module-puppetdb/manifests/server/firewall.pp

# PRIVATE CLASS - do not use directly
class puppetdb::server::firewall (
  $http_port      = $puppetdb::params::listen_port,
  $open_http_port = $puppetdb::params::open_listen_port,
  $ssl_port       = $puppetdb::params::ssl_listen_port,
  $open_ssl_port  = $puppetdb::params::open_ssl_listen_port,
) inherits puppetdb::params {
  include firewall

  if ($open_http_port) {
    firewall { "${http_port} accept - puppetdb":
      dport  => $http_port,
      proto  => 'tcp',
      action => 'accept',
    }
  }

  if ($open_ssl_port) {
    firewall { "${ssl_port} accept - puppetdb":
      dport  => $ssl_port,
      proto  => 'tcp',
      action => 'accept',
    }
  }
}
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`# PRIVATE CLASS - do not use directly`
Cleanups, missing doc items and new test_url capability This provides a number of cleanups as the code has been unloved for a while. I've added the ssl-* parameters the robinbowes added in his last patch to the docs, and found some other cleanups as well where applicable. I've added the ability to override the test_url also, so that in the future if a user wishes to they can customize this. Signed-off-by: Ken Barber <ken@bob.sh> 2014-10-07 16:06:54 +02:00			`class puppetdb::server::firewall (`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`$http_port = $puppetdb::params::listen_port,`
			`$open_http_port = $puppetdb::params::open_listen_port,`
			`$ssl_port = $puppetdb::params::ssl_listen_port,`
			`$open_ssl_port = $puppetdb::params::open_ssl_listen_port,`
Add support for opening puppetdb port in firewall 2012-09-18 02:06:48 +02:00			`) inherits puppetdb::params {`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`include firewall`
17594 - PuppetDB - Add ability to set standard host listen address and open firewall to standard port Prior to this commit the module did not provide a way to set a bind address for the HTTP port. This commit allows users to not only bind to an address and port other than localhost and 8080, but it also opens the firewall if explicitly requested. 2012-11-13 21:38:38 +01:00
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`if ($open_http_port) {`
			`firewall { "${http_port} accept - puppetdb":`
Use dport instead of the new deprecated port parameter 2015-08-29 15:08:05 +02:00			`dport => $http_port,`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`proto => 'tcp',`
			`action => 'accept',`
Fix deprecation warnings around manage_redhat_firewall 2013-01-17 02:52:11 +01:00			`}`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`}`
complies with style guide 2012-09-20 23:46:26 +02:00
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`if ($open_ssl_port) {`
			`firewall { "${ssl_port} accept - puppetdb":`
Use dport instead of the new deprecated port parameter 2015-08-29 15:08:05 +02:00			`dport => $ssl_port,`
(GH-93) Switch to using puppetlabs-postgresql 3.x This updates the module to be able to use puppetlabs-postgresql. Since this change is a major change, it marks this patch as a breaking change. I have prepared a suitable amount of upgrade notes for upgrading to this later version of the module plus removed anything marked deprecated. As cleanup, I've removed the troublesome 'tests' directory in favour of good README.md documentation. I've also removed any puppet docs from each module until such times as puppet docs become automated through the forge. This is just to avoid contributors having to double their efforts - the README.md is the authority now. Signed-off-by: Ken Barber <ken@bob.sh> 2013-10-21 17:21:12 +02:00			`proto => 'tcp',`
			`action => 'accept',`
complies with style guide 2012-09-20 23:46:26 +02:00			`}`
Add support for opening puppetdb port in firewall 2012-09-18 02:06:48 +02:00			`}`
			`}`