diff options
author | Micah Anderson <micah@leap.se> | 2013-11-27 14:22:57 -0500 |
---|---|---|
committer | Micah Anderson <micah@leap.se> | 2013-11-27 14:48:01 -0500 |
commit | ef0eae6b9ed6294f5c921a73777090142861beba (patch) | |
tree | dad2e2efa8216b9522392d36524c5f23a127eb55 /puppet/modules/site_couchdb | |
parent | d0911282e2e201b1f60cd3431018d57cd8321482 (diff) |
setup tokens couchdb role for the tokens database and give soledad and the webapp access
Change-Id: Ifc44d5775e37655240573ab01dd2ee2f794bd8f3
Diffstat (limited to 'puppet/modules/site_couchdb')
-rw-r--r-- | puppet/modules/site_couchdb/manifests/add_users.pp | 6 | ||||
-rw-r--r-- | puppet/modules/site_couchdb/manifests/create_dbs.pp | 2 |
2 files changed, 4 insertions, 4 deletions
diff --git a/puppet/modules/site_couchdb/manifests/add_users.pp b/puppet/modules/site_couchdb/manifests/add_users.pp index f5c38cbb..03ce12f1 100644 --- a/puppet/modules/site_couchdb/manifests/add_users.pp +++ b/puppet/modules/site_couchdb/manifests/add_users.pp @@ -26,16 +26,16 @@ class site_couchdb::add_users { ## read: tokens, user-<uuid>, shared ## write: user-<uuid>, shared couchdb::add_user { $site_couchdb::couchdb_soledad_user: - roles => '["auth"]', + roles => '["tokens"]', pw => $site_couchdb::couchdb_soledad_pw, salt => $site_couchdb::couchdb_soledad_salt, require => Couchdb::Query::Setup['localhost'] } ## webapp couchdb user - ## read/write: users, tokens, sessions, tickets, identities + ## read/write: users, tokens, sessions, tickets, identities, customer couchdb::add_user { $site_couchdb::couchdb_webapp_user: - roles => '["auth","identities"]', + roles => '["tokens","identities"]', pw => $site_couchdb::couchdb_webapp_pw, salt => $site_couchdb::couchdb_webapp_salt, require => Couchdb::Query::Setup['localhost'] diff --git a/puppet/modules/site_couchdb/manifests/create_dbs.pp b/puppet/modules/site_couchdb/manifests/create_dbs.pp index 9e21e33a..a1db9d54 100644 --- a/puppet/modules/site_couchdb/manifests/create_dbs.pp +++ b/puppet/modules/site_couchdb/manifests/create_dbs.pp @@ -42,7 +42,7 @@ class site_couchdb::create_dbs { ## r: soledad - needs to be restricted with a design document ## r/w: webapp couchdb::create_db { 'tokens': - members => "{ \"names\": [], \"roles\": [\"auth\"] }", + members => "{ \"names\": [], \"roles\": [\"tokens\"] }", require => Couchdb::Query::Setup['localhost'] } |