persist ha slot and make it available to hsmproxy

eidas-connector-common/overlay/etc/Chrystoki.conf.d/50-ha-slot.conf

@@ -0,0 +1,8 @@
+VirtualToken = {
+   VirtualToken00Label = sc_ha;
+   VirtualToken00SN = 1462371088;
+   VirtualToken00Members = 462371088,462344047;
+}
+HASynchronize = {
+   sc_ha = 1;
+}

eumd-common/overlay/etc/Chrystoki.conf.d/50-ha-slot.conf

@@ -0,0 +1,8 @@
+VirtualToken = {
+   VirtualToken00Label = sc_ha;
+   VirtualToken00SN = 1462371088;
+   VirtualToken00Members = 462371088,462344047;
+}
+HASynchronize = {
+   sc_ha = 1;
+}

global/overlay/etc/puppet/manifests/cosmos-site.pp

@@ -147,13 +147,13 @@ class eidas_metadata_key {
 
 class eidas_hsm_client($luna_version="6.2") {
    $pkcs11pin = hiera('pkcs11pin',"")
-   sunet::snippets::reinstall::keep {'/etc/luna': } ->
+   sunet::snippets::reinstall::keep {['/etc/luna','/etc/Chrystoki.conf.d']: } ->
    file {['/etc/luna','/etc/luna/cert']: ensure => directory } ->
    sunet::docker_run {"${name}_hsmproxy":
       hostname => "${::fqdn}",
       image    => 'docker.sunet.se/luna-client',
       imagetag => $luna_version,
-      volumes  => ['/dev/log:/dev/log','/etc/luna/cert:/usr/safenet/lunaclient/cert'],
+      volumes  => ['/dev/log:/dev/log','/etc/Chrystoki.conf.d:/etc/Chrystoki.conf.d','/etc/luna/cert:/usr/safenet/lunaclient/cert'],
       env      => ["PKCS11PIN=${pkcs11pin}"]
    }
 }

natmd-common/overlay/etc/Chrystoki.conf.d/50-ha-slot.conf

@@ -0,0 +1,8 @@
+VirtualToken = {
+   VirtualToken00Label = sc_ha;
+   VirtualToken00SN = 1462371088;
+   VirtualToken00Members = 462371088,462344047;
+}
+HASynchronize = {
+   sc_ha = 1;
+}