paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-11-05 06:23:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
84d5e58e3a491e592a6678c96887d1092579854e
zulip/puppet/zulip/manifests/postgresql_common.pp
Alex Vandiver 84d5e58e3a puppet: Switch from top-level fact variables to facts dict. 
This is a cherry-pick of 57f8b48ff9 and 235e2eefc8.
2024-05-07 11:18:22 -07:00

84 lines
2.5 KiB
Puppet
Raw Blame History

class zulip::postgresql_common {
include zulip::snakeoil
$version = zulipconf('postgresql', 'version', undef)
case $facts['os']['family'] {
'Debian': {
$postgresql = "postgresql-${version}"
$postgresql_packages = [
# The database itself
$postgresql,
# tools for database monitoring; formerly ptop
'pgtop',
# our dictionary
'hunspell-en-us',
# PostgreSQL Nagios check plugin
'check-postgres',
# Python modules used in our monitoring/worker threads
'python3-dateutil', # TODO: use a virtualenv instead
]
$postgresql_user_reqs = [
Package[$postgresql],
Package['ssl-cert'],
]
}
'RedHat': {
$postgresql = "postgresql${version}"
$postgresql_packages = [
$postgresql,
"${postgresql}-server",
"${postgresql}-devel",
'pg_top',
'hunspell-en-US',
# exists on CentOS 6 and Fedora 29 but not CentOS 7
# see https://pkgs.org/download/check_postgres
# alternatively, download directly from:
# https://bucardo.org/check_postgres/
# 'check-postgres', # TODO
]
exec {'pip3_deps':
command => 'python3 -m pip install python-dateutil',
}
group { 'ssl-cert':
ensure => present,
}
# allows ssl-cert group to read /etc/pki/tls/private
file { '/etc/pki/tls/private':
ensure => directory,
mode => '0750',
owner => 'root',
group => 'ssl-cert',
}
$postgresql_user_reqs = [
Package[$postgresql],
Group['ssl-cert'],
]
}
default: {
fail('osfamily not supported')
}
}
zulip::safepackage { $postgresql_packages:
ensure => installed,
require => Exec['generate-default-snakeoil'],
}
if $facts['os']['family'] == 'Debian' {
# The logrotate file only created in debian-based systems
exec { 'disable_logrotate':
# lint:ignore:140chars
command => '/usr/bin/dpkg-divert --rename --divert /etc/logrotate.d/postgresql-common.disabled --add /etc/logrotate.d/postgresql-common',
# lint:endignore
creates => '/etc/logrotate.d/postgresql-common.disabled',
}
}
# Use arcane puppet virtual resources to add postgres user to zulip group
@user { 'postgres':
groups => ['ssl-cert'],
membership => minimum,
require => $postgresql_user_reqs,
}
User <| title == postgres |> { groups +> 'zulip' }
}
Reference in New Issue View Git Blame Copy Permalink