From d9c9cbb7ae5fde7767ac6b2cbc25936a0045104d Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Wed, 20 Mar 2013 19:06:45 +0100
Subject: addded client side of bigcouch cluster protocol stunnel config

---
 puppet/modules/site_couchdb/manifests/stunnel.pp | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

(limited to 'puppet')

diff --git a/puppet/modules/site_couchdb/manifests/stunnel.pp b/puppet/modules/site_couchdb/manifests/stunnel.pp
index d16e09b5..2d5cbaa1 100644
--- a/puppet/modules/site_couchdb/manifests/stunnel.pp
+++ b/puppet/modules/site_couchdb/manifests/stunnel.pp
@@ -31,6 +31,8 @@ class site_couchdb::stunnel ($key, $cert, $ca) {
   }
 
   # clustering between bigcouch nodes
+
+  # server
   stunnel::service { 'bigcouch':
     accept     => '5369',
     connect    => '127.0.0.1:4369',
@@ -43,5 +45,19 @@ class site_couchdb::stunnel ($key, $cert, $ca) {
     rndfile    => '/var/lib/stunnel4/.rnd',
     debuglevel => '4'
   }
+
+  # clients
+  $couchdb_stunnel_client_defaults = {
+    'connect_port' => '5369',
+    'client'       => true,
+    'cafile'       => "${x509::variables::local_CAs}/${ca_name}.crt",
+    'key'          => "${x509::variables::keys}/${cert_name}.key",
+    'cert'         => "${x509::variables::certs}/${cert_name}.crt",
+    'verify'       => '2',
+    'rndfile'      => '/var/lib/stunnel4/.rnd',
+    'debuglevel'   => '4'
+  }
+  create_resources(site_stunnel::clients, hiera('stunnel'), $couchdb_stunnel_client_defaults)
+
 }
 
-- 
cgit v1.2.3