openstack/puppet-keystone
Code Issues Proposed changes
59b4544946
puppet-keystone/manifests/cron/trust_flush.pp
Takashi Kajinami 258bd8c5e9 Enable trust flush cron job after database is initialized 
The trust flush operation expects the keystone database is already
initialized. This change ensures db sync is completed before cron job
is enabled.

Closes-Bug #1955829
Change-Id: I71380611c0075bd0d5a1dcedca621066559e1e9d
2021-12-27 23:56:24 +09:00

92 lines
2.4 KiB
Puppet
Raw Blame History

# Copyright (C) 2020 Red Hat, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: keystone::cron::trust_flush
#
# Installs a cron job to purge expired trusts.
#
# === Parameters
#
# [*ensure*]
# (Optional) Valid values are present, absent.
# Defaults to 'present'
#
# [*minute*]
# (Optional) Minute.
# Defaults to '1'
#
# [*hour*]
# (Optional) Hour.
# Defaults to *
#
# [*monthday*]
# (Optional) Day of month.
# Defaults to '*'
#
# [*month*]
# (Optional) Month.
# Defaults to '*'
#
# [*weekday*]
# (Optional) Day of week.
# Defaults to '*'
#
# [*maxdelay*]
# (Optional) Max random delay in seconds. Should be a positive integer.
# Induces a random delay before running the cronjob to avoid running all
# cron jobs at the same time on all hosts this job is configured.
# Defaults to 0
#
# [*destination*]
# (Optional) Path to file to which rows should be archived
# Defaults to '/var/log/keystone/keystone-trustflush.log'
#
# [*user*]
# (Optional) Allow to run the crontab on behalf any user.
# Defaults to 'keystone'
#
class keystone::cron::trust_flush (
$ensure = present,
$minute = 1,
$hour = '*',
$monthday = '*',
$month = '*',
$weekday = '*',
Integer $maxdelay = 0,
$destination = '/var/log/keystone/keystone-trustflush.log',
$user = 'keystone',
) {
include keystone::deps
if $maxdelay == 0 {
$sleep = ''
} else {
$sleep = "sleep `expr \${RANDOM} \\% ${maxdelay}`; "
}
cron { 'keystone-manage trust_flush':
ensure => $ensure,
command => "${sleep}keystone-manage trust_flush >>${destination} 2>&1",
environment => 'PATH=/bin:/usr/bin:/usr/sbin SHELL=/bin/sh',
user => $user,
minute => $minute,
hour => $hour,
monthday => $monthday,
month => $month,
weekday => $weekday,
require => Anchor['keystone::dbsync::end'],
}
}
View Git Blame Copy Permalink