From e02160a311f2c740bf54e74cd897e6435c9b26cc Mon Sep 17 00:00:00 2001
From: Patrik Lundin <patlu@sunet.se>
Date: Mon, 7 Oct 2024 08:35:00 +0200
Subject: [PATCH] Initial cdn::ca class

---
 global/overlay/etc/puppet/cosmos-rules.yaml   |  1 +
 .../etc/puppet/modules/cdn/manifests/ca.pp    | 19 +++++++++++++++++++
 2 files changed, 20 insertions(+)
 create mode 100644 global/overlay/etc/puppet/modules/cdn/manifests/ca.pp

diff --git a/global/overlay/etc/puppet/cosmos-rules.yaml b/global/overlay/etc/puppet/cosmos-rules.yaml
index 7276d0a..b308035 100644
--- a/global/overlay/etc/puppet/cosmos-rules.yaml
+++ b/global/overlay/etc/puppet/cosmos-rules.yaml
@@ -32,3 +32,4 @@
 
 '^internal-.+-test-ca-[0-9]+\.cdn\.sunet\.se$':
   sunet::dockerhost2:
+  cdn::ca:
diff --git a/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp b/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp
new file mode 100644
index 0000000..541f0d0
--- /dev/null
+++ b/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp
@@ -0,0 +1,19 @@
+# Configure a SUNET CDN CA server
+class cdn::ca(
+)
+{
+
+  sunet::nftables::docker_expose { 'expose step-ca' :
+    allow_clients => 'any',
+    port          => 9000,
+    iif           => $facts['networking']['primary'],
+  }
+
+#  sunet::docker_compose { 'sunet-cdn-ca':
+#    content          => template('cdn/ca/docker-compose.yml.erb'),
+#    service_name     => 'cdn-l4lb',
+#    compose_dir      => '/opt/sunet-cdn/compose',
+#    compose_filename => 'docker-compose.yml',
+#    description      => 'SUNET CDN CA',
+#  }
+}