-dacs':
23 file { '/var/log/dacs':
29 '/etc/dacs/federations',
30 '/etc/dacs/federations/debian.org/',
31 '/etc/dacs/federations/debian.org/DEBIAN',
32 '/etc/dacs/federations/debian.org/DEBIAN/acls',
33 '/etc/dacs/federations/debian.org/DEBIAN/groups',
34 '/etc/dacs/federations/debian.org/DEBIAN/groups/DACS'
38 require => Package['libapache2-mod-dacs'],
41 file { '/etc/logrotate.d/dacs':
42 source => 'puppet:///modules/dacs/common/dacs.logrotate',
44 file { '/etc/dacs/federations/site.conf':
45 source => 'puppet:///modules/dacs/common/site.conf',
47 file { '/etc/dacs/federations/debian.org/DEBIAN/dacs.conf':
48 source => [ "puppet:///modules/dacs/per-host/${::fqdn}/dacs.conf",
49 'puppet:///modules/dacs/common/dacs.conf', ],
51 file { '/etc/dacs/federations/debian.org/DEBIAN/acls/revocations':
52 source => 'puppet:///modules/dacs/common/revocations',
54 file { '/etc/dacs/federations/debian.org/DEBIAN/groups/DACS/jurisdictions.grp':
55 source => 'puppet:///modules/dacs/common/jurisdictions.grp',
57 file { '/etc/dacs/federations/debian.org/DEBIAN/acls/acl-noauth.0':
58 source => [ "puppet:///modules/dacs/per-host/${::fqdn}/acl-noauth.0",
59 'puppet:///modules/dacs/common/acl-noauth.0' ],
60 notify => Exec['dacsacl']
62 file { '/etc/dacs/federations/debian.org/DEBIAN/acls/acl-private.0':
63 source => [ "puppet:///modules/dacs/per-host/${::fqdn}/acl-private.0",
64 'puppet:///modules/dacs/common/acl-private.0' ],
65 notify => Exec['dacsacl']
67 file { '/etc/dacs/federations/debian.org/federation_keyfile':
68 source => 'puppet:///modules/dacs/private/debian.org_federation_keyfile',
70 file { '/etc/dacs/federations/debian.org/DEBIAN/jurisdiction_keyfile':
71 source => 'puppet:///modules/dacs/private/DEBIAN_jurisdiction_keyfile',
75 command => 'dacsacl -sc /etc/dacs/federations/site.conf -c /etc/dacs/federations/debian.org/DEBIAN/dacs.conf -uj DEBIAN && chown root:www-data /etc/dacs/federations/debian.org/DEBIAN/acls/INDEX',