/[adm]/puppet/modules/gnupg/manifests/init.pp
ViewVC logotype

Diff of /puppet/modules/gnupg/manifests/init.pp

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 2624 by misc, Mon Mar 19 17:11:37 2012 UTC revision 2625 by misc, Mon Mar 19 17:11:39 2012 UTC
# Line 1  Line 1 
1  class gnupg {  class gnupg { }
     # debian recommend SHA2, with 4096  
     # http://wiki.debian.org/Keysigning  
     # as they are heavy users of gpg, I will tend  
     # to follow them  
     # however, for testing purpose, 4096 is too strong,  
     # this empty the entropy of my vm  
     define keys( $email,  
                  $key_name,  
                  $key_type = 'RSA',  
                  $key_length = '4096',  
                  $expire_date = '400d',  
                  $login = 'signbot',  
                  $batchdir = '/var/lib/signbot/batches',  
                  $keydir = '/var/lib/signbot/keys'  
                  ) {  
   
             include gnupg::client  
             file { "$name.batch":  
                 ensure => present,  
                 path => "$batchdir/$name.batch",  
                 content => template("gnupg/batch")  
             }  
   
             file { "$keydir":  
                 ensure => directory,  
                 owner => $login,  
                 mode => 700,  
             }  
   
             file { "$batchdir":  
                 ensure => directory,  
                 owner => $login,  
             }  
   
             exec { "/usr/local/bin/create_gnupg_keys.sh $batchdir/$name.batch $keydir $batchdir/$name.done":  
                  user => $login,  
                  creates => "$batchdir/$name.done",  
                  require => [File["$keydir"], File["$batchdir/$name.batch"], Package["rng-utils"]],  
             }  
     }  
 }  

Legend:
Removed from v.2624  
changed lines
  Added in v.2625

  ViewVC Help
Powered by ViewVC 1.1.30