diff options
| author | varac <varacanero@zeromail.org> | 2013-06-14 20:31:22 +0200 |
|---|---|---|
| committer | varac <varacanero@zeromail.org> | 2013-06-14 20:31:22 +0200 |
| commit | a4b8195e7a5d444448b3750d66ec725d6f7c67ab (patch) | |
| tree | c6c00ece73c7ddb9813869e2b10b6a862e26c035 /manifests | |
| parent | 8a54ee6ff08c7b498e8da8f5e8ca6827c4d0ff58 (diff) | |
| parent | a336f39c441b7b3706278332cc63782d2de0e299 (diff) | |
Merge remote-tracking branch 'leap/feature/refresh_stunnels'
Diffstat (limited to 'manifests')
| -rw-r--r-- | manifests/init.pp | 34 | ||||
| -rw-r--r-- | manifests/service.pp | 19 |
2 files changed, 45 insertions, 8 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index a176bf8..89788ed 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -29,4 +29,38 @@ class stunnel ( centos: { class { 'stunnel::centos': } } default: { class { 'stunnel::default': } } } + + $stunnel_staging = "${::puppet_vardir}/stunnel4" + $stunnel_compdir = "${stunnel_staging}/configs" + + file { + [ $stunnel_staging, "${stunnel_staging}/bin" ]: + ensure => directory, + owner => 0, + group => 0, + mode => '0750'; + + "${stunnel_staging}/configs": + ensure => directory, + owner => 0, + group => 0, + mode => '0750', + recurse => true, + purge => true, + force => true, + source => undef; + + "${stunnel_staging}/bin/refresh_stunnel.sh": + owner => 0, + group => 0, + mode => '0755', + content => template('stunnel/refresh_stunnel.sh.erb'); + } + + exec { 'refresh_stunnel': + refreshonly => true, + require => File[$stunnel_compdir], + subscribe => File[$stunnel_compdir], + command => "${stunnel_staging}/bin/refresh_stunnel.sh" + } } diff --git a/manifests/service.pp b/manifests/service.pp index fd64f9b..666826d 100644 --- a/manifests/service.pp +++ b/manifests/service.pp @@ -58,14 +58,17 @@ define stunnel::service ( $real_client = $client ? { default => 'yes' } $real_pid = $pid ? { false => "/${name}.pid", default => $pid } - file { "/etc/stunnel/${name}.conf": - ensure => $ensure, - content => template('stunnel/service.conf.erb'), - require => File['/etc/stunnel'], - notify => Service[stunnel], - owner => root, - group => 0, - mode => '0600'; + $stunnel_compdir = "${::puppet_vardir}/stunnel4/configs" + + file { + "${stunnel_compdir}/${name}.conf": + ensure => $ensure, + content => template('stunnel/service.conf.erb'), + require => Package['stunnel'], + notify => Exec['refresh_stunnel'], + owner => root, + group => 0, + mode => '0600'; } if $use_nagios { |