diff options
Diffstat (limited to 'deployment/releasekey')
-rw-r--r-- | deployment/releasekey/manifests/init.pp | 7 | ||||
-rw-r--r-- | deployment/releasekey/templates/sign_checksums | 11 |
2 files changed, 18 insertions, 0 deletions
diff --git a/deployment/releasekey/manifests/init.pp b/deployment/releasekey/manifests/init.pp index a96b0a89..89310040 100644 --- a/deployment/releasekey/manifests/init.pp +++ b/deployment/releasekey/manifests/init.pp @@ -29,5 +29,12 @@ class releasekey { keydir => $sign_keydir, require => User[$sign_login], } + + file { "/usr/local/bin/sign_checksums": + ensure => present, + owner => $sign_login, + mode => 700, + content => template("releasekey/sign_checksums"), + } } } diff --git a/deployment/releasekey/templates/sign_checksums b/deployment/releasekey/templates/sign_checksums new file mode 100644 index 00000000..28ea7871 --- /dev/null +++ b/deployment/releasekey/templates/sign_checksums @@ -0,0 +1,11 @@ +#!/bin/bash + +if [ $# -lt 1 ]; then + echo "Usage: $0 <directory>" +fi + +directory=$1 +cd "$directory" +for chksum in *.md5 *.sha1; do + gpg --homedir "<%= keydir %>" --yes --sign "$chksum" +done |