Puppet Class: cfssl

Defined in:
modules/cfssl/manifests/init.pp

Overview

Parameters:

  • conf_dir (Stdlib::Unixpath) (defaults to: '/etc/cfssl')

    location of the configuration directory

  • signer_dir (Stdlib::Unixpath) (defaults to: "${conf_dir}/signers")
  • csr_dir (Stdlib::Unixpath) (defaults to: "${conf_dir}/csr")
  • ocsp_dir (Stdlib::Unixpath) (defaults to: "${conf_dir}/ocsp")
  • ssl_dir (Stdlib::Unixpath) (defaults to: "${conf_dir}/ssl")
  • bundles_dir (Stdlib::Unixpath) (defaults to: "${conf_dir}/ssl/bundles")
  • packages (Array[String]) (defaults to: ['golang-cfssl'])


3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
# File 'modules/cfssl/manifests/init.pp', line 3

class cfssl (
    Stdlib::Unixpath $conf_dir    = '/etc/cfssl',
    Stdlib::Unixpath $signer_dir  = "${conf_dir}/signers",
    Stdlib::Unixpath $csr_dir     = "${conf_dir}/csr",
    Stdlib::Unixpath $ocsp_dir    = "${conf_dir}/ocsp",
    Stdlib::Unixpath $ssl_dir     = "${conf_dir}/ssl",
    Stdlib::Unixpath $bundles_dir = "${conf_dir}/ssl/bundles",
    Array[String]    $packages    = ['golang-cfssl']
) {
    ensure_packages(['golang-cfssl'])
    $sql_dir = '/usr/local/share/cfssl'
    file{
        default:
            owner   => 'root',
            group   => 'root',
            require => Package[$packages];
        [$conf_dir, $sql_dir, $signer_dir, $csr_dir, $ssl_dir]:
            ensure  => directory,
            purge   => true,
            recurse => true,
            force   => true,
            mode    => '0550';
        [$ocsp_dir, $bundles_dir]:
            ensure => directory,
            mode   => '0550';
        "${sql_dir}/sqlite_initdb.sql":
            ensure => file,
            mode   => '0440',
            source => 'puppet:///modules/cfssl/sqlite_initdb.sql';
        "${sql_dir}/mysql_initdb.sql":
            ensure => file,
            mode   => '0440',
            source => 'puppet:///modules/cfssl/mysql_initdb.sql';
    }
}