From 1f9003eb6ed90400279011d477e6143e2eb6e2db Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Wed, 18 Sep 2013 16:50:59 +0200
Subject: use x509 for postfix ca and fix names for cert+key (Feature #3833)

---
 puppet/modules/site_postfix/manifests/mx/tls.pp | 20 ++++----------------
 1 file changed, 4 insertions(+), 16 deletions(-)

(limited to 'puppet/modules/site_postfix/manifests/mx/tls.pp')

diff --git a/puppet/modules/site_postfix/manifests/mx/tls.pp b/puppet/modules/site_postfix/manifests/mx/tls.pp
index 8c9da9db..34df72bb 100644
--- a/puppet/modules/site_postfix/manifests/mx/tls.pp
+++ b/puppet/modules/site_postfix/manifests/mx/tls.pp
@@ -1,26 +1,14 @@
 class site_postfix::mx::tls {
 
-  $x509                = hiera('x509')
-  $key                 = $x509['key']
-  $cert                = $x509['cert']
-  $client_ca           = $x509['client_ca_cert']
-
   include x509::variables
-  $cert_name = hiera('name')
-  $cert_path = "${x509::variables::certs}/${cert_name}.crt"
-  $key_path  = "${x509::variables::keys}/${cert_name}.key"
-
-  x509::key { $cert_name:
-    content => $key,
-  }
+  $ca_path   = "${x509::variables::local_CAs}/${site_config::params::client_ca_name}.crt"
+  $cert_path = "${x509::variables::certs}/${site_config::params::cert_name}.crt"
+  $key_path  = "${x509::variables::keys}/${site_config::params::cert_name}.key"
 
-  x509::cert { $cert_name:
-    content => $cert,
-  }
 
   postfix::config {
     'smtpd_use_tls':        value  => 'yes';
-    'smtpd_tls_CAfile':     value  => $client_ca;
+    'smtpd_tls_CAfile':     value  => $ca_path;
     'smtpd_tls_cert_file':  value  => $cert_path;
     'smtpd_tls_key_file':   value  => $key_path;
     'smtpd_tls_ask_ccert':  value  => 'yes';
-- 
cgit v1.2.3