Defined Type: iis::manage_binding

Defined in:
manifests/manage_binding.pp

Overview

Parameters:

  • site_name (Any)
  • protocol (Any)
  • port (Any)
  • host_header (Any) (defaults to: '')
  • ip_address (Any) (defaults to: '*')
  • certificate_thumbprint (Any) (defaults to: '')
  • store (Any) (defaults to: 'My')
  • ssl_flag (Any) (defaults to: 0)
  • ensure (Any) (defaults to: 'present')
  • require_site (Any) (defaults to: true) 


2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
 
# File 'manifests/manage_binding.pp', line 2

define iis::manage_binding($site_name, $protocol, $port, $host_header = '', $ip_address = '*', $certificate_thumbprint = '', $store = 'My', $ssl_flag = 0, $ensure = 'present', $require_site = true) {
  if ! ($protocol in [ 'http', 'https', 'net.tcp', 'net.pipe', 'netmsmq', 'msmq.formatname' ]) {
    fail('valid protocols \'http\', \'https\', \'net.tcp\', \'net.pipe\', \'netmsmq\', \'msmq.formatname\'')
  }

  validate_string($site_name)
  validate_re($site_name,['^(.)+$'], 'site_name must not be empty')
  validate_re($ensure, '^(present|installed|absent|purged)$', 'ensure must be one of \'present\', \'installed\', \'absent\', \'purged\'')
  validate_re($store, '^(My|WebHosting)$')
  validate_bool($require_site)
  if ! ($ip_address == '*') {
    validate_re($ip_address, ['^([0-9]){1,3}\.([0-9]){1,3}\.([0-9]){1,3}\.([0-9]){1,3}$'], "\"${ip_address}\" is not a valid ip address")
  }

  if ($ensure in ['present','installed']) {
    $binding_require = $require_site ? {
      false   => undef,
      default => Iis::Manage_site[$site_name],
    }

    exec { "CreateBinding-${title}":
      command   => "Import-Module WebAdministration; New-WebBinding -Name \"${site_name}\" -Port ${port} -Protocol \"${protocol}\" -HostHeader \"${host_header}\" -IPAddress \"${ip_address}\" -SslFlags \"${ssl_flag}\"",
      onlyif    => "Import-Module WebAdministration; if (Get-WebBinding -Name \"${site_name}\" -Port ${port} -Protocol \"${protocol}\" -HostHeader \"${host_header}\" -IPAddress \"${ip_address}\" | Where-Object {\$_.bindingInformation -eq \"${ip_address}:${port}:${host_header}\"}) { exit 1 } else { exit 0 }",
      provider  => powershell,
      logoutput => true,
      require   => $binding_require,
    }

    if ($protocol == 'https') {
      validate_re($certificate_thumbprint, ['^(.)+$'], 'certificate_thumbprint required for https bindings')
      if ($ip_address == '0.0.0.0') {
        fail('https bindings require a valid ip_address')
      }

      file { "inspect-${title}-certificate.ps1":
        ensure  => present,
        path    => "C:\\temp\\inspect-${name}.ps1",
        content => template('iis/inspect-certificate-binding.ps1.erb'),
      }

      file { "create-${title}-certificate.ps1":
        ensure  => present,
        path    => "C:\\temp\\create-${name}.ps1",
        content => template('iis/create-certificate-binding.ps1.erb'),
      }

      exec { "Attach-Certificate-${title}":
        command   => "C:\\temp\\create-${name}.ps1",
        onlyif    => "C:\\temp\\inspect-${name}.ps1",
        require   => [File["inspect-${title}-certificate.ps1"], File["create-${title}-certificate.ps1"]],
        provider  => powershell,
        logoutput => true,
      }
    }
  } else {
    exec { "DeleteBinding-${title}":
    command   => "Import-Module WebAdministration; Remove-WebBinding -Name \"${site_name}\" -Port ${port} -Protocol \"${protocol}\" -HostHeader \"${host_header}\" -IPAddress \"${ip_address}\" -SslFlags \"${ssl_flag}\"",
    onlyif    => "Import-Module WebAdministration; if (!(Get-WebBinding -Name \"${site_name}\" -Port ${port} -Protocol \"${protocol}\" -HostHeader \"${host_header}\" -IPAddress \"${ip_address}\" | Where-Object {\$_.bindingInformation -eq \"${ip_address}:${port}:${host_header}\"})) { exit 1 } else { exit 0 }",
    provider  => powershell,
    logoutput => true,
    }
  }
}