X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fmunin%2Fmanifests%2Finit.pp;h=b4a5398ba91182df01ec855fcf5f3e406346c97f;hb=4326b0a78553bfe9696c10f1a69e1316acd23802;hp=1ba4477a02d789e81b57231892f6400915946eb6;hpb=3eb533e5499e66423bafdedaf6c7d08ead1772de;p=mirror%2Fdsa-puppet.git

diff --git a/modules/munin/manifests/init.pp b/modules/munin/manifests/init.pp
index 1ba4477a0..b4a5398ba 100644
--- a/modules/munin/manifests/init.pp
+++ b/modules/munin/manifests/init.pp
@@ -9,8 +9,15 @@ class munin {
 		require => Package['munin-node'],
 	}
 
+	file { '/var/log/munin':
+		ensure => directory,
+		owner  => root,
+		group  => 'www-data',
+		mode   => '0755',
+	}
+
 	file { '/etc/munin/munin-node.conf':
-		content => template('munin/munin-node.conf.erb')
+		content => template('munin/munin-node.conf.erb'),
 		require => Package['munin-node'],
 		notify  => Service['munin-node'],
 	}
@@ -21,23 +28,64 @@ class munin {
 		notify  => Service['munin-node'],
 	}
 
-	file { [ '/etc/munin/plugins/df', '/etc/munin/plugins/df_abs', '/etc/munin/plugins/df_inode' ]:
+	file { '/etc/logrotate.d/munin-node':
+		source => 'puppet:///modules/munin/logrotate',
+		require => Package['munin-node'],
+	}
+
+	file { '/etc/munin/plugins/df':
+		ensure  => link,
+		target  => '/usr/share/munin/plugins/df',
+		require => Package['munin-node'],
+		notify  => Service['munin-node'],
+	}
+
+	file { '/etc/munin/plugins/df_abs':
+		ensure  => file,
 		source => 'puppet:///modules/munin/df-wrap',
 		mode    => '0555',
 		require => Package['munin-node'],
 		notify  => Service['munin-node'],
 	}
 
+	file { '/etc/munin/plugins/df_inode':
+		ensure  => link,
+		target  => '/usr/share/munin/plugins/df_inode',
+		require => Package['munin-node'],
+		notify  => Service['munin-node'],
+	}
+
 	@ferm::rule { 'dsa-munin-v4':
 		description     => 'Allow munin from munin master',
-		rule            => 'proto tcp mod state state (NEW) dport (munin) @subchain 'munin' { saddr (\$HOST_MUNIN_V4 \$HOST_NAGIOS_V4) ACCEPT; }',
+		rule            => 'proto tcp mod state state (NEW) dport (munin) @subchain \'munin\' { saddr ($HOST_MUNIN_V4 $HOST_NAGIOS_V4) ACCEPT; }',
 		notarule        => true,
 	}
 
 	@ferm::rule { 'dsa-munin-v6':
 		description     => 'Allow munin from munin master',
 		domain          => 'ip6',
-		rule            => 'proto tcp mod state state (NEW) dport (munin) @subchain 'munin' { saddr (\$HOST_MUNIN_V6 \$HOST_NAGIOS_V6) ACCEPT; }',
+		rule            => 'proto tcp mod state state (NEW) dport (munin) @subchain \'munin\' { saddr ($HOST_MUNIN_V6 $HOST_NAGIOS_V6) ACCEPT; }',
 		notarule        => true,
 	}
+
+	@@munin::master_per_node { $::fqdn:
+			ipaddress   => $::ipaddress,
+			munin_async => $::munin_async,
+	}
+
+	#if $::munin_async and str2bool($::munin_async) == true {
+	#	file { '/etc/ssh/userkeys/munin-async':
+	#		source => 'puppet:///modules/munin/munin-async-authkeys',
+	#	}
+	#} else {
+	#	file { '/etc/ssh/userkeys/munin-async':
+	#		ensure => 'absent',
+	#	}
+	#}
+	package { 'munin-async':
+		ensure => installed
+	}
+	file { '/etc/ssh/userkeys/munin-async':
+		source => 'puppet:///modules/munin/munin-async-authkeys',
+	}
 }