Revision a8db30aa
Added by Ewoud Kohl van Wijngaarden almost 9 years ago
| manifests/server/config.pp | ||
|---|---|---|
|
file { "${puppet::vardir}/reports":
|
||
|
ensure => directory,
|
||
|
owner => $puppet::server_user,
|
||
|
group => $puppet::server_group,
|
||
|
mode => '0750',
|
||
|
}
|
||
|
|
||
|
## SSL and CA configuration
|
||
|
# Open read permissions to private keys to puppet group for foreman, proxy etc.
|
||
|
file { "${puppet::server_ssl_dir}/private_keys":
|
||
|
group => $puppet::server_group,
|
||
|
mode => '0750',
|
||
|
ensure => directory,
|
||
|
owner => $puppet::server_user,
|
||
|
group => $puppet::server_group,
|
||
|
mode => '0750',
|
||
|
}
|
||
|
|
||
|
file { "${puppet::server_ssl_dir}/private_keys/${::fqdn}.pem":
|
||
|
owner => $puppet::server_user,
|
||
|
group => $puppet::server_group,
|
||
|
mode => '0640',
|
||
|
}
|
||
Also available in: Unified diff
Set explicit permissions and ownership
This matches the puppet default and it reduces differences if you set a
global default in site.pp.