Revision a8db30aa
Added by Ewoud Kohl van Wijngaarden almost 9 years ago
manifests/server/config.pp | ||
---|---|---|
file { "${puppet::vardir}/reports":
|
||
ensure => directory,
|
||
owner => $puppet::server_user,
|
||
group => $puppet::server_group,
|
||
mode => '0750',
|
||
}
|
||
|
||
## SSL and CA configuration
|
||
# Open read permissions to private keys to puppet group for foreman, proxy etc.
|
||
file { "${puppet::server_ssl_dir}/private_keys":
|
||
group => $puppet::server_group,
|
||
mode => '0750',
|
||
ensure => directory,
|
||
owner => $puppet::server_user,
|
||
group => $puppet::server_group,
|
||
mode => '0750',
|
||
}
|
||
|
||
file { "${puppet::server_ssl_dir}/private_keys/${::fqdn}.pem":
|
||
owner => $puppet::server_user,
|
||
group => $puppet::server_group,
|
||
mode => '0640',
|
||
}
|
Also available in: Unified diff
Set explicit permissions and ownership
This matches the puppet default and it reduces differences if you set a
global default in site.pp.