X-Git-Url: https://git.openstreetmap.org/chef.git/blobdiff_plain/77cd975164d60c089b6a42b2e9bd128c0e037025..2d365e288323ccd05ac440a631185885d6bddc98:/cookbooks/ssl/resources/certificate.rb

diff --git a/cookbooks/ssl/resources/certificate.rb b/cookbooks/ssl/resources/certificate.rb
index 92dbcc323..fc94d39de 100644
--- a/cookbooks/ssl/resources/certificate.rb
+++ b/cookbooks/ssl/resources/certificate.rb
@@ -20,12 +20,12 @@
 default_action :create
 
 property :name, String
-property :domains, Array, :required => true
+property :domains, [String, Array], :required => true
 property :fallback_certificate, String
 
 action :create do
   node.default[:letsencrypt][:certificates][name] = {
-    :domains => domains
+    :domains => Array(domains)
   }
 
   if letsencrypt
@@ -40,6 +40,8 @@ action :create do
       mode 0o444
       content certificate
       backup false
+      manage_symlink_source false
+      force_unlink true
     end
 
     file "/etc/ssl/private/#{name}.key" do
@@ -48,6 +50,8 @@ action :create do
       mode 0o440
       content key
       backup false
+      manage_symlink_source false
+      force_unlink true
     end
   elsif fallback_certificate
     link "/etc/ssl/certs/#{name}.pem" do
@@ -64,7 +68,7 @@ action :create do
       owner "root"
       group "root"
       mode 0o644
-      variables :domains => new_resource.domains
+      variables :domains => Array(new_resource.domains)
       not_if do
         ::File.exist?("/etc/ssl/certs/#{new_resource.name}.pem") && ::File.exist?("/etc/ssl/private/#{new_resource.name}.key")
       end