[patch] Allow all signers to read the key to upload signed rpms
Mike McGrath
mmcgrath at redhat.com
Thu Aug 5 17:47:54 UTC 2010
+1 (assuming your kmail mangled he patch a bit ;-P)
-Mike
On Thu, 5 Aug 2010, Dennis Gilmore wrote:
> diff --git a/manifests/services/pkgsigner.pp
> b/manifests/services/pkgsigner.pp
> index 11af55c..4449934 100644
> ---
> a/manifests/services/pkgsigner.pp
> +++ b/manifests/services/pkgsigner.pp
> @@
> -17,7 +17,7 @@ class pkgsigner {
>
> folder { "/etc/pki/pkgsigner/":
>
> owner => 'root',
> - group => 'jkeating',
> + group =>
> 'signers',
> mode => '0750',
> source => "blank/"
> }
> @@
> -25,7 +25,7 @@ class pkgsigner {
> cert {
> '/etc/pki/pkgsigner/pkgsigner.pem':
> source =>
> 'secure/pkgsigner_key_and_cert.pem',
> owner => 'root',
> -
> group => 'jkeating',
> + group => 'signers',
> mode => '440'
>
> }
>
> @@ -45,7 +45,7 @@ class epel-pkgsigner {
>
> folder {
> "/etc/pki/pkgsigner/":
> owner => 'root',
> - group =>
> 'jkeating',
> + group => 'signers',
> mode => '0750',
>
> source => "blank/"
> }
> @@ -53,7 +53,7 @@ class epel-pkgsigner {
> cert
> { '/etc/pki/pkgsigner/pkgsigner.pem':
> source =>
> 'secure/pkgsigner_key_and_cert.pem',
> owner => 'root',
> -
> group => 'jkeating',
> + group => 'signers',
> mode => '440'
>
> }
>
>
>
More information about the infrastructure
mailing list