From f5709b26910ea07dad4ae62c3d3cfe45290ff462 Mon Sep 17 00:00:00 2001
From: Andreas Gerstenberg <gerstenberg@pixelpark.com>
Date: Tue, 20 Feb 2018 15:46:41 +0100
Subject: [PATCH] spk-blog Webclient config

---
 .../dev-sparkasseblog01.sparkasse.local.yaml  | 42 ++++++++++++++++++-
 .../insideforum-spk-de.pixelpark.net.yaml     |  1 -
 2 files changed, 41 insertions(+), 2 deletions(-)

diff --git a/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml b/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml
index 3f2add6d..b37a96db 100644
--- a/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml
+++ b/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml
@@ -24,6 +24,7 @@ sudo::configs:
 infra::additional_classes:
   - infra::profile::wordpress
   - apache::mod::headers
+  - infra::profile::cron
 
 repo::remi_php70: true
 
@@ -85,4 +86,43 @@ infra::profile::wordpress::projects:
         require:
           - local
     setenvif:
-      - "HTTPS on HTTPS=on"
\ No newline at end of file
+      - "HTTPS on HTTPS=on"
+
+
+
+infra::profile::cron::cronjobs:
+  fetch_d-trust_crl:
+    ensure: 'present'
+    user: root
+    command: '/bin/wget -q --output-document=/etc/pki/tls/certs/d-trust.crl http://crl.d-trust.net/crl/d-trust_ca_2-1_2015.crl'
+    minute: '0'
+    hour: '5'
+    description: Die Revocationlist von D-Trust runterladen
+  fetch_commodo_crl:
+    ensure: 'present'
+    user: root
+    command: 'wget -q --output-document=/etc/pki/tls/certs/commodo.der.crl http://crl.comodoca.com/COMODORSACertificationAuthority.crl'
+    minute: '0'
+    hour: '5'
+    description: Die Revocationlist von Commodo runterladen
+  convert_commodo_crl:
+    ensure: 'present'
+    user: root
+    command: 'openssl crl -inform der -in /etc/pki/tls/certs/commodo.der.crl -out /etc/pki/tls/certs/commodo.crl'
+    minute: '1'
+    hour: '5'
+    description: Convert Revocationlist von Commodo von DER ins PEM Format
+  merge_crls:
+    ensure: 'present'
+    user: root
+    command: 'cat /etc/pki/tls/certs/d-trust.crl /etc/pki/tls/certs/commodo.crl > /etc/pki/tls/certs/spk-cacrl.pem'
+    minute: '3'
+    hour: '5'
+    description: Merge der Revocationlists
+  reload_webserver:
+    ensure: 'present'
+    user: root
+    command: 'systemctl reload httpd'
+    minute: '5'
+    hour: '5'
+    description: Merge der Revocationlists
\ No newline at end of file
diff --git a/customer/spk-blog/insideforum-spk-de.pixelpark.net.yaml b/customer/spk-blog/insideforum-spk-de.pixelpark.net.yaml
index db91ba1e..15eb0024 100644
--- a/customer/spk-blog/insideforum-spk-de.pixelpark.net.yaml
+++ b/customer/spk-blog/insideforum-spk-de.pixelpark.net.yaml
@@ -73,7 +73,6 @@ infra::profile::apache::pp_vhosts:
         auth_require: 'valid-user'
         require:
           - local
-    directories_ssl:
       - provider: location
         path: '/protected'
         require:
-- 
2.39.5