summaryrefslogtreecommitdiff
path: root/puppet/modules
diff options
context:
space:
mode:
authorMicah Anderson <micah@leap.se>2013-11-27 14:08:20 -0500
committerMicah Anderson <micah@leap.se>2013-11-27 14:48:00 -0500
commite25091395d49d7e10c6266528d4bdfc48c10c886 (patch)
tree4ccefa7fbdf6a4080d193ab85ef2ad52620d35b0 /puppet/modules
parentfdf028e53cb1efa9d3d6c8ab76c89f98e2fb7498 (diff)
add identities roles
Change-Id: I483509850bee448bb2ea39863c1e6a796e102c3c
Diffstat (limited to 'puppet/modules')
-rw-r--r--puppet/modules/site_couchdb/manifests/add_users.pp2
-rw-r--r--puppet/modules/site_couchdb/manifests/create_dbs.pp8
2 files changed, 5 insertions, 5 deletions
diff --git a/puppet/modules/site_couchdb/manifests/add_users.pp b/puppet/modules/site_couchdb/manifests/add_users.pp
index c83b096d..e525d01a 100644
--- a/puppet/modules/site_couchdb/manifests/add_users.pp
+++ b/puppet/modules/site_couchdb/manifests/add_users.pp
@@ -17,7 +17,7 @@ class site_couchdb::add_users {
}
couchdb::add_user { $site_couchdb::couchdb_webapp_user:
- roles => '["auth"]',
+ roles => '["auth","identities"]',
pw => $site_couchdb::couchdb_webapp_pw,
salt => $site_couchdb::couchdb_webapp_salt,
require => Couchdb::Query::Setup['localhost']
diff --git a/puppet/modules/site_couchdb/manifests/create_dbs.pp b/puppet/modules/site_couchdb/manifests/create_dbs.pp
index b5404231..a734c870 100644
--- a/puppet/modules/site_couchdb/manifests/create_dbs.pp
+++ b/puppet/modules/site_couchdb/manifests/create_dbs.pp
@@ -1,10 +1,10 @@
class site_couchdb::create_dbs {
- # leap_mx will want access to this. Granting access to the soledad user
- # via the auth group for now.
- # leap_mx could use that for a start.
+ # identities database
+ # r/w: webapp
+ # r: nickserver, leap_mx - need to restrict with design document
couchdb::create_db { 'identities':
- members => "{ \"names\": [], \"roles\": [\"auth\"] }",
+ members => "{ \"names\": [], \"roles\": [\"identities\"] }",
require => Couchdb::Query::Setup['localhost']
}