Revision 5f2f0557
Added by Ivan Necas about 10 years ago
| manifests/capsule.pp | ||
|---|---|---|
|
# $parent_fqdn:: fqdn of the parent node. Does not usually
|
||
|
# need to be set.
|
||
|
#
|
||
|
# $child_fqdn:: fqdn of the child node. REQUIRED
|
||
|
# $capsule_fqdn:: fqdn of the capsule. REQUIRED
|
||
|
#
|
||
|
# $certs_tar:: path to tar file with certs to generate
|
||
|
#
|
||
|
# $katello_user:: Katello username used for creating repo with certs.
|
||
|
# This param indicates that we want to distribute the certs via
|
||
|
# Katello repo
|
||
|
#
|
||
|
# $katello_password:: Katello password
|
||
|
#
|
||
|
# $katello_org:: Organization name to create a repository in
|
||
|
#
|
||
|
# $katello_repo_provider:: Provider name to create a repository in
|
||
|
#
|
||
|
# $katello_product:: Product name to create a repository in
|
||
|
#
|
||
|
# $katello_activation_key:: Activation key that registers the system
|
||
|
# with access to the cert repo (OPTIONAL)
|
||
|
#
|
||
|
class certs::capsule (
|
||
|
$parent_fqdn = $fqdn,
|
||
|
$child_fqdn = $certs::params::node_fqdn,
|
||
|
$certs_tar = $certs::params::certs_tar,
|
||
|
$katello_user = $certs::params::katello_user,
|
||
|
$katello_password = $certs::params::katello_password,
|
||
|
$katello_org = $certs::params::katello_org,
|
||
|
$katello_repo_provider = $certs::params::katello_repo_provider,
|
||
|
$katello_product = $certs::params::katello_product,
|
||
|
$katello_activation_key = $certs::params::katello_activation_key
|
||
|
$parent_fqdn = $fqdn,
|
||
|
$capsule_fqdn = $certs::node_fqdn,
|
||
|
$certs_tar = $certs::params::certs_tar
|
||
|
) inherits certs::params {
|
||
|
|
||
|
validate_present($child_fqdn)
|
||
|
validate_present($capsule_fqdn)
|
||
|
|
||
|
class { 'certs::puppet': }
|
||
|
class { 'certs::foreman_proxy': }
|
||
|
class { 'certs::apache': }
|
||
|
class { 'certs::pulp_child': }
|
||
|
class { 'certs::puppet': hostname => $capsule_fqdn }
|
||
|
class { 'certs::foreman': hostname => $capsule_fqdn }
|
||
|
class { 'certs::foreman_proxy': hostname => $capsule_fqdn }
|
||
|
class { 'certs::apache': hostname => $capsule_fqdn }
|
||
|
class { 'certs::pulp_child': hostname => $capsule_fqdn }
|
||
|
class { 'certs::pulp_parent':
|
||
|
hostname => $parent_fqdn,
|
||
|
deploy => true,
|
||
| ... | ... | |
|
Class['certs::pulp_child']]
|
||
|
}
|
||
|
}
|
||
|
|
||
|
if $katello_user {
|
||
|
|
||
|
katello_repo { $child_fqdn:
|
||
|
user => $katello_user,
|
||
|
password => $katello_password,
|
||
|
org => $katello_org,
|
||
|
repo_provider => $katello_repo_provider,
|
||
|
product => $katello_product,
|
||
|
package_files => ['/root/ssl-build/*.noarch.rpm',
|
||
|
"/root/ssl-build/${child_fqdn}/*.noarch.rpm"],
|
||
|
subscribe => [Class['certs::puppet'],
|
||
|
Class['certs::foreman'],
|
||
|
Class['certs::foreman_proxy'],
|
||
|
Class['certs::apache'],
|
||
|
Class['certs::pulp_child']],
|
||
|
}
|
||
|
|
||
|
if $katello_activation_key {
|
||
|
katello_activation_key { $katello_activation_key:
|
||
|
user => $katello_user,
|
||
|
password => $katello_password,
|
||
|
org => $katello_org,
|
||
|
product => $katello_product,
|
||
|
require => Katello_repo[$child_fqdn]
|
||
|
}
|
||
|
}
|
||
|
|
||
|
}
|
||
|
}
|
||
Also available in: Unified diff
Refs #5423 - fix certs generation for capsule usage
Also, disable setting of katello repo for the certs till we support
package uploads again.