aboutsummaryrefslogtreecommitdiffstats
path: root/modules/gnupg/manifests/init.pp
diff options
context:
space:
mode:
Diffstat (limited to 'modules/gnupg/manifests/init.pp')
-rw-r--r--modules/gnupg/manifests/init.pp22
1 files changed, 15 insertions, 7 deletions
diff --git a/modules/gnupg/manifests/init.pp b/modules/gnupg/manifests/init.pp
index b7f5781a..66440224 100644
--- a/modules/gnupg/manifests/init.pp
+++ b/modules/gnupg/manifests/init.pp
@@ -34,21 +34,29 @@ class gnupg {
$key_name,
$key_type = 'RSA',
$key_length = '1024',
- $expire_date = '1m'
+ $expire_date = '1m',
+ $login = 'signbot',
+ $batchdir = '/var/lib/signbot/batches',
+ $keydir = '/var/lib/signbot/keys',
) {
include gnupg::client
file { "$name.batch":
ensure => present,
- path => "/etc/gnupg/batches/$name.batch",
+ path => "$batchdir/$name.batch",
content => template("gnupg/batch")
}
- # TODO make sure the perm are good
- exec { "/usr/local/bin/create_gnupg_keys.sh $name":
- user => root,
- creates => "/etc/gnupg/keys/$name.secring",
- require => File["/etc/gnupg/batches/$name.batch"]
+ file { "$keydir":
+ ensure => directory,
+ owner => $login,
+ mode => 700,
+ }
+
+ exec { "/usr/local/bin/create_gnupg_keys.sh $batchdir/$name.batch $keydir $batchdir/$name.done":
+ user => $login,
+ creates => "$batchdir/$name.done",
+ require => [File["$keydir"], File["$batchdir/$name.batch"]],
}
}
}
generated by cgit v1.2.1 (git 2.21.0) at 2024-06-08 22:21:03 +0000