3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
|
# File 'manifests/config/simplesamlphp.pp', line 3
class xdmod::config::simplesamlphp {
$dirs = [
'/etc/xdmod/simplesamlphp',
'/etc/xdmod/simplesamlphp/config',
'/etc/xdmod/simplesamlphp/metadata',
'/etc/xdmod/simplesamlphp/cert',
]
if $xdmod::manage_simplesamlphp {
$simplesamlphp_cert_organization = pick($xdmod::simplesamlphp_cert_organization, $xdmod::organization_name, $facts['networking']['domain'])
$simplesamlphp_cert_commonname = pick($xdmod::simplesamlphp_cert_commonname, $xdmod::apache_vhost_name)
file { $dirs:
ensure => 'directory',
owner => 'root',
group => 'root',
mode => '0755',
}
file { '/etc/xdmod/simplesamlphp/config/config.php':
ensure => 'file',
owner => 'xdmod',
group => 'apache',
mode => '0640',
content => $xdmod::simplesamlphp_config_content,
source => $xdmod::simplesamlphp_config_source,
show_diff => false,
}
file { '/etc/xdmod/simplesamlphp/config/authsources.php':
ensure => 'file',
owner => 'xdmod',
group => 'apache',
mode => '0640',
content => $xdmod::simplesamlphp_authsources_content,
source => $xdmod::simplesamlphp_authsources_source,
show_diff => false,
}
file { '/etc/xdmod/simplesamlphp/metadata/saml20-idp-remote.php':
ensure => 'file',
owner => 'root',
group => 'root',
mode => '0644',
content => $xdmod::simplesamlphp_metadata_content,
source => $xdmod::simplesamlphp_metadata_source,
}
openssl::certificate::x509 { 'xdmod':
country => $xdmod::simplesamlphp_cert_country,
organization => $simplesamlphp_cert_organization,
commonname => $simplesamlphp_cert_commonname,
base_dir => '/etc/xdmod/simplesamlphp/cert',
key_owner => 'apache',
key_mode => '0400',
days => 3652,
require => File['/etc/xdmod/simplesamlphp/cert'],
}
}
}
|