summaryrefslogtreecommitdiff
path: root/manifests/ssl/generate_cert.pp
blob: dae091c2e183a565d012e75c5b2dc9929d893eee (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26

class couchdb::ssl::generate_cert {

  package { ['openssl']:
    ensure => 'installed',
  }

  file { $couchdb::cert_path:
    ensure => 'directory',
    mode => '0600',
    owner => 'couchdb',
    group => 'couchdb';
  }
 
exec { 'generate-certs':
    command => "/usr/bin/openssl req -new -inform PEM -x509 -nodes -days 150 -subj \
'/C=ZZ/ST=AutoSign/O=AutoSign/localityName=AutoSign/commonName=${::hostname}/organizationalUnitName=AutoSign/emailAddress=AutoSign/' \
-newkey rsa:2048 -out ${couchdb::cert_path}/couchdb_cert.pem -keyout ${couchdb::cert_path}/couchdb_key.pem",
    unless => "/usr/bin/test -f ${couchdb::cert_path}/couchdb_cert.pem &&
/usr/bin/test -f ${couchdb::params::cert_path}/couchdb_key.pem",
    require => [
      File[$couchdb::params::cert_path],
      Exec['make-install']
    ],
    notify => Service['couchdb'],
  }
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-29 02:22:49 +0000