connector and proxy puppet manifest updates

2017-10-27 14:08:12 +02:00 · 2017-10-27 14:08:12 +02:00 · 099900cc6f
commit 099900cc6f
parent a1cc4b7510
1 changed files with 18 additions and 5 deletions
--- a/global/overlay/etc/puppet/manifests/cosmos-site.pp
+++ b/global/overlay/etc/puppet/manifests/cosmos-site.pp
@ -201,14 +201,27 @@ class eidas_connector($hostname) {
   file {['/etc/eidas-connector','/var/log/eidas-connector']: ensure => directory } ->
   sunet::docker_run {'eidas_connector':
      image    => 'docker.sunet.se/eidas-connector',
-      tag      => '1.0.0',
+      tag      => '1.0.1',
      ports    => ['443:8443'],
      volumes  => ['/var/log/eidas-connector:/var/log/eidas-connector',
                   '/etc/eidas-connector:/etc/eidas-connector'],
-      env      => ["IDP_LOG_CONSOLE=true",
-                   "IDP_SERVER_HOSTNAME=$hostname",
-                   "IDP_ENTITY_ID=https://$hostname/idp",
-                   "SP_ENTITY_ID=https://$hostname/connector-sp"]
+      env      => ["IDP_SERVER_HOSTNAME=$hostname"]
+   }
+}
+
+class eidas_proxy($hostname,$country) {
+   file {['/etc/eidas-proxy/',"/etc/eidas-proxy/$country"]: ensure => directory } ->
+   sunet::snippets::secret_file {
+      hiera_key => 'eidas_proxy_keystore',
+      path      => "/etc/eidas-proxy/$country/nodeKeyStore.jks",
+   } ->
+   sunet::docker_run {'eidas_proxy':
+      image    => 'docker.sunet.se/eidas-proxy',
+      tag      => '1.0.1',
+      ports    => ['443:8443'],
+      volumes  => ['/var/log/eidas-proxy:/var/log/eidas-proxy',
+                   '/etc/eidas-proxy:/etc/eidas-proxy'],
+      env      => ["PROXY_SERVICE_CONFIG_ROOT=/etc/eidas-proxy/$country","PROXY_SERVICE_HOSTNAME=$hostname"]
   }
 }