#
include_recipe "git"
-include_recipe "apache"
+include_recipe "apache::ssl"
passwords = data_bag_item("dns", "passwords")
directory "/srv/dns.openstreetmap.org" do
owner "root"
group "root"
- mode 0755
+ mode 0o755
end
remote_directory "/srv/dns.openstreetmap.org/html" do
source "html"
owner "root"
group "root"
- mode 0755
+ mode 0o755
files_owner "root"
files_group "root"
- files_mode 0644
+ files_mode 0o644
end
zones = []
source "zone.html.erb"
owner "root"
group "root"
- mode 0644
+ mode 0o644
variables :zone => zone
end
source "index.html.erb"
owner "root"
group "root"
- mode 0644
+ mode 0o644
variables :zones => zones
end
+ssl_certificate "dns.openstreetmap.org" do
+ domains "dns.openstreetmap.org"
+ fallback_certificate "openstreetmap"
+ notifies :reload, "service[apache2]"
+end
+
apache_site "dns.openstreetmap.org" do
template "apache.erb"
directory "/srv/dns.openstreetmap.org"
source "dns-update.erb"
owner "root"
group "git"
- mode 0750
+ mode 0o750
variables :passwords => passwords
end
directory "/var/lib/dns" do
owner "git"
group "git"
- mode 02775
+ mode 0o2775
notifies :run, "execute[dns-update]"
end
source "post-receive"
owner "git"
group "git"
- mode 0750
+ mode 0o750
end
template "/usr/local/bin/dns-check" do
source "dns-check.erb"
owner "root"
group "git"
- mode 0750
+ mode 0o750
variables :passwords => passwords
end
source "cron.erb"
owner "root"
group "root"
- mode 0644
+ mode 0o644
end