modules/entropykey/manifests/provider.pp

   1 class entropykey::provider {
   2
   3         package { 'ekeyd': ensure => installed }
   4
   5         file { '/etc/entropykey/ekeyd.conf':
   6                 source  => 'puppet:///modules/entropykey/ekeyd.conf',
   7                 notify  => Service['ekeyd'],
   8                 require => Package['ekeyd'],
   9         }
  10
  11         # our CRL expires after a while (2 or 4 weeks?), so we have
  12         # to restart stunnel so it loads the new CRL.
  13         file { '/etc/cron.weekly/stunnel-ekey-restart':
  14                 content => "#!/bin/sh\n# This file is under puppet control\n# weekly restart of stunnel on ${::hostname}\nenv -i /etc/init.d/stunnel4 restart puppet-ekeyd | grep -vF 'Restarting SSL tunnels: [stopped: /etc/stunnel/puppet-ekeyd.conf] [Started: /etc/stunnel/puppet-ekeyd.conf] stunnel.'\n",
  15                 mode    => '0555',
  16         }
  17
  18         service { 'ekeyd':
  19                 ensure  => running,
  20                 require => [
  21                         File['/etc/entropykey/ekeyd.conf'],
  22                         Package['ekeyd']
  23                 ]
  24         }
  25
  26         stunnel4::server { 'ekeyd':
  27                 accept  => 18888,
  28                 connect => '127.0.0.1:8888',
  29         }
  30 }