summaryrefslogtreecommitdiff
path: root/puppet/modules
diff options
context:
space:
mode:
authorvarac <varacanero@zeromail.org>2013-03-20 19:06:45 +0100
committerMicah Anderson <micah@riseup.net>2013-04-02 10:21:05 -0400
commitd9c9cbb7ae5fde7767ac6b2cbc25936a0045104d (patch)
tree293682aa8a7de030bac4bbe658fd60fd70512dbe /puppet/modules
parentbb0f29e2d7ae2db57257eb4d1a20616c5c834a4e (diff)
addded client side of bigcouch cluster protocol stunnel config
Diffstat (limited to 'puppet/modules')
-rw-r--r--puppet/modules/site_couchdb/manifests/stunnel.pp16
1 files changed, 16 insertions, 0 deletions
diff --git a/puppet/modules/site_couchdb/manifests/stunnel.pp b/puppet/modules/site_couchdb/manifests/stunnel.pp
index d16e09b5..2d5cbaa1 100644
--- a/puppet/modules/site_couchdb/manifests/stunnel.pp
+++ b/puppet/modules/site_couchdb/manifests/stunnel.pp
@@ -31,6 +31,8 @@ class site_couchdb::stunnel ($key, $cert, $ca) {
}
# clustering between bigcouch nodes
+
+ # server
stunnel::service { 'bigcouch':
accept => '5369',
connect => '127.0.0.1:4369',
@@ -43,5 +45,19 @@ class site_couchdb::stunnel ($key, $cert, $ca) {
rndfile => '/var/lib/stunnel4/.rnd',
debuglevel => '4'
}
+
+ # clients
+ $couchdb_stunnel_client_defaults = {
+ 'connect_port' => '5369',
+ 'client' => true,
+ 'cafile' => "${x509::variables::local_CAs}/${ca_name}.crt",
+ 'key' => "${x509::variables::keys}/${cert_name}.key",
+ 'cert' => "${x509::variables::certs}/${cert_name}.crt",
+ 'verify' => '2',
+ 'rndfile' => '/var/lib/stunnel4/.rnd',
+ 'debuglevel' => '4'
+ }
+ create_resources(site_stunnel::clients, hiera('stunnel'), $couchdb_stunnel_client_defaults)
+
}