/manifests/file.pp - Diff - puppet nftables - Koumbit's Redmine

Révision 0b7bcb5d

Ajouté par mh il y a plus de 2 ans

Align filemode on RedHat to distro default

The RPM acutally ships the configuration and directory with
0600/0700 while this module sets the mode to 0640/0750.

However, this has the drawback that on new nftables RPM versions,
we are setting it back to the modules mode and triggering an nft
validate.

         ensure  => file,
         owner   => root,
         group   => root,
         mode    => '0640',
         mode    => $nftables::default_config_mode,
         content => $content,
         source  => $source,
       } ~> Exec['nft validate'] -> file { "/etc/nftables/puppet/${prefix}${label}.nft":
         ensure  => file,
         owner   => root,
         group   => root,
         mode    => '0640',
         mode    => $nftables::default_config_mode,
         content => $content,
         source  => $source,
       } ~> Service['nftables']

Formats disponibles : Unified diff