Home Explore Help
Register Sign In
opuppet
/
module-nginx
6
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 83043627f5
Branches Tags
module-nginx
/
manifests
/
resource
/
streamhost.pp

streamhost.pp 6.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 
  1. # define: nginx::resource::streamhost
    2. 

  2. #
    3. 

  3. # This definition creates a virtual host
    4. 

  4. #
    5. 

  5. # Parameters:
    6. 

  6. #   [*ensure*]              - Enables or disables the specified streamhost
    7. 

  7. #     (present|absent)
    8. 

  8. #   [*listen_ip*]           - Default IP Address for NGINX to listen with this
    9. 

  9. #     streamhost on. Defaults to all interfaces (*)
    10. 

  10. #   [*listen_port*]         - Default IP Port for NGINX to listen with this
    11. 

  11. #     streamhost on. Defaults to TCP 80
    12. 

  12. #   [*listen_options*]      - Extra options for listen directive like
    13. 

  13. #     'default' to catchall. Undef by default.
    14. 

  14. #   [*location_allow*]      - Array: Locations to allow connections from.
    15. 

  15. #   [*location_deny*]       - Array: Locations to deny connections from.
    16. 

  16. #   [*ipv6_enable*]         - BOOL value to enable/disable IPv6 support
    17. 

  17. #     (false|true). Module will check to see if IPv6 support exists on your
    18. 

  18. #     system before enabling.
    19. 

  19. #   [*ipv6_listen_ip*]      - Default IPv6 Address for NGINX to listen with
    20. 

  20. #     this streamhost on. Defaults to all interfaces (::)
    21. 

  21. #   [*ipv6_listen_port*]    - Default IPv6 Port for NGINX to listen with this
    22. 

  22. #     streamhost on. Defaults to TCP 80
    23. 

  23. #   [*ipv6_listen_options*] - Extra options for listen directive like 'default'
    24. 

  24. #     to catchall. Template will allways add ipv6only=on. While issue
    25. 

  25. #     jfryman/puppet-nginx#30 is discussed, default value is 'default'.
    26. 

  26. #   [*add_header*]          - Hash: Adds headers to the HTTP response when
    27. 

  27. #     response code is equal to 200, 204, 301, 302 or 304.
    28. 

  28. #   [*index_files*]         - Default index files for NGINX to read when
    29. 

  29. #     traversing a directory
    30. 

  30. #   [*autoindex*]           - Set it on 'on' or 'off 'to activate/deactivate
    31. 

  31. #                             autoindex directory listing. Undef by default.
    32. 

  32. #   [*proxy*]               - Proxy server(s) for the root location to connect
    33. 

  33. #     to.  Accepts a single value, can be used in conjunction with
    34. 

  34. #     nginx::resource::upstream
    35. 

  35. #   [*proxy_read_timeout*]  - Override the default the proxy read timeout value
    36. 

  36. #     of 90 seconds
    37. 

  37. #   [*proxy_redirect*]      - Override the default proxy_redirect value of off.
    38. 

  38. #   [*resolver*]            - Array: Configures name servers used to resolve
    39. 

  39. #     names of upstream servers into addresses.
    40. 

  40. #   [*server_name*]         - List of streamhost names for which this streamhost will
    41. 

  41. #     respond. Default [$name].
    42. 

  42. #   [*raw_prepend*]            - A single string, or an array of strings to
    43. 

  43. #     prepend to the server directive (after cfg prepend directives). NOTE:
    44. 

  44. #     YOU are responsible for a semicolon on each line that requires one.
    45. 

  45. #   [*raw_append*]             - A single string, or an array of strings to
    46. 

  46. #     append to the server directive (after cfg append directives). NOTE:
    47. 

  47. #     YOU are responsible for a semicolon on each line that requires one.
    48. 

  48. #   [*owner*]                   - Defines owner of the .conf file
    49. 

  49. #   [*group*]                   - Defines group of the .conf file
    50. 

  50. #   [*mode*]                    - Defines mode of the .conf file
    51. 

  51. #                                 Default to return 503
    52. 

  52. # Actions:
    53. 

  53. #
    54. 

  54. # Requires:
    55. 

  55. #
    56. 

  56. # Sample Usage:
    57. 

  57. #  nginx::resource::streamhost { 'test2.local':
    58. 

  58. #    ensure   => present,
    59. 

  59. #  }
    60. 

  60. define nginx::resource::streamhost (
    61. 

  61.   $ensure                       = 'present',
    62. 

  62.   $listen_ip                    = '*',
    63. 

  63.   $listen_port                  = '80',
    64. 

  64.   $listen_options               = undef,
    65. 

  65.   $ipv6_enable                  = false,
    66. 

  66.   $ipv6_listen_ip               = '::',
    67. 

  67.   $ipv6_listen_port             = '80',
    68. 

  68.   $ipv6_listen_options          = 'default ipv6only=on',
    69. 

