taskd: Copy instead of ACL

Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
author: Johannes Löthberg <johannes@kyriasis.com> 2019-01-02 21:00:58 +0100
committer: Johannes Löthberg <johannes@kyriasis.com> 2019-01-02 21:00:58 +0100
commit: a55fff8951f61a6d9af225535273f784ff502f4a (patch)
tree: df1a93f911afdaf2d70d678711613af2e947e610
parent: b297f8658a27036032aee28b74c41d99105ba8af (diff)
download: file-a55fff8951f61a6d9af225535273f784ff502f4a.tar.xz
1 files changed, 13 insertions, 9 deletions
diff --git a/theos/certs/taskd_kyriasis_com.sls b/theos/certs/taskd_kyriasis_com.sls
index 4924a3d..d4aa2b4 100644
--- a/theos/certs/taskd_kyriasis_com.sls
+++ b/theos/certs/taskd_kyriasis_com.sls
@@ -5,14 +5,18 @@ taskd.kyriasis.com:
     - keysize: 4096
     - renew: 30
 
-taskd-access-taskd-cert:
-  acl.present:
-    - name: /etc/letsencrypt/archive/taskd.kyriasis.com/
-    - acl_type: default:user
-    - acl_name: taskd
-    - perms: r-x
-    - recurse: True
-    - require_in:
-      - acme: taskd.kyriasis.com
+/var/lib/taskd/server.cert.pem:
+  file.managed:
+    - source: /etc/letsencrypt/live/matrix.kyriasis.com/fullchain.pem
+    - user: synapse
+    - group: synapse
+    - mode: 600
+
+/var/lib/taskd/server.key.pem:
+  file.managed:
+    - source: /etc/letsencrypt/live/matrix.kyriasis.com/privkey.pem
+    - user: synapse
+    - group: synapse
+    - mode: 600
 
 # vim: set ft=yaml et:
author	Johannes Löthberg <johannes@kyriasis.com>	2019-01-02 21:00:58 +0100
committer	Johannes Löthberg <johannes@kyriasis.com>	2019-01-02 21:00:58 +0100
commit	a55fff8951f61a6d9af225535273f784ff502f4a (patch)
tree	df1a93f911afdaf2d70d678711613af2e947e610
parent	b297f8658a27036032aee28b74c41d99105ba8af (diff)
download	file-a55fff8951f61a6d9af225535273f784ff502f4a.tar.xz