Squashed 'puppet/modules/x509/' content from commit 19254a3

git-subtree-dir: puppet/modules/x509 git-subtree-split: 19254a38c1c372ae7912ea9f15500b9b1cbffe81
author: Micah <micah@leap.se> 2016-05-24 10:19:30 -0400
committer: Micah <micah@leap.se> 2016-05-24 10:19:30 -0400
commit: 09c79400ae368fa7f9b4e910451eef496c702d6c (patch)
tree: 284e294f69a5e701571e9b654f2643ed6f9a4e16 /manifests/base.pp
1 files changed, 45 insertions, 0 deletions
diff --git a/manifests/base.pp b/manifests/base.pp
new file mode 100644
index 00000000..b88cce64
--- /dev/null
+++ b/manifests/base.pp
@@ -0,0 +1,45 @@
+class x509::base {
+  include x509::variables
+
+  package { [ 'ssl-cert', 'ca-certificates' ]:
+    ensure => installed;
+  }
+
+  group { 'ssl-cert':
+    ensure  => present,
+    system  => true,
+    require => Package['ssl-cert'];
+  }
+
+  file {
+    $x509::variables::root:
+      ensure  => directory,
+      mode    => '0755',
+      owner   => root,
+      group   => root;
+
+    $x509::variables::keys:
+      ensure  => directory,
+      mode    => '0750',
+      owner   => root,
+      group   => ssl-cert;
+
+    $x509::variables::certs:
+      ensure  => directory,
+      mode    => '0755',
+      owner   => root,
+      group   => root;
+
+    $x509::variables::local_CAs:
+      ensure  => directory,
+      mode    => '2775',
+      owner   => root,
+      group   => root;
+  }
+
+  exec { 'update-ca-certificates':
+    command     => '/usr/sbin/update-ca-certificates',
+    refreshonly => true,
+    subscribe   => File[$x509::variables::local_CAs]
+  }
+}
author	Micah <micah@leap.se>	2016-05-24 10:19:30 -0400
committer	Micah <micah@leap.se>	2016-05-24 10:19:30 -0400
commit	09c79400ae368fa7f9b4e910451eef496c702d6c (patch)
tree	284e294f69a5e701571e9b654f2643ed6f9a4e16 /manifests/base.pp