setup tokens couchdb role for the tokens database and give soledad and the webapp access

Change-Id: Ifc44d5775e37655240573ab01dd2ee2f794bd8f3

2 files changed, 4 insertions, 4 deletions

diff --git a/puppet/modules/site_couchdb/manifests/add_users.pp b/puppet/modules/site_couchdb/manifests/add_users.pp
index f5c38cbb..03ce12f1 100644
--- a/puppet/modules/site_couchdb/manifests/add_users.pp
+++ b/puppet/modules/site_couchdb/manifests/add_users.pp
@@ -26,16 +26,16 @@ class site_couchdb::add_users {
   ## read: tokens, user-<uuid>, shared
   ## write: user-<uuid>, shared
   couchdb::add_user { $site_couchdb::couchdb_soledad_user:
-    roles   => '["auth"]',
+    roles   => '["tokens"]',
     pw      => $site_couchdb::couchdb_soledad_pw,
     salt    => $site_couchdb::couchdb_soledad_salt,
     require => Couchdb::Query::Setup['localhost']
   }
 
   ## webapp couchdb user
-  ## read/write: users, tokens, sessions, tickets, identities
+  ## read/write: users, tokens, sessions, tickets, identities, customer
   couchdb::add_user { $site_couchdb::couchdb_webapp_user:
-    roles   => '["auth","identities"]',
+    roles   => '["tokens","identities"]',
     pw      => $site_couchdb::couchdb_webapp_pw,
     salt    => $site_couchdb::couchdb_webapp_salt,
     require => Couchdb::Query::Setup['localhost']
diff --git a/puppet/modules/site_couchdb/manifests/create_dbs.pp b/puppet/modules/site_couchdb/manifests/create_dbs.pp
index 9e21e33a..a1db9d54 100644
--- a/puppet/modules/site_couchdb/manifests/create_dbs.pp
+++ b/puppet/modules/site_couchdb/manifests/create_dbs.pp
@@ -42,7 +42,7 @@ class site_couchdb::create_dbs {
   ## r: soledad - needs to be restricted with a design document
   ## r/w: webapp
   couchdb::create_db { 'tokens':
-    members => "{ \"names\": [], \"roles\": [\"auth\"] }",
+    members => "{ \"names\": [], \"roles\": [\"tokens\"] }",
     require => Couchdb::Query::Setup['localhost']
   }