f6f6e55b33
This provides a number of cleanups as the code has been unloved for a while. I've added the ssl-* parameters the robinbowes added in his last patch to the docs, and found some other cleanups as well where applicable. I've added the ability to override the test_url also, so that in the future if a user wishes to they can customize this. Signed-off-by: Ken Barber <ken@bob.sh>
25 lines
671 B
Puppet
25 lines
671 B
Puppet
# PRIVATE CLASS - do not use directly
|
|
class puppetdb::server::firewall (
|
|
$http_port = $puppetdb::params::listen_port,
|
|
$open_http_port = $puppetdb::params::open_listen_port,
|
|
$ssl_port = $puppetdb::params::ssl_listen_port,
|
|
$open_ssl_port = $puppetdb::params::open_ssl_listen_port,
|
|
) inherits puppetdb::params {
|
|
include firewall
|
|
|
|
if ($open_http_port) {
|
|
firewall { "${http_port} accept - puppetdb":
|
|
port => $http_port,
|
|
proto => 'tcp',
|
|
action => 'accept',
|
|
}
|
|
}
|
|
|
|
if ($open_ssl_port) {
|
|
firewall { "${ssl_port} accept - puppetdb":
|
|
port => $ssl_port,
|
|
proto => 'tcp',
|
|
action => 'accept',
|
|
}
|
|
}
|
|
}
|