Puppet Class: puppet::passenger
- Defined in:
- manifests/passenger.pp
Overview
Class: puppet::passenger
This class installs and configures Passenger for Puppet
Parameters:
Actions:
Requires:
Sample Usage:
13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 |
# File 'manifests/passenger.pp', line 13
class puppet::passenger {
include apache
include apache::mod::ssl
include apache::mod::passenger
file { ['/etc/puppet/rack', '/etc/puppet/rack/public/', '/etc/puppet/rack/tmp']:
owner => 'puppet',
group => 'puppet',
ensure => directory,
}
file { '/etc/puppet/rack/config.ru':
owner => 'puppet',
group => 'puppet',
mode => '0644',
source => $puppetversion ? {
/^2.7/ => 'puppet:///modules/puppet/config.ru.passenger.27',
/^3./ => 'puppet:///modules/puppet/config.ru.passenger.3',
}
}
if $puppet::server::bindaddress == '::' {
$ip = '*'
} else {
$ip = $puppet::server::bindaddress
}
apache::vhost { 'puppetmaster':
servername => $puppet::server::servername,
ip => $ip,
port => '8140',
priority => '10',
docroot => '/etc/puppet/rack/public/',
ssl => true,
ssl_cipher => 'ALL:!ADH:!EXP:!LOW:+RC4:+HIGH:+MEDIUM:!SSLv2:+SSLv3:+TLSv1:+eNULL',
ssl_cert => "${puppet::ssldir}/certs/${puppet::server::servername}.pem",
ssl_key => "${puppet::ssldir}/private_keys/${puppet::server::servername}.pem",
ssl_chain => "${puppet::ssldir}/certs/ca.pem",
ssl_ca => "${puppet::ssldir}/ca/ca_crt.pem",
ssl_crl => "${puppet::ssldir}/ca/ca_crl.pem",
ssl_verify_client => 'optional',
ssl_verify_depth => '1',
ssl_options => ['+StdEnvVars', '+ExportCertData'],
request_headers => [
'set X-SSL-Subject %{SSL_CLIENT_S_DN}e',
'set X-Client-DN %{SSL_CLIENT_S_DN}e',
'set X-Client-Verify %{SSL_CLIENT_VERIFY}e',
],
}
}
|