Thomas Krieger tom-krieger

## crl_upload.pp
# @summary Upload new crl to puppet primary
#
# This code example used the same shell script as the task to upload a new crl
# ito Puppet Primary server. Keep in mind that running this class the first time
# will fire the upload task and upload the crl in this repository.
#
class profile::crl_upload (
  Stdlib::Absolutepath $crl_base_dir = '/usr/share/crl_upload',
) {
  $crl_file = "${crl_base_dir}/crl/crl.pem"

## upload_new_crl.json
{
  "description": "Upload a new crl file to the Puppet Primary server. The crl file must be provided in PEM format.",
  "input_method": "environment",
  "parameters": {
    "crl_file": {
      "description": "File with new certificate revolcation lists to upload.",
      "type": "String[1]"
    }
  }
}

## upload_crl.sh
#!/bin/bash

if [ $# -ne 1 ] ; then
    prog=`basename $0`
    echo "usage: $prog <crl file>"
    exit 2
fi

type_header='Content-Type: text/plain'
cert="$(puppet config print hostcert)"

## setup_root_and_intermediate_ca.sh
#!/bin/bash

BASEDIR="/root/ca"
ROOTCA="${BASEDIR}/root_ca"
PUPPETCA="${BASEDIR}/puppet"

mkdir -p "${ROOTCA}"
mkdir -p "${PUPPETCA}"

# setup the root ca

## intermediate-openssl.cnf
#
# OpenSSL example configuration file.
# This is mostly being used for generation of certificate requests.
#

# This definition stops the following lines choking if HOME isn't
# defined.
HOME                        = .
RANDFILE                    = $ENV::HOME/.rnd
oid_section                 = new_oids

## root-openssl.cnf
#
# OpenSSL example configuration file.
# This is mostly being used for generation of certificate requests.
#

# This definition stops the following lines choking if HOME isn't
# defined.
HOME                        = .
RANDFILE                    = $ENV::HOME/.rnd
oid_section                 = new_oids

## .sync.yml
---
Gemfile:
  optional:
    ':development':
      - gem: 'github_changelog_generator'
        git: 'https://github.com/skywinder/github-changelog-generator'
        ref: '20ee04ba1234e9e83eb2ffb5056e23d641c7a018'
        condition: "Gem::Version.new(RUBY_VERSION.dup) >= Gem::Version.new('2.2.2')"
      - gem: 'puppet_litmus'
        git: 'https://github.com/puppetlabs/puppet_litmus.git'
	# @summary Upload new crl to puppet primary
	#
	# This code example used the same shell script as the task to upload a new crl
	# ito Puppet Primary server. Keep in mind that running this class the first time
	# will fire the upload task and upload the crl in this repository.
	#
	class profile::crl_upload (
	Stdlib::Absolutepath $crl_base_dir = '/usr/share/crl_upload',
	) {
	$crl_file = "${crl_base_dir}/crl/crl.pem"
	{
	"description": "Upload a new crl file to the Puppet Primary server. The crl file must be provided in PEM format.",
	"input_method": "environment",
	"parameters": {
	"crl_file": {
	"description": "File with new certificate revolcation lists to upload.",
	"type": "String[1]"
	}
	}
	}
	#!/bin/bash

	if [ $# -ne 1 ] ; then
	prog=`basename $0`
	echo "usage: $prog <crl file>"
	exit 2
	fi

	type_header='Content-Type: text/plain'
	cert="$(puppet config print hostcert)"
	#!/bin/bash

	BASEDIR="/root/ca"
	ROOTCA="${BASEDIR}/root_ca"
	PUPPETCA="${BASEDIR}/puppet"

	mkdir -p "${ROOTCA}"
	mkdir -p "${PUPPETCA}"

	# setup the root ca
	#
	# OpenSSL example configuration file.
	# This is mostly being used for generation of certificate requests.
	#

	# This definition stops the following lines choking if HOME isn't
	# defined.
	HOME = .
	RANDFILE = $ENV::HOME/.rnd
	oid_section = new_oids
	---
	Gemfile:
	optional:
	':development':
	- gem: 'github_changelog_generator'
	git: 'https://github.com/skywinder/github-changelog-generator'
	ref: '20ee04ba1234e9e83eb2ffb5056e23d641c7a018'
	condition: "Gem::Version.new(RUBY_VERSION.dup) >= Gem::Version.new('2.2.2')"
	- gem: 'puppet_litmus'
	git: 'https://github.com/puppetlabs/puppet_litmus.git'