Changed ssh::known_hosts to use use exported resources

2011-06-08 14:21:50 +03:00 · 2011-06-08 14:21:50 +03:00 · 8562ddec5b
commit 8562ddec5b
parent b70e9c2674
2 changed files with 15 additions and 79 deletions
--- a/ssh/manifests/init.pp
+++ b/ssh/manifests/init.pp
@ -1,25 +1,27 @@
-
-# Class: ssh::known_hosts
-#
-# Install global ssh_known_hosts file generated from LDAP directory.
-#
-# === Depencies:
-#
-# Template file generation requires Ruby LDAP bindings[http://ruby-ldap.sourceforge.net/] on puppet server.
+# Export and collect public host keys.
 #
 class ssh::known_hosts {

    file { "/etc/ssh/ssh_known_hosts":
-        ensure  => present,
-        content => template("ssh/ssh_known_hosts.erb"),
-        mode    => 0644,
-        owner   => root,
-        group   => $operatingsystem ? {
+        ensure => present,
+        mode   => 0644,
+        owner  => root,
+        group  => $operatingsystem ? {
            OpenBSD => wheel,
            default => root,
        },
    }

+    @@sshkey { "${homename}":
+        ensure       => present,
+        type         => rsa,
+        key          => "${sshrsakey}",
+        host_aliases => inline_template("<%= homename.split('.')[0] %>"),
+        require      => File["/etc/ssh/ssh_known_hosts"],
+    }
+
+    Sshkey <<| |>>
+
 }