Run ssl-cert-check out of git source

Pull the git source for the ssl-cert-check tool so that we get new features like support for SNI. We keep installing the distro package as well to pull in any deps we need like the openssl cli toolchain. Use the source luke. Change-Id: Id08e2f67062eb4faeb9303d05d8a8c58f9f36838
2019-04-04 16:12:03 -07:00 · 2019-04-04 16:12:03 -07:00 · 18063c41da
parent e1c7fa7d5f
commit 18063c41da
1 changed files with 11 additions and 1 deletions
--- a/manifests/init.pp
+++ b/manifests/init.pp
@ -5,6 +5,7 @@ class ssl_cert_check(
  $email = 'root',
  $days = '30',
 ) {
+  # Hacky way of ensuring we have the dependencies for the script installed
  package { 'ssl-cert-check':
    ensure => present,
  }
@ -30,9 +31,18 @@ class ssl_cert_check(
    require    => Group['certcheck'],
  }

+  # Pull the script straight from github so that we get support for things
+  # like SNI.
+  vcsrepo { '/opt/ssl-cert-check':
+    ensure   => latest,
+    provider => git,
+    revision => 'master',
+    source   => 'https://github.com/Matty9191/ssl-cert-check',
+  }
+
  cron { 'check ssl certificates':
    user    => 'certcheck',
-    command => "ssl-cert-check -a -q -f ${domainlist_file} -x ${days} -e ${email}",
+    command => "/opt/ssl-cert-check/ssl-cert-check -a -q -f ${domainlist_file} -x ${days} -e ${email}",
    hour    => '12',
    minute  => '04',
  }