aboutsummaryrefslogtreecommitdiff
path: root/manifests/cert.pp
diff options
context:
space:
mode:
Diffstat (limited to 'manifests/cert.pp')
-rw-r--r--manifests/cert.pp30
1 files changed, 30 insertions, 0 deletions
diff --git a/manifests/cert.pp b/manifests/cert.pp
new file mode 100644
index 0000000..e112817
--- /dev/null
+++ b/manifests/cert.pp
@@ -0,0 +1,30 @@
+define ssl::cert(
+ $ensure = present,
+ $owner = 'root',
+ $group = 'root',
+ $pubmode = '644',
+ $privmode = '600',
+ $base = '/etc/ssl',
+ $private = true
+) {
+ file { "${base}/certs/$name.crt":
+ ensure => $ensure,
+ owner => $owner,
+ group => $group,
+ mode => $pubmode,
+ source => "puppet:///ssl/$name.crt",
+ require => File["${base}/certs"],
+ }
+
+ if ($private == true) {
+ file { "${base}/private/$name.pem":
+ ensure => $ensure,
+ owner => $owner,
+ group => $group,
+ mode => $privmode,
+ backup => false, # Do not backup the private key
+ source => "puppet:///ssl/$name.pem",
+ require => File["${base}/private"],
+ }
+ }
+}
generated by cgit v1.2.3 (git 2.39.1) at 2025-07-06 21:41:07 +0000