Skip to content
Snippets Groups Projects
Massimiliano Adamo's avatar
9db876eb
History
Name Last commit Last update
.vscode
files
lib/facter
manifests
templates
README.md

Class: geant_acme::server

server side

the server configuration is defined in hiera as following:

certificates_hash:
  cert_1.geant.org:
    clients:
      - 'test-nas01.geant.org'
      - 'test-jump01.geant.org'
    verbose: 'yes'
  cert_2.geant.org:
    multi_domain:
      - cert_3.geant.org
      - cert_4.geant.org
    clients:
      - 'test-nas01.geant.org'
      - 'test-jump01.geant.org'

client side

the client runs a resource as following:

  geant_acme::client { 'postgres.geant.org':
    provider   => 'sectigo_ov',  # defaults to letsencrypt
    cert_owner => 'postgres',
    cert_group => 'postgres',
    notify     => Service['postgresql-9.6'];
  }