[feat] Create-user-db: use couchdb admin rights

- create soledad-admin user - deploy netrc file for userdb creation - Move soledad-server.conf from /etc/leap to /etc/soledad - make soledad-server.conf group-accessible for the soledad group, so the soledad-admin user can read it - Resolves: #7502
author: varac <varacanero@zeromail.org> 2015-10-01 12:06:02 +0200
committer: varac <varacanero@zeromail.org> 2015-10-05 13:18:44 +0200
commit: 4fc7419598a3baf564f063b7330b9cf9115420b5 (patch)
tree: 9a98dac96b6133daa3fce13329f25f25a2fc2c70 /puppet/modules/soledad/manifests/init.pp
parent: 659587b9a56274d87c8c8deda499ccea85f875b5 (diff)
1 files changed, 14 insertions, 3 deletions
diff --git a/puppet/modules/soledad/manifests/init.pp b/puppet/modules/soledad/manifests/init.pp
index 7cf0b729..6a2c328e 100644
--- a/puppet/modules/soledad/manifests/init.pp
+++ b/puppet/modules/soledad/manifests/init.pp
@@ -1,18 +1,29 @@
+# set up users, group and directories for soledad-server
+# although the soledad users are already created by the
+# soledad-server package
 class soledad {
 
   group { 'soledad':
-    ensure    => present,
-    allowdupe => false;
+    ensure => present,
+    system => true,
   }
 
   user { 'soledad':
     ensure    => present,
-    allowdupe => false,
+    system    => true,
     gid       => 'soledad',
     home      => '/srv/leap/soledad',
     require   => Group['soledad'];
   }
 
+  user { 'soledad-admin':
+    ensure  => present,
+    system  => true,
+    gid     => 'soledad',
+    home    => '/srv/leap/soledad',
+    require => Group['soledad'];
+  }
+
   file {
     '/srv/leap/soledad':
       ensure  => directory,
author	varac <varacanero@zeromail.org>	2015-10-01 12:06:02 +0200
committer	varac <varacanero@zeromail.org>	2015-10-05 13:18:44 +0200
commit	4fc7419598a3baf564f063b7330b9cf9115420b5 (patch)
tree	9a98dac96b6133daa3fce13329f25f25a2fc2c70 /puppet/modules/soledad/manifests/init.pp
parent	659587b9a56274d87c8c8deda499ccea85f875b5 (diff)