module-puppetdb/manifests/server/firewall.pp

# PRIVATE CLASS - do not use directly
class puppetdb::server::firewall(
  $http_port      = $puppetdb::params::listen_port,
  $open_http_port = $puppetdb::params::open_listen_port,
  $ssl_port       = $puppetdb::params::ssl_listen_port,
  $open_ssl_port  = $puppetdb::params::open_ssl_listen_port,
) inherits puppetdb::params {
  include firewall

  if ($open_http_port) {
    firewall { "${http_port} accept - puppetdb":
      port   => $http_port,
      proto  => 'tcp',
      action => 'accept',
    }
  }

  if ($open_ssl_port) {
    firewall { "${ssl_port} accept - puppetdb":
      port   => $ssl_port,
      proto  => 'tcp',
      action => 'accept',
    }
  }
}
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`# PRIVATE CLASS - do not use directly`
Add support for opening puppetdb port in firewall 2012-09-18 02:06:48 +02:00			`class puppetdb::server::firewall(`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`$http_port = $puppetdb::params::listen_port,`
			`$open_http_port = $puppetdb::params::open_listen_port,`
			`$ssl_port = $puppetdb::params::ssl_listen_port,`
			`$open_ssl_port = $puppetdb::params::open_ssl_listen_port,`
Add support for opening puppetdb port in firewall 2012-09-18 02:06:48 +02:00			`) inherits puppetdb::params {`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`include firewall`
17594 - PuppetDB - Add ability to set standard host listen address and open firewall to standard port Prior to this commit the module did not provide a way to set a bind address for the HTTP port. This commit allows users to not only bind to an address and port other than localhost and 8080, but it also opens the firewall if explicitly requested. 2012-11-13 21:38:38 +01:00
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`if ($open_http_port) {`
			`firewall { "${http_port} accept - puppetdb":`
			`port => $http_port,`
			`proto => 'tcp',`
			`action => 'accept',`
Fix deprecation warnings around manage_redhat_firewall 2013-01-17 02:52:11 +01:00			`}`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`}`
complies with style guide 2012-09-20 23:46:26 +02:00
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`if ($open_ssl_port) {`
			`firewall { "${ssl_port} accept - puppetdb":`
			`port => $ssl_port,`
			`proto => 'tcp',`
			`action => 'accept',`
complies with style guide 2012-09-20 23:46:26 +02:00			`}`
Add support for opening puppetdb port in firewall 2012-09-18 02:06:48 +02:00			`}`
			`}`