puppet-certs/manifests/params.pp @ b16f8e1e
| 97bac87e | Eric D. Helms | # Certs Parameters
|
|
| 7f082050 | Ivan Necas | class certs::params {
|
|
| 97bac87e | Eric D. Helms | ||
| 3e3ec92e | Eric D. Helms | case $::operatingsystem {
|
|
'Fedora': {
|
|||
$tomcat = 'tomcat'
|
|||
}
|
|||
default: {
|
|||
$tomcat = 'tomcat6'
|
|||
}
|
|||
| 97bac87e | Eric D. Helms | }
|
|
$log_dir = '/var/log/certs'
|
|||
| d4a730d7 | Eric D. Helms | $pki_dir = '/etc/pki/katello'
|
|
$ssl_build_dir = '/root/ssl-build'
|
|||
| 97bac87e | Eric D. Helms | ||
| 4296d7d9 | Ivan Nečas | $node_fqdn = $::fqdn
|
|
| 3e3ec92e | Eric D. Helms | $custom_repo = false
|
|
| 97bac87e | Eric D. Helms | $ca_common_name = $::fqdn # we need fqdn as CA common name as candlepin uses it as a ssl cert
|
|
| 4296d7d9 | Ivan Nečas | ||
$generate = true
|
|||
$regenerate = false
|
|||
$regenerate_ca = false
|
|||
$deploy = true
|
|||
| d4a730d7 | Eric D. Helms | $default_ca_name = 'katello-ca'
|
|
| 76be89b8 | Ivan Nečas | $country = 'US'
|
|
$state = 'North Carolina'
|
|||
$city = 'Raleigh'
|
|||
$org = 'SomeOrg'
|
|||
$org_unit = 'SomeOrgUnit'
|
|||
$expiration = '365'
|
|||
| 7f082050 | Ivan Necas | $ca_expiration = '36500'
|
|
| 97bac87e | Eric D. Helms | ||
| d4a730d7 | Eric D. Helms | $keystore_password_file = 'keystore_password-file'
|
|
$nss_db_dir = "${pki_dir}/nssdb"
|
|||
| 97bac87e | Eric D. Helms | ||
| 3e3ec92e | Eric D. Helms | $user = 'root'
|
|
$group = 'root'
|
|||
| 9501017b | Ivan Nečas | ||
| d4a730d7 | Eric D. Helms | $foreman_client_cert = '/etc/foreman/client_cert.pem'
|
|
$foreman_client_key = '/etc/foreman/client_key.pem'
|
|||
$foreman_client_ca_cert = '/etc/foreman/client_ca.pem'
|
|||
| 9501017b | Ivan Nečas | ||
| d4a730d7 | Eric D. Helms | $foreman_proxy_cert = '/etc/foreman-proxy/ssl_cert.pem'
|
|
$foreman_proxy_key = '/etc/foreman-proxy/ssl_key.pem'
|
|||
$foreman_proxy_ca_cert = '/etc/foreman-proxy/ssl_ca.pem'
|
|||
| 9501017b | Ivan Nečas | ||
$puppet_client_cert = '/etc/puppet/client_cert.pem'
|
|||
| 76be89b8 | Ivan Nečas | $puppet_client_key = '/etc/puppet/client_key.pem'
|
|
| d4a730d7 | Eric D. Helms | $puppet_client_ca_cert = '/etc/puppet/client_ca.pem'
|
|
| 9501017b | Ivan Nečas | ||
| 76be89b8 | Ivan Nečas | $candlepin_certs_storage = '/etc/candlepin/certs'
|
|
$candlepin_ca_cert = '/etc/candlepin/certs/candlepin-ca.crt'
|
|||
$candlepin_ca_key = '/etc/candlepin/certs/candlepin-ca.key'
|
|||
$candlepin_keystore = '/etc/pki/katello/keystore'
|
|||
$candlepin_certs_dir = '/etc/candlepin/certs'
|
|||
| 01eddaf4 | Ivan Nečas | $certs_tar = undef
|
|
# Settings for uploading packages to Katello
|
|||
$katello_user = undef
|
|||
$katello_password = undef
|
|||
$katello_org = 'Katello Infrastructure'
|
|||
$katello_repo_provider = 'node-installer'
|
|||
$katello_product = 'node-certs'
|
|||
$katello_activation_key = undef
|
|||
| 5d4c2e8e | Eric D. Helms | $messaging_client_cert = "${pki_dir}/qpid_client_striped.crt"
|
|
| b16f8e1e | Ivan Nečas | # Pulp expects the node certificate to be located on this very location
|
|
$nodes_cert_dir = '/etc/pki/pulp/nodes'
|
|||
$nodes_cert_name = 'node.crt'
|
|||
| 7f082050 | Ivan Necas | }
|