modularize and standardize site_sshd:

 . move the setting of the xterm title to site_config::shell

 . change the xterm file resource to use standard source lines, switch to single
 quotes, quote mode, and line up parameters

 . move the mosh pieces into a site_ssh::mosh class and only include it if the
 right mosh variable is enabled, passing into the class the necessary hiera parameters

 . lint the site_ssh::mosh resources

 . change the authorized_keys class to accept the key parameter which is passed
 in from the main ssh class (but allow for out of scope variable lookup when the
 tag is passed)

Change-Id: Ieec5a3932de9bad1b98633032b28f88e91e46604

1 files changed, 21 insertions, 0 deletions

diff --git a/puppet/modules/site_sshd/manifests/mosh.pp b/puppet/modules/site_sshd/manifests/mosh.pp
new file mode 100644
index 00000000..49f56ca0
--- /dev/null
+++ b/puppet/modules/site_sshd/manifests/mosh.pp
@@ -0,0 +1,21 @@
+class site_sshd::mosh ( $ensure = present, $ports = '60000-61000' ) {
+
+  package { 'mosh':
+    ensure => $ensure
+  }
+
+  file { '/etc/shorewall/macro.mosh':
+    ensure  => $ensure,
+    content => "PARAM   -       -       udp    ${ports}",
+    notify  => Service['shorewall'],
+    require => Package['shorewall'];
+  }
+
+  shorewall::rule { 'net2fw-mosh':
+    ensure      => $ensure,
+    source      => 'net',
+    destination => '$FW',
+    action      => 'mosh(ACCEPT)',
+    order       => 200;
+  }
+}