  69.   $proxy                        = undef,
    70. 

  70.   $proxy_read_timeout           = $::nginx::config::proxy_read_timeout,
    71. 

  71.   $proxy_connect_timeout        = $::nginx::config::proxy_connect_timeout,
    72. 

  72.   $resolver                     = [],
    73. 

  73.   $server_name                  = [$name],
    74. 

  74.   $raw_prepend                  = undef,
    75. 

  75.   $raw_append                   = undef,
    76. 

  76.   $owner                        = $::nginx::config::global_owner,
    77. 

  77.   $group                        = $::nginx::config::global_group,
    78. 

  78.   $mode                         = $::nginx::config::global_mode,
    79. 

  79. ) {
    80. 

  80. 

  81.   validate_re($ensure, '^(present|absent)$',
    82. 

  82.     "${ensure} is not supported for ensure. Allowed values are 'present' and 'absent'.")
    83. 

  83.   if !(is_array($listen_ip) or is_string($listen_ip)) {
    84. 

  84.     fail('$listen_ip must be a string or array.')
    85. 

  85.   }
    86. 

  86.   if !is_integer($listen_port) {
    87. 

  87.     fail('$listen_port must be an integer.')
    88. 

  88.   }
    89. 

  89.   if ($listen_options != undef) {
    90. 

  90.     validate_string($listen_options)
    91. 

  91.   }
    92. 

  92.   validate_bool($ipv6_enable)
    93. 

  93.   if !(is_array($ipv6_listen_ip) or is_string($ipv6_listen_ip)) {
    94. 

  94.     fail('$ipv6_listen_ip must be a string or array.')
    95. 

  95.   }
    96. 

  96.   if !is_integer($ipv6_listen_port) {
    97. 

  97.     fail('$ipv6_listen_port must be an integer.')
    98. 

  98.   }
    99. 

  99.   validate_string($ipv6_listen_options)
    100. 

  100. 

  101.   validate_string($proxy_read_timeout)
    102. 

  102. 

  103.   validate_array($resolver)
    104. 

  104.   validate_array($server_name)
    105. 

  105. 

  106.   validate_string($owner)
    107. 

  107.   validate_string($group)
    108. 

  108.   validate_re($mode, '^\d{4}$',
    109. 

  109.     "${mode} is not valid. It should be 4 digits (0644 by default).")
    110. 

  110. 

  111.   # Variables
    112. 

  112.   $streamhost_dir = "${::nginx::config::conf_dir}/streams-available"
    113. 

  113.   $streamhost_enable_dir = "${::nginx::config::conf_dir}/streams-enabled"
    114. 

  114.   $streamhost_symlink_ensure = $ensure ? {
    115. 

  115.     'absent' => absent,
    116. 

  116.     default  => 'link',
    117. 

  117.   }
    118. 

  118. 

  119.   $name_sanitized = regsubst($name, ' ', '_', 'G')
    120. 

  120.   $config_file = "${streamhost_dir}/${name_sanitized}.conf"
    121. 

  121. 

  122.   File {
    123. 

  123.     ensure => $ensure ? {
    124. 

  124.       'absent' => absent,
    125. 

  125.       default  => 'file',
    126. 

  126.     },
    127. 

  127.     notify => Class['::nginx::service'],
    128. 

  128.     owner  => $owner,
    129. 

  129.     group  => $group,
    130. 

  130.     mode   => $mode,
    131. 

  131.   }
    132. 

  132. 

  133.   # Add IPv6 Logic Check - Nginx service will not start if ipv6 is enabled
    134. 

  134.   # and support does not exist for it in the kernel.
    135. 

  135.   if ($ipv6_enable == true) and (!$::ipaddress6) {
    136. 

  136.     warning('nginx: IPv6 support is not enabled or configured properly')
    137. 

  137.   }
    138. 

  138. 

  139.   concat { $config_file:
    140. 

  140.     owner  => $owner,
    141. 

  141.     group  => $group,
    142. 

  142.     mode   => $mode,
    143. 

  143.     notify => Class['::nginx::service'],
    144. 

  144.   }
    145. 

  145. 

  146.   concat::fragment { "${name_sanitized}-header":
    147. 

  147.     target  => $config_file,
    148. 

  148.     content => template('nginx/streamhost/streamhost.erb'),
    149. 

  149.     order   => '001',
    150. 

  150.   }
    151. 

  151. 

  152.   file{ "${name_sanitized}.conf symlink":
    153. 

  153.     ensure  => $streamhost_symlink_ensure,
    154. 

  154.     path    => "${streamhost_enable_dir}/${name_sanitized}.conf",
    155. 

  155.     target  => $config_file,
    156. 

  156.     require => Concat[$config_file],
    157. 

  157.     notify  => Class['::nginx::service'],
    158. 

  158.   }
    159. 

  159. 

  160. }
    161.