[patch] Allow all signers to read the key to upload signed rpms
Dennis Gilmore
dennis at ausil.us
Thu Aug 5 17:37:00 UTC 2010
diff --git a/manifests/services/pkgsigner.pp
b/manifests/services/pkgsigner.pp
index 11af55c..4449934 100644
---
a/manifests/services/pkgsigner.pp
+++ b/manifests/services/pkgsigner.pp
@@
-17,7 +17,7 @@ class pkgsigner {
folder { "/etc/pki/pkgsigner/":
owner => 'root',
- group => 'jkeating',
+ group =>
'signers',
mode => '0750',
source => "blank/"
}
@@
-25,7 +25,7 @@ class pkgsigner {
cert {
'/etc/pki/pkgsigner/pkgsigner.pem':
source =>
'secure/pkgsigner_key_and_cert.pem',
owner => 'root',
-
group => 'jkeating',
+ group => 'signers',
mode => '440'
}
@@ -45,7 +45,7 @@ class epel-pkgsigner {
folder {
"/etc/pki/pkgsigner/":
owner => 'root',
- group =>
'jkeating',
+ group => 'signers',
mode => '0750',
source => "blank/"
}
@@ -53,7 +53,7 @@ class epel-pkgsigner {
cert
{ '/etc/pki/pkgsigner/pkgsigner.pem':
source =>
'secure/pkgsigner_key_and_cert.pem',
owner => 'root',
-
group => 'jkeating',
+ group => 'signers',
mode => '440'
}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
Url : http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20100805/d3256531/attachment.bin
More information about the infrastructure
mailing list