Enhanced ensurable selectors

diff --git a/manifests/cert.pp b/manifests/cert.pp
index f9d916d717f30a6fb07bcf75f2a5e263bd1c38c1..3d6498f35175dd08d069cae13d664e776cd234c4 100644 (file)
--- a/manifests/cert.pp
+++ b/manifests/cert.pp
@@ -14,7 +14,10 @@ define ssl::cert(
     owner   => $owner,
     group   => $group,
     mode    => $pubmode,
-    source  => "puppet:///ssl/${name}.crt",
+    source  => $ensure ? {
+      'present' => "puppet:///ssl/${name}.crt",
+      default   => undef,
+    },
     require => File["${base}/certs"],
   }
 
@@ -25,7 +28,10 @@ define ssl::cert(
       group   => $group,
       mode    => $privmode,
       backup  => false, # Do not backup the private key
-      source  => "puppet:///ssl/${name}.pem",
+      source  => $ensure ? {
+        'present' => "puppet:///ssl/${name}.pem",
+        default   => undef,
+      },
       require => File["${base}/private"],
     }
   }
@@ -40,10 +46,15 @@ define ssl::cert(
     }
   }
 
-  if ($verify == true) {
-    ssl::check { "${name}":
-      file => true,
-      base => $base,
-    }
+  ssl::check { "${name}":
+    file   => true,
+    base   => $base,
+    ensure => $ensure ? {
+      present => $verify ? {
+        true    => present,
+        default => absent,
+      },
+      default => absent,
+    },
   }
 }