From ccc106dca33bed783f5f4dab86c0f495eecb281d Mon Sep 17 00:00:00 2001
From: Alex Vandiver <alexmv@zulip.com>
Date: Tue, 6 Feb 2024 13:46:36 -0500
Subject: [PATCH] puppet: Add redis host to ~redistunnel/.ssh/known_hosts.

---
 puppet/zulip_ops/manifests/app_frontend.pp | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/puppet/zulip_ops/manifests/app_frontend.pp b/puppet/zulip_ops/manifests/app_frontend.pp
index 42b250b4de..70b5fa85e5 100644
--- a/puppet/zulip_ops/manifests/app_frontend.pp
+++ b/puppet/zulip_ops/manifests/app_frontend.pp
@@ -11,6 +11,7 @@ class zulip_ops::app_frontend {
   zulip_ops::firewall_allow{ 'http': }
   zulip_ops::firewall_allow{ 'https': }
 
+  $redis_hostname = zulipconf('redis', 'hostname', undef)
   group { 'redistunnel':
     ensure => present,
     gid    => '1080',
@@ -25,13 +26,16 @@ class zulip_ops::app_frontend {
     managehome => true,
   }
   zulip_ops::user_dotfiles { 'redistunnel':
-    keys => true,
+    keys        => true,
+    known_hosts => [$redis_hostname],
   }
   package { 'autossh': ensure => installed }
-  $redis_hostname = zulipconf('redis', 'hostname', undef)
   file { "${zulip::common::supervisor_conf_dir}/redis_tunnel.conf":
     ensure  => file,
-    require => Package['supervisor', 'autossh'],
+    require => [
+      Package['supervisor', 'autossh'],
+      Zulip_Ops::User_Dotfiles['redistunnel'],
+    ],
     owner   => 'root',
     group   => 'root',
     mode    => '0644',