diff --git a/.gitreview b/.gitreview new file mode 100644 index 0000000..61324c3 --- /dev/null +++ b/.gitreview @@ -0,0 +1,4 @@ +[gerrit] +host=review.openstack.org +port=29418 +project=openstack-infra/puppet-kerberos.git diff --git a/README.md b/README.md new file mode 100644 index 0000000..6a31823 --- /dev/null +++ b/README.md @@ -0,0 +1,5 @@ +# OpenStack Kerberos Module + +## Overview + +Kerberos configuration. diff --git a/Rakefile b/Rakefile new file mode 100644 index 0000000..ff1f0d7 --- /dev/null +++ b/Rakefile @@ -0,0 +1,8 @@ +require 'rubygems' +require 'puppetlabs_spec_helper/rake_tasks' +require 'puppet-lint/tasks/puppet-lint' +PuppetLint.configuration.fail_on_warnings = true +PuppetLint.configuration.send('disable_80chars') +PuppetLint.configuration.send('disable_autoloader_layout') +PuppetLint.configuration.send('disable_class_inherits_from_params_class') +PuppetLint.configuration.send('disable_class_parameter_defaults') diff --git a/manifests/client.pp b/manifests/client.pp index aa35466..543262b 100644 --- a/manifests/client.pp +++ b/manifests/client.pp @@ -1,3 +1,5 @@ +# Class kerberos::client + class kerberos::client ( $realm, $kdcs, diff --git a/manifests/server.pp b/manifests/server.pp index c85b5b1..196a25f 100644 --- a/manifests/server.pp +++ b/manifests/server.pp @@ -1,3 +1,5 @@ +# Class kerberos::server + class kerberos::server ( $realm, $kdcs = [$::fqdn], @@ -26,14 +28,14 @@ class kerberos::server ( ensure => present, replace => true, content => template('kerberos/kdc.conf.erb'), - require => Package['krb5-kdc'], + require => Package['krb5-kdc'], } file { '/etc/krb5kdc/kpropd.acl': ensure => present, replace => true, content => template('kerberos/kpropd.acl.erb'), - require => Package['krb5-kdc'], + require => Package['krb5-kdc'], } file { '/etc/krb5kdc/kadm5.acl': @@ -57,19 +59,19 @@ class kerberos::server ( file { '/usr/local/bin/run-kprop.sh': ensure => present, replace => true, - mode => 0755, + mode => '0755', content => template('kerberos/run-kprop.sh.erb'), require => Package['krb5-admin-server'], } if ($slave) { $run_admin_server = stopped - $run_kadmind = 'false' + $run_kadmind = false $run_kpropd = running $kprop_cron = absent } else { $run_admin_server = running - $run_kadmind = 'true' + $run_kadmind = true $run_kpropd = stopped $kprop_cron = present } @@ -80,7 +82,7 @@ class kerberos::server ( ensure => present, replace => true, content => template('kerberos/krb5-admin-server.defaults.erb'), - require => Package['krb5-admin-server'], + require => Package['krb5-admin-server'], } cron { 'kprop': @@ -92,15 +94,15 @@ class kerberos::server ( } service { 'krb5-kpropd': - ensure => $run_kpropd, - require => [ + ensure => $run_kpropd, + require => [ File['/etc/init.d/krb5-kpropd'], Package['krb5-admin-server'], ], } service { 'krb5-admin-server': - ensure => $run_admin_server, + ensure => $run_admin_server, subscribe => File['/etc/krb5kdc/kadm5.acl'], require => [ File['/etc/krb5kdc/kadm5.acl'], diff --git a/metadata.json b/metadata.json new file mode 100644 index 0000000..3bf0b48 --- /dev/null +++ b/metadata.json @@ -0,0 +1,12 @@ +{ + "name": "openstackci-kerberos", + "version": "0.0.1", + "author": "OpenStack CI", + "summary": "Puppet module for Kerberos", + "license": "Apache 2.0", + "source": "git://git.openstack.org/openstack-infra/puppet-kerberos.git", + "project_page": "http://ci.openstack.org/", + "issues_url": "https://storyboard.openstack.org/#!/project/787", + "dependencies": [ + ] +}