Project

General

Profile

« Previous | Next » 

Revision 0002bda7

Added by Eric Helms about 10 years ago

Adding specification of CA cert, key and password to the Candlepin
configuration file.

View differences:

manifests/init.pp
#
# $keystore_password:: Password for keystore being used with Tomcat
#
# $ca_key:: CA key file to use
#
# $ca_cert:: CA certificate file to use
#
# $ca_key_password:: CA key password
#
class candlepin (
$db_name = $candlepin::params::db_name,
......
$thumbslug_oauth_key = $candlepin::params::thumbslug_oauth_key,
$thumbslug_oauth_secret = $candlepin::params::thumbslug_oauth_secret,
$keystore_password = 'UNSET'
$keystore_password = undef,
$ca_key = $candlepin::params::ca_key,
$ca_cert = $candlepin::params::ca_crt,
$ca_key_password = $candlepin::params::ca_key_password
) inherits candlepin::params {
manifests/params.pp
$db_name = 'candlepin'
# this comes from keystore
$db_password = random_password(32)
$db_password = cache_data('candlepin_db_password', random_password(32))
# where to store output from cpsetup execution
$log_dir = '/var/log/candlepin'
......
$thumbslug_oauth_key = 'thumbslug'
$thumbslug_oauth_secret = 'thumbslug'
$ca_key = '/etc/candlepin/certs/candlepin-ca.key'
$ca_cert = '/etc/candlepin/certs/candlepin-ca.crt'
$ca_key_password = undef
$user_groups = []
$env_filtering_enabled = true
templates/candlepin.conf.erb
candlepin.auth.oauth.consumer.<%= @oauth_key %>.secret = <%= @oauth_secret %>
candlepin.crl.file = <%= @crl_file %>
<%- end -%>
<% if @ca_key_password -%>
candlepin.ca_key_password = <%= @ca_key_password %>
<%- end -%>
candlepin.ca_key = <%= @ca_key %>
candlepin.ca_cert = <%= @ca_cert %>

Also available in: Unified diff