6 $key_server = 'keyserver.ubuntu.com',
22 # This is a hash of the parts of the key definition that we care about.
23 # It is used as a unique identifier for this instance of apt::key. It gets
24 # hashed to ensure that the resource name doesn't end up being pages and
25 # pages (e.g. in the situation where key_content is specified).
26 $digest = sha1("${upkey}/${key_content}/${key_source}/${key_server}/")
28 # Allow multiple ensure => present for the same key to account for many
29 # apt::source resources that all reference the same key.
33 anchor { "apt::key/${title}": }
35 if defined(Exec["apt::key ${upkey} absent"]) {
36 fail("Cannot ensure Apt::Key[${upkey}] present; ${upkey} already ensured absent")
39 if !defined(Anchor["apt::key ${upkey} present"]) {
40 anchor { "apt::key ${upkey} present": }
44 $options_string = "--keyserver-options ${key_options}"
50 if !defined(Exec[$digest]) {
51 $digest_command = $method ? {
52 'content' => "echo '${key_content}' | /usr/bin/apt-key add -",
53 'source' => "wget -q '${key_source}' -O- | apt-key add -",
54 'server' => "apt-key adv --keyserver '${key_server}' ${options_string} --recv-keys '${upkey}'",
57 command => $digest_command,
58 path => '/bin:/usr/bin',
59 unless => "/usr/bin/apt-key list | /bin/grep '${upkey}'",
60 logoutput => 'on_failure',
61 before => Anchor["apt::key ${upkey} present"],
65 Anchor["apt::key ${upkey} present"] -> Anchor["apt::key/${title}"]
70 if defined(Anchor["apt::key ${upkey} present"]) {
71 fail("Cannot ensure Apt::Key[${upkey}] absent; ${upkey} already ensured present")
74 exec { "apt::key ${upkey} absent":
75 command => "apt-key del '${upkey}'",
76 path => '/bin:/usr/bin',
77 onlyif => "apt-key list | grep '${upkey}'",
80 logoutput => 'on_failure',
85 fail "Invalid 'ensure' value '${ensure}' for aptkey"