From 5dda12ec7a2e2177b2b5861a350907736a13828b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?F=C3=A9lix-Antoine=20Fortin?=
 <felix-antoine.fortin@calculquebec.ca>
Date: Fri, 13 Dec 2024 13:48:16 -0500
Subject: [PATCH] Add requirement on firewall rules in freeipa

---
 site/profile/manifests/freeipa.pp | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/site/profile/manifests/freeipa.pp b/site/profile/manifests/freeipa.pp
index 8f5042519..18228e6db 100644
--- a/site/profile/manifests/freeipa.pp
+++ b/site/profile/manifests/freeipa.pp
@@ -200,6 +200,7 @@
   include nftables::rules::dns
   include nftables::rules::https
   include nftables::rules::ldap
+  include nftables::rules::ssdp
 
   file { 'kinit_wrapper':
     path   => '/usr/bin/kinit_wrapper',
@@ -272,6 +273,10 @@
     require => [
       Package['ipa-server-dns'],
       File['/etc/hosts'],
+      Class['nftables::rules::dns'],
+      Class['nftables::rules::https'],
+      Class['nftables::rules::ldap'],
+      Class['nftables::rules::ssdp'],
     ],
     notify  => [
       Service['systemd-logind'],