141 lines
4.1 KiB
Puppet
141 lines
4.1 KiB
Puppet
# Class: mysql::config
|
|
#
|
|
# Parameters:
|
|
# [*bind_address*] - address to bind service.
|
|
# [*config_file*] - my.cnf configuration file path.
|
|
# [*datadir*] - path to datadir.
|
|
# [*default_engine] - configure a default table engine
|
|
# [*etc_root_password*] - whether to save /etc/my.cnf.
|
|
# [*log_error] - path to mysql error log
|
|
# [*old_root_password*] - previous root user password,
|
|
# [*port*] - port to bind service.
|
|
# [*restart] - whether to restart mysqld (true/false)
|
|
# [*root_group] - use specified group for root-owned files
|
|
# [*root_password*] - root user password.
|
|
# [*service_name*] - mysql service name.
|
|
# [*socket*] - mysql socket.
|
|
# [*ssl] - enable ssl
|
|
# [*ssl_ca] - path to ssl-ca
|
|
# [*ssl_cert] - path to ssl-cert
|
|
# [*ssl_key] - path to ssl-key
|
|
#
|
|
#
|
|
# Actions:
|
|
#
|
|
# Requires:
|
|
#
|
|
# class mysql::server
|
|
#
|
|
# Usage:
|
|
#
|
|
# class { 'mysql::config':
|
|
# root_password => 'changeme',
|
|
# bind_address => $::ipaddress,
|
|
# }
|
|
#
|
|
class mysql::config(
|
|
$bind_address = $mysql::bind_address,
|
|
$config_file = $mysql::config_file,
|
|
$datadir = $mysql::datadir,
|
|
$default_engine = $mysql::default_engine,
|
|
$etc_root_password = $mysql::etc_root_password,
|
|
$log_error = $mysql::log_error,
|
|
$pidfile = $mysql::pidfile,
|
|
$port = $mysql::port,
|
|
$purge_conf_dir = $mysql::purge_conf_dir,
|
|
$restart = $mysql::restart,
|
|
$root_group = $mysql::root_group,
|
|
$root_password = $mysql::root_password,
|
|
$old_root_password = $mysql::old_root_password,
|
|
$service_name = $mysql::service_name,
|
|
$socket = $mysql::socket,
|
|
$ssl = $mysql::ssl,
|
|
$ssl_ca = $mysql::ssl_ca,
|
|
$ssl_cert = $mysql::ssl_cert,
|
|
$ssl_key = $mysql::ssl_key,
|
|
) inherits mysql {
|
|
|
|
File {
|
|
owner => 'root',
|
|
group => $root_group,
|
|
mode => '0400',
|
|
notify => $restart ? {
|
|
true => Exec['mysqld-restart'],
|
|
false => undef,
|
|
},
|
|
}
|
|
|
|
if $ssl and $ssl_ca == undef {
|
|
fail('The ssl_ca parameter is required when ssl is true')
|
|
}
|
|
|
|
if $ssl and $ssl_cert == undef {
|
|
fail('The ssl_cert parameter is required when ssl is true')
|
|
}
|
|
|
|
if $ssl and $ssl_key == undef {
|
|
fail('The ssl_key parameter is required when ssl is true')
|
|
}
|
|
|
|
# This kind of sucks, that I have to specify a difference resource for
|
|
# restart. the reason is that I need the service to be started before mods
|
|
# to the config file which can cause a refresh
|
|
exec { 'mysqld-restart':
|
|
command => "service ${service_name} restart",
|
|
logoutput => on_failure,
|
|
refreshonly => true,
|
|
path => '/sbin/:/usr/sbin/:/usr/bin/:/bin/',
|
|
}
|
|
|
|
# manage root password if it is set
|
|
if $root_password != 'UNSET' {
|
|
case $old_root_password {
|
|
'': { $old_pw='' }
|
|
default: { $old_pw="-p'${old_root_password}'" }
|
|
}
|
|
|
|
exec { 'set_mysql_rootpw':
|
|
command => "mysqladmin -u root ${old_pw} password '${root_password}'",
|
|
logoutput => true,
|
|
unless => "mysqladmin -u root -p'${root_password}' status > /dev/null",
|
|
path => '/usr/local/sbin:/usr/bin:/usr/local/bin',
|
|
notify => $restart ? {
|
|
true => Exec['mysqld-restart'],
|
|
false => undef,
|
|
},
|
|
require => File['/etc/mysql/conf.d'],
|
|
}
|
|
|
|
file { '/root/.my.cnf':
|
|
content => template('mysql/my.cnf.pass.erb'),
|
|
require => Exec['set_mysql_rootpw'],
|
|
}
|
|
|
|
if $etc_root_password {
|
|
file{ '/etc/my.cnf':
|
|
content => template('mysql/my.cnf.pass.erb'),
|
|
require => Exec['set_mysql_rootpw'],
|
|
}
|
|
}
|
|
} else {
|
|
file { '/root/.my.cnf':
|
|
ensure => present,
|
|
}
|
|
}
|
|
|
|
file { '/etc/mysql':
|
|
ensure => directory,
|
|
mode => '0755',
|
|
}
|
|
file { '/etc/mysql/conf.d':
|
|
ensure => directory,
|
|
mode => '0755',
|
|
recurse => $purge_conf_dir,
|
|
purge => $purge_conf_dir,
|
|
}
|
|
file { $config_file:
|
|
content => template('mysql/my.cnf.erb'),
|
|
mode => '0644',
|
|
}
|
|
|
|
}
|