Commit 844dc89c authored by Scotty Logan's avatar Scotty Logan
Browse files

added setting for _shibd group

parent 68832132
# data/Debian.yaml
# generic defaults for Debian-based systems
---
shib_sp::shibd_group: _shibd
shib_sp::httpd_group: www-data
......@@ -2,6 +2,7 @@
# common defaults
---
shib_sp::shib_dir: /etc/shibboleth
shib_sp::shibd_group:
shib_sp::apache_service_enable: true
shib_sp::apache_service_ensure: false
shib_sp::httpd_group:
......
......@@ -16,6 +16,7 @@ class shib_sp (
$apache_service_enable,
$apache_service_ensure,
$shib_dir,
$shibd_group,
$httpd_group,
$entity_id,
$support_email,
......@@ -91,6 +92,20 @@ class shib_sp (
}
## empty files for bind mounts
file {
[
"${shib_dir}/sp-cert.pem",
"${shib_dir}/sp-key.pem",
]:
ensure => file,
owner => 0,
group => $shibd_group,
mode => '0640',
require => Class['apache::mod::shib'],
}
file { '/etc/apache2/conf.d/platform_env.conf':
ensure => file,
owner => '0',
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment