Skip to content

Instantly share code, notes, and snippets.

@ferventcoder

ferventcoder/acllockdown.pp

Last active August 29, 2015 14:06
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save ferventcoder/b1ea0add34b188c065a0 to your computer and use it in GitHub Desktop.
Save ferventcoder/b1ea0add34b188c065a0 to your computer and use it in GitHub Desktop.
Download ZIP
Locking down a folder for IIS
Raw
acllockdown.pp
acl { "${chocolatey_server_location}":
purge => true,
inherit_parent_permissions => false,
permissions => [
{ identity => 'Administrators', rights => ['full'] },
{ identity => 'IIS_IUSRS', rights => ['read'] },
{ identity => 'IUSR', rights => ['read'] },
{ identity => "IIS APPPOOL\\${chocolatey_server_app_pool_name}", rights => ['read'] }
],
} ->
acl { "${chocolatey_server_location}/App_Data":
permissions => [
{ identity => "IIS APPPOOL\\${chocolatey_server_app_pool_name}", rights => ['modify'] },
{ identity => 'IIS_IUSRS', rights => ['modify'] }
],
}
Raw
zstuff.pp
# add windows features
windowsfeature { 'Web-WebServer':
installmanagementtools => true,
#installsubfeatures => true,
} ->
windowsfeature { 'Web-Asp-Net45':
} ->
# remove default web site
iis::manage_site {'Default Web Site':
ensure => absent,
site_path => 'any',
app_pool => 'DefaultAppPool'
} ->
# application in iis
iis::manage_app_pool { "${chocolatey_server_app_pool_name}":
enable_32_bit => true,
managed_runtime_version => 'v4.0',
} ->
iis::manage_site {'chocolatey.server':
site_path => $chocolatey_server_location,
port => '80',
ip_address => '*',
app_pool => "${chocolatey_server_app_pool_name}",
} ->
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment