1 # bacula class -- defines all the variables we care about in our bacula deployment
3 # @param operator_email email address for reports
4 # @param ssl_ca_path full path and filename specifying a PEM encoded TLS CA certificate(s)
5 # @param ssl_client_cert path to TLS client certificate
6 # @param ssl_client_key path to TLS client certificate key
7 # @param ssl_server_cert path to TLS server certificate
8 # @param ssl_server_key path to TLS server certificate key
9 # @param public_addresses this host's public IP addresses. The ones it connects out from and is reachable from outsite.
10 # @param has_ipv4 daemons should listen on ipv4
11 # @param has_ipv6 daemons should listen on ipv6
13 String $operator_email = 'root@localhost',
15 String $ssl_client_cert,
16 String $ssl_client_key,
17 String $ssl_server_cert,
18 String $ssl_server_key,
20 Array[Stdlib::IP::Address] $public_addresses = $base::public_addresses,
22 Boolean $has_ipv4 = $bacula::public_addresses.any |$addr| { $addr =~ Stdlib::IP::Address::V4 },
23 Boolean $has_ipv6 = $bacula::public_addresses.any |$addr| { $addr =~ Stdlib::IP::Address::V6 },
25 # This file is used by our helper scripts on the director
26 $bacula_dsa_client_list = '/etc/bacula/dsa-clients'
27 $tag_bacula_dsa_client_list = 'bacula::dsa::clientlist'
29 $bacula_tls_ca_certificate_file = "TLS CA Certificate File = \"${ssl_ca_path}\""
30 $bacula_tls_client_certificate = "TLS Certificate = \"${ssl_client_cert}\""
31 $bacula_tls_client_key = "TLS Key = \"${ssl_client_key}\""
32 $bacula_tls_server_certificate = "TLS Certificate = \"${ssl_server_cert}\""
33 $bacula_tls_server_key = "TLS Key = \"${ssl_server_key}\""
35 file { '/usr/local/sbin/bacula-idle-restart':
37 source => 'puppet:///modules/bacula/bacula-idle-restart',