Defined Type: neo4j::user

Defined in:
manifests/user.pp

Overview

Define: user

A user of the Neo4j server.

**Note: This is an internal class and should not be called directly.

Parameters

Document parameters here

ensure

  • Optional

Specifies if a user should be 'present' or 'absent'.
Default: present
password

  • Required

The user's password.  Must be specified even when setting ensure => absent.
readWrite

  • Optional

Sets the user's permissions to either read/write if specified as true
or read only if specified as false.

Authors

Amos Wood <amosjwood@gmail.com>

Copyright 2014 Amos Wood, unless otherwise noted.

Parameters:

  • password (Any)
  • ensure (Any) (defaults to: present)
  • readWrite (Any) (defaults to: true) 


30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
 
# File 'manifests/user.pp', line 30

define neo4j::user(
  $password,
  $ensure = present,
  $readWrite = true,
){
  $user = $title
  $install_prefix = $neo4j::install_prefix
  $package_name = $neo4j::package_name
  $auth_admin_user = $neo4j::auth_admin_user
  $auth_admin_password = $neo4j::auth_admin_password

  $auth_endpoint = "http://${::ipaddress}:7474/auth"

  $running_command = "curl -XGET --silent --user \"${auth_admin_user}:${auth_admin_password}\" ${auth_endpoint}/list | grep -o { | wc -l"


  $user_command = "curl -XGET --silent --user \"${auth_admin_user}:${auth_admin_password}\" ${auth_endpoint}/list | grep -oE \"${user}:[^,}]*\""
  $count_command = "curl -XGET --silent --user \"${auth_admin_user}:${auth_admin_password}\" ${auth_endpoint}/list | grep -oE ${user}: | wc -l"

  if($readWrite) {
    $readWriteValue = 1
    $readWriteString = 'RW'
  }
  else {
    $readWriteValue = 0
    $readWriteString = 'RO'
  }

  Exec {
    path => ["${install_prefix}/${package_name}/bin", '/bin', '/sbin', '/usr/bin', '/usr/sbin'],
  }

  if($ensure != absent and $ensure != purged) {
    #Create the users if they don't exist
    exec { "Create Neo4j User ${user}" :
      command   => "createNeo4jUser ${auth_endpoint} \"${auth_admin_user}:${auth_admin_password}\" ${user} \"${password}\" ${readWriteValue}",
      onlyif    => "test `${count_command}` -eq 0",
      require   => [File['createNeo4jUser.sh', 'authentication-extension'], Service['neo4j']],
      tries     => 12,
      try_sleep => 5
    }
    exec { "Update Neo4j User ${user}" :
      command   => "updateNeo4jUser ${auth_endpoint} \"${auth_admin_user}:${auth_admin_password}\" ${user} \"${password}\" ${readWriteValue}",
      onlyif    => "test \"`${user_command}`\" != \"${user}:${password}\\\":\\\"${readWriteString}\\\"\"",
      require   => [Exec["Create Neo4j User ${user}"], File['updateNeo4jUser.sh', 'authentication-extension'], Service['neo4j']],
      tries     => 12,
      try_sleep => 5
    }
  }
  # remove the user
  else {
    exec { "Remove Neo4j User ${user}" :
      command   => "removeNeo4jUser ${auth_endpoint} \"${auth_admin_user}:${auth_admin_password}\" ${user}",
      onlyif    => "test `${count_command}` -gt 0",
      require   => [File['removeNeo4jUser.sh', 'authentication-extension'], Service['neo4j']],
      tries     => 12,
      try_sleep => 5
    }
  }
}