Merge pull request #691 from enovance/keepalived-auth

keepalived: avoid empty auth config when disabled

manifests/loadbalancer.pp

@@ -212,8 +212,8 @@ class cloud::loadbalancer(
   $keepalived_public_ipvs           = ['127.0.0.1'],
   $keepalived_internal_interface    = 'eth1',
   $keepalived_internal_ipvs         = false,
-  $keepalived_auth_type             = undef,
-  $keepalived_auth_pass             = undef,
+  $keepalived_auth_type             = false,
+  $keepalived_auth_pass             = false,
   $ceilometer_bind_options          = [],
   $cinder_bind_options              = [],
   $ec2_bind_options                 = [],
@@ -318,10 +318,14 @@ class cloud::loadbalancer(
   }
 
 
-  if $keepalived_internal_ipvs and !empty(difference($keepalived_internal_ipvs, $keepalived_public_ipvs)) {
+  # First we check if internal binding is enabled
+  if $keepalived_internal_ipvs {
+    # Then we validate this is not the same as public binding
+    if !empty(difference(any2array($keepalived_internal_ipvs), any2array($keepalived_public_ipvs))) {
       if ! $keepalived_vrrp_interface {
         $keepalived_vrrp_interface_internal = $keepalived_internal_interface
       } else {
+        # Backward compatibility
         $keepalived_vrrp_interface_internal = $keepalived_vrrp_interface
       }
       keepalived::instance { '2':
@@ -336,6 +340,7 @@ class cloud::loadbalancer(
         notify_backup => $::cloud::params::stop_haproxy_service,
       }
     }
+  }
 
   file { '/etc/logrotate.d/haproxy':
     ensure  => file,