aboutsummaryrefslogtreecommitdiffstats
path: root/modules/buildsystem/manifests/signbot.pp
diff options
context:
space:
mode:
Diffstat (limited to 'modules/buildsystem/manifests/signbot.pp')
-rw-r--r--modules/buildsystem/manifests/signbot.pp37
1 files changed, 15 insertions, 22 deletions
diff --git a/modules/buildsystem/manifests/signbot.pp b/modules/buildsystem/manifests/signbot.pp
index 5e5db5d9..60c7c318 100644
--- a/modules/buildsystem/manifests/signbot.pp
+++ b/modules/buildsystem/manifests/signbot.pp
@@ -1,38 +1,31 @@
class buildsystem::signbot {
- include buildsystem::scheduler::var
- $login = 'signbot'
- $home_dir = "/var/lib/$login"
- $sign_keydir = "$home_dir/keys"
- # FIXME: maybe keyid should be defined at an other place
- $keyid = '80420F66'
- $sched_login = $buildsystem::scheduler::var::login
+ include buildsystem::var::scheduler
+ include buildsystem::var::signbot
+ $sched_login = $buildsystem::var::scheduler::login
- sshuser { $login:
- homedir => $home_dir,
- comment => 'System user used to sign packages',
+ sshuser { $buildsystem::var::signbot::login:
+ homedir => $buildsystem::var::signbot::home_dir,
groups => [$sched_login],
}
gnupg::keys{ 'packages':
- email => "packages@$::domain",
- #FIXME there should be a variable somewhere to change
- # the name of the distribution
- key_name => 'Mageia Packages',
- login => $login,
- batchdir => "$home_dir/batches",
- keydir => $sign_keydir,
+ email => $buildsystem::var::signbot::keyemail,
+ key_name => $buildsystem::var::signbot::keyname,
+ login => $buildsystem::var::signbot::login,
+ batchdir => "${buildsystem::var::signbot::home_dir}/batches",
+ keydir => $buildsystem::var::signbot::sign_keydir,
}
sudo::sudoers_config { 'signpackage':
content => template('buildsystem/signbot/sudoers.signpackage')
}
- file { "$home_dir/.rpmmacros":
- content => template('buildsystem/signbot/signbot-rpmmacros')
+ file { "${home_dir}/.rpmmacros":
+ source => 'puppet:///modules/buildsystem/signbot/signbot-rpmmacros',
}
- mga-common::local_script {
- 'sign-check-package': content => template('buildsystem/signbot/sign-check-package');
- 'mga-signpackage': content => template('buildsystem/signbot/mga-signpackage');
+ mga_common::local_script {
+ 'sign-check-package': source => 'puppet:///modules/buildsystem/signbot/sign-check-package';
+ 'mga-signpackage': source => 'puppet:///modules/buildsystem/signbot/mga-signpackage';
}
}
generated by cgit v1.2.1 (git 2.21.0) at 2025-11-15 02:41:16 +0000