Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-02-01 | provide an owner to x509::key, defaulting to rootHEADmaster | Micah Anderson | |
2013-01-31 | overriding the group in a define that isn't part of a class is difficult, so | Micah Anderson | |
instead of requiring you to do that if you wish to have an application to have access to the key file, you can pass an alternate to the default group = 'ssl-cert' | |||
2013-01-31 | change permissions on key directory to allow for non-root applications access to | Micah Anderson | |
key files, if the application is in both the 'ssl-cert' group as well as its own group (eg. 'imapd') In this configuration you would override the key class to change the owner of the installed key to be the group of the service (ie. 'imapd') and then the application can read the key file. This adjusts this module to adhere to the changes on http://wiki.debian.org/X.509 | |||
2012-11-27 | remove dependency on openssl package | Micah Anderson | |
2012-11-27 | missed one source -> content change | Micah Anderson | |
2012-11-26 | fix incorrectly specifed openssl package | Micah Anderson | |
2012-11-26 | fix incorrectly specified source param, should be content | Micah Anderson | |
2012-11-26 | fix syntax error | Micah Anderson | |
2012-11-22 | add more flexible source/content options | Micah Anderson | |
this makes it so you can do one of a few things: 1. pass no $content, or $source and the default will be taken (search path checking first for site_x509/{CAs,keys,certs}/$::fqdn/${name}.crt, secondly for site_x509/{CAs,keys,certs}/${name}.crt 2. pass $content, allowing you to specify templates etc. 3. pass $source, allowing you to specify any source you wish | |||
2012-11-22 | fix cert variable name | Micah Anderson | |
2012-11-22 | Initial commit | Micah Anderson | |