projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
salsa: plan to deploy database with puppet, write out credentials to a .yaml file
[mirror/dsa-puppet.git] / modules / salsa / manifests / init.pp
diff --git a/modules/salsa/manifests/init.pp b/modules/salsa/manifests/init.pp
index 95eb0e1..3e798d0 100644 (file)
--- a/modules/salsa/manifests/init.pp
+++ b/modules/salsa/manifests/init.pp
@@ -3,6 +3,10 @@ class salsa (
        $user = $salsa::params::user,
        $group = $salsa::params::group,
        $home = $salsa::params::home,
+
+       $db_name = $salsa::params::db_name,
+       $db_role = $salsa::params::db_role,
+       $db_password = $salsa::params::db_password,
 ) inherits salsa::params {
 
        # anchor things in correct order
@@ -10,6 +14,7 @@ class salsa (
        class { '::salsa::mail': } ->
        class { '::salsa::redis': } ->
        class { '::salsa::packages': } ->
+       class { '::salsa::database': } ->
        anchor { 'salsa::end': }
 
        # userdir-ldap users get their home in /home
@@ -23,4 +28,17 @@ class salsa (
                owner  => $salsa::user,
                group  => $salsa::group,
        }
+
+       file { "${salsa::home}/.credentials.yaml":
+               mode => '0400',
+               owner  => $salsa::user,
+               group  => $salsa::group,
+               content  => @("EOF"),
+                               ---
+                               database:
+                                 name: "${salsa::db_name}"
+                                 role: "${salsa::db_role}"
+                                 password: "${salsa::db_password}"
+                               | EOF
+       }
 }
Unnamed repository; edit this file 'description' to name the repository.