From 6bff399fdcdab967a13a27d40dcef4bfb871e046 Mon Sep 17 00:00:00 2001 From: Micah Anderson Date: Wed, 27 Nov 2013 14:12:28 -0500 Subject: add nickserver couchdb user, set it to have 'identities' role Change-Id: I06723ccf2ba040204e9fc5256c99a1faad6abb5f --- provider_base/services/couchdb.json | 5 +++++ puppet/modules/site_couchdb/manifests/add_users.pp | 10 ++++++++++ 2 files changed, 15 insertions(+) diff --git a/provider_base/services/couchdb.json b/provider_base/services/couchdb.json index 61b97da1..1a8147f9 100644 --- a/provider_base/services/couchdb.json +++ b/provider_base/services/couchdb.json @@ -28,6 +28,11 @@ "password": "= secret :couch_leap_mx_password", "salt": "= hex_secret :couch_leap_mx_password_salt, 128" }, + "nickserver": { + "username": "nickserver", + "password": "= secret :couch_nickserver_password", + "salt": "= hex_secret :couch_nickserver_password_salt, 128" + }, "soledad": { "username": "soledad", "password": "= secret :couch_soledad_password", diff --git a/puppet/modules/site_couchdb/manifests/add_users.pp b/puppet/modules/site_couchdb/manifests/add_users.pp index e525d01a..e3b74865 100644 --- a/puppet/modules/site_couchdb/manifests/add_users.pp +++ b/puppet/modules/site_couchdb/manifests/add_users.pp @@ -9,6 +9,16 @@ class site_couchdb::add_users { require => Couchdb::Query::Setup['localhost'] } + # nickserver couchdb user + # read: identities, keycache + # write: keycache (a cache of discovered key, doesn’t exist yet) + couchdb::add_user { $site_couchdb::couchdb_nickserver_user: + roles => '["identities"]', + pw => $site_couchdb::couchdb_nickserver_pw, + salt => $site_couchdb::couchdb_nickserver_salt, + require => Couchdb::Query::Setup['localhost'] + } + couchdb::add_user { $site_couchdb::couchdb_soledad_user: roles => '["auth"]', pw => $site_couchdb::couchdb_soledad_pw, -- cgit v1.2.3