Setup cert-mon.conf

This change is to create /etc/sysinv/cert-mon.conf for cert-mon. The cert-mon.conf will have auth info for local cloud on a subcloud. The conf file will have both auth info for local and subcloud if it is on a systemcontroller. Story: 2007347 Task: 40373 Change-Id: Ibb217753782ce0dd922d9e5568dd14ea929190ae Signed-off-by: Bin Qian <bin.qian@windriver.com>
2020-07-16 00:30:17 -04:00
parent 0ac74c3d85
commit ff70cdd62a
8 changed files with 227 additions and 0 deletions
--- a/modules/puppet-sysinv/src/sysinv/lib/puppet/provider/certmon_config/ini_setting.rb
+++ b/modules/puppet-sysinv/src/sysinv/lib/puppet/provider/certmon_config/ini_setting.rb
@@ -0,0 +1,35 @@
+#
+# Files in this package are licensed under Apache; see LICENSE file.
+#
+# Copyright (c) 2020 Wind River Systems, Inc.
+#
+# SPDX-License-Identifier: Apache-2.0
+#
+
+Puppet::Type.type(:certmon_config).provide(
+  :ini_setting,
+  :parent => Puppet::Type.type(:ini_setting).provider(:ruby)
+) do
+
+  def section
+    resource[:name].split('/', 2).first
+  end
+
+  def setting
+    resource[:name].split('/', 2).last
+  end
+
+  def separator
+    '='
+  end
+
+  def self.file_path
+    '/etc/sysinv/cert-mon.conf'
+  end
+
+  # added for backwards compatibility with older versions of inifile
+  def file_path
+    self.class.file_path
+  end
+
+end
--- a/modules/puppet-sysinv/src/sysinv/lib/puppet/type/certmon_config.rb
+++ b/modules/puppet-sysinv/src/sysinv/lib/puppet/type/certmon_config.rb
@@ -0,0 +1,50 @@
+#
+# Files in this package are licensed under Apache; see LICENSE file.
+#
+# Copyright (c) 2020 Wind River Systems, Inc.
+#
+# SPDX-License-Identifier: Apache-2.0
+#
+
+Puppet::Type.newtype(:certmon_config) do
+
+  ensurable
+
+  newparam(:name, :namevar => true) do
+    desc 'Section/setting name to manage from /etc/sysinv/cert-mon.conf'
+    newvalues(/\S+\/\S+/)
+  end
+
+  newproperty(:value) do
+    desc 'The value of the setting to be defined.'
+    munge do |value|
+      value = value.to_s.strip
+      value.capitalize! if value =~ /^(true|false)$/i
+      value
+    end
+
+    def is_to_s( currentvalue )
+      if resource.secret?
+        return '[old secret redacted]'
+      else
+        return currentvalue
+      end
+    end
+
+    def should_to_s( newvalue )
+      if resource.secret?
+        return '[new secret redacted]'
+      else
+        return newvalue
+      end
+    end
+  end
+
+  newparam(:secret, :boolean => true) do
+    desc 'Whether to hide the value from Puppet logs. Defaults to `false`.'
+
+    newvalues(:true, :false)
+
+    defaultto false
+  end
+end