Add an optional "content" parameter to the freeradius::cert resource.

This allows the user to pass in raw content rather than just a direct file resource. Great for use cases where people don't store private keys in raw files in their repo, but use some alternative method to get them.

Add an optional "content" parameter to the freeradius::cert resource.
a0238312 · Matt Wise · 54ab1a35 · a0238312 · a0238312
Commit a0238312 authored 10 years ago by Matt Wise
--- a/README.md
+++ b/README.md
@@ -148,6 +148,13 @@ freeradius::cert { 'mycert.pem':
 }
 ```

+```puppet
+freeradius::cert { 'mycert.pem':
+  content => '<your key/cert content here>',
+  type    => 'key',
+}
+```
+
 ##### `type`

 Set file permissions on the installed certificate differently depending on whether this is a private key or a public certificate. Note that the default is to treat the file as a private key and remove world-readable privileges. Allowable values: `cert`, `key`. Default: `key`.

--- a/manifests/cert.pp
+++ b/manifests/cert.pp
 # Install FreeRADIUS certificates
 define freeradius::cert (
-  $source,
+  $source = undef,
+  $content = undef,
  $type = 'key',
  $ensure = present,
 ) {
@@ -21,6 +22,7 @@ define freeradius::cert (
    owner    => 'root',
    group    => $fr_group,
    source   => $source,
+    content  => $content,
    require  => [File["${fr_basepath}/certs"], Package[$fr_package], Group[$fr_group]],
    notify   => Service[$fr_service],
  }