From d2672e1d60cd3a439ae8d6eb698f346b49fd3135 Mon Sep 17 00:00:00 2001 From: Michael Scherer Date: Sat, 7 Jan 2012 22:06:45 +0000 Subject: split signbot from the main module --- modules/buildsystem/manifests/signbot.pp | 47 ++++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 modules/buildsystem/manifests/signbot.pp (limited to 'modules/buildsystem/manifests/signbot.pp') diff --git a/modules/buildsystem/manifests/signbot.pp b/modules/buildsystem/manifests/signbot.pp new file mode 100644 index 00000000..576a49c0 --- /dev/null +++ b/modules/buildsystem/manifests/signbot.pp @@ -0,0 +1,47 @@ +class buildsystem { + class signbot { + $sign_login = "signbot" + $sign_home_dir = "/var/lib/$sign_login" + $sign_keydir = "$sign_home_dir/keys" + # FIXME: maybe keyid should be defined at an other place + $sign_keyid = "80420F66" + # FIXME refactor with base class ( once variables are placed in a separate module ) + $sched_login = "schedbot" + + sshuser { $sign_login: + homedir => $sign_home_dir, + comment => "System user used to sign packages", + groups => [$sched_login], + } + + gnupg::keys{"packages": + email => "packages@$domain", + #FIXME there should be a variable somewhere to change the name of the distribution + key_name => 'Mageia Packages', + login => $sign_login, + batchdir => "$sign_home_dir/batches", + keydir => $sign_keydir, + } + + sudo::sudoers_config { "signpackage": + content => template("buildsystem/sudoers.signpackage") + } + + file { "$sign_home_dir/.rpmmacros": + ensure => present, + owner => root, + group => root, + mode => 644, + content => template("buildsystem/signbot-rpmmacros") + } + + file { "/usr/local/bin/sign-check-package": + ensure => present, + owner => root, + group => root, + mode => 755, + content => template("buildsystem/sign-check-package") + } + } +} + -- cgit v1.2.1