Puppet Class: ssh::publish_fingerprints

Defined in:
modules/ssh/manifests/publish_fingerprints.pp

Summary

Provisions a directory for publishing SSH fingerprints collected from PuppetDB

Overview

Parameters:

  • document_root (Stdlib::Unixpath)

    the document root to right fingerprints



3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
 
# File 'modules/ssh/manifests/publish_fingerprints.pp', line 3

class ssh::publish_fingerprints (
    Stdlib::Unixpath $document_root,
) {

    # known_hosts.ecdsa is gkept around as an old version of the wmf-update-know-hosts script
    # fetched that file
    $known_hosts = ssh::known_hosts(false)

    file { "${document_root}/known_hosts":
        ensure  => file,
        backup  => false,
        content => template('ssh/known_hosts.erb'),
    }
    file {"${document_root}/known_hosts.ecdsa":
        ensure => link,
        target => "${document_root}/known_hosts",
    }
}