From 18063c41daf42cb226528f8a60b0cb85c951c569 Mon Sep 17 00:00:00 2001
From: Clark Boylan <clark.boylan@gmail.com>
Date: Thu, 4 Apr 2019 16:12:03 -0700
Subject: [PATCH] Run ssl-cert-check out of git source

Pull the git source for the ssl-cert-check tool so that we get new
features like support for SNI. We keep installing the distro package as
well to pull in any deps we need like the openssl cli toolchain.

Use the source luke.

Change-Id: Id08e2f67062eb4faeb9303d05d8a8c58f9f36838
---
 manifests/init.pp | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/manifests/init.pp b/manifests/init.pp
index 239a7a0..896292a 100644
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -5,6 +5,7 @@ class ssl_cert_check(
   $email = 'root',
   $days = '30',
 ) {
+  # Hacky way of ensuring we have the dependencies for the script installed
   package { 'ssl-cert-check':
     ensure => present,
   }
@@ -30,9 +31,18 @@ class ssl_cert_check(
     require    => Group['certcheck'],
   }
 
+  # Pull the script straight from github so that we get support for things
+  # like SNI.
+  vcsrepo { '/opt/ssl-cert-check':
+    ensure   => latest,
+    provider => git,
+    revision => 'master',
+    source   => 'https://github.com/Matty9191/ssl-cert-check',
+  }
+
   cron { 'check ssl certificates':
     user    => 'certcheck',
-    command => "ssl-cert-check -a -q -f ${domainlist_file} -x ${days} -e ${email}",
+    command => "/opt/ssl-cert-check/ssl-cert-check -a -q -f ${domainlist_file} -x ${days} -e ${email}",
     hour    => '12',
     minute  => '04',
   }