X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Froles%2Fmanifests%2Fpubsub%2Fentities.pp;h=d86e7f1761cc0b0d04b4886a370a1538f8f43fcb;hb=8719ab9103ef4328fa5835552716d6888d404a25;hp=2767d9e94a95465008e97cf2e4de53e600092bf1;hpb=bee0b037f0057ba822256a0b0dbd856bbe231bc3;p=mirror%2Fdsa-puppet.git

diff --git a/modules/roles/manifests/pubsub/entities.pp b/modules/roles/manifests/pubsub/entities.pp
index 2767d9e94..d86e7f176 100644
--- a/modules/roles/manifests/pubsub/entities.pp
+++ b/modules/roles/manifests/pubsub/entities.pp
@@ -16,225 +16,184 @@ class roles::pubsub::entities {
 	$mailadm_password = $roles::pubsub::params::mailadm_password
 	$mailly_password  = $roles::pubsub::params::mailly_password
 	$muffat_password  = $roles::pubsub::params::muffat_password
+	$pet_password     = $roles::pubsub::params::pet_password
 
 	rabbitmq_user { 'admin':
 		admin    => true,
 		password => $admin_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'ftpteam':
-		admin    => true,
+		admin    => false,
 		password => $ftp_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'buildd':
-		admin    => true,
+		admin    => false,
 		password => $buildd_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'wbadm':
-		admin    => true,
+		admin    => false,
 		password => $wbadm_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'mailadm':
-		admin    => true,
+		admin    => false,
 		password => $mailadm_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'mailly':
-		admin    => true,
+		admin    => false,
 		password => $mailly_password,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_user { 'muffat':
-		admin    => true,
+		admin    => false,
 		password => $muffat_password,
-		provider => 'rabbitmqctl',
 	}
 
+	rabbitmq_user { 'pet-devel':
+		admin    => false,
+		password => $pet_password,
+	}
+
+	$do_hosts = keys($site::localinfo)
+
+	pubsub::autouser { $do_hosts: }
+
 	rabbitmq_vhost { 'packages':
 		ensure   => present,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_vhost { 'buildd':
 		ensure   => present,
-		provider => 'rabbitmqctl',
 	}
 
 	rabbitmq_vhost { 'dsa':
 		ensure   => present,
-		provider => 'rabbitmqctl',
+	}
+
+	rabbitmq_vhost { 'pet':
+		ensure   => present,
 	}
 
 	rabbitmq_user_permissions { 'admin@/':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => Rabbitmq_user['admin']
 	}
 
 	rabbitmq_user_permissions { 'admin@buildd':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['admin'],
-			Rabbitmq_vhost['buildd']
-		]
 	}
 
 	rabbitmq_user_permissions { 'admin@dsa':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['admin'],
-			Rabbitmq_vhost['dsa']
-		]
 	}
 
 	rabbitmq_user_permissions { 'admin@packages':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['admin'],
-			Rabbitmq_vhost['packages']
-		]
+	}
+
+	rabbitmq_user_permissions { 'admin@pet':
+		configure_permission => '.*',
+		read_permission      => '.*',
+		write_permission     => '.*',
 	}
 
 	rabbitmq_user_permissions { 'ftpteam@packages':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['ftpteam'],
-			Rabbitmq_vhost['packages']
-		]
 	}
 
 	rabbitmq_user_permissions { 'wbadm@packages':
-		read_permission      => 'unchecked',
-		write_permission     => 'wbadm',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['wbadm'],
-			Rabbitmq_vhost['packages']
-		]
+		read_permission  => 'unchecked',
+		write_permission => 'wbadm',
 	}
 
 	rabbitmq_user_permissions { 'buildd@buildd':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['buildd'],
-			Rabbitmq_vhost['buildd']
-		]
 	}
 
 	rabbitmq_user_permissions { 'wbadm@buildd':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['wbadm'],
-			Rabbitmq_vhost['buildd']
-		]
 	}
 
 	rabbitmq_user_permissions { 'mailadm@dsa':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['mailadm'],
-			Rabbitmq_vhost['dsa']
-		]
 	}
 
-	rabbitmq_user_permissions { 'mailly@dsa':
+	rabbitmq_user_permissions { 'pet-devel@pet':
 		configure_permission => '.*',
 		read_permission      => '.*',
 		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['mailly'],
-			Rabbitmq_vhost['dsa']
-		]
 	}
 
-	rabbitmq_user_permissions { 'muffat@dsa':
-		configure_permission => '.*',
-		read_permission      => '.*',
-		write_permission     => '.*',
-		provider             => 'rabbitmqctl',
-		require              => [
-			Rabbitmq_user['muffat'],
-			Rabbitmq_vhost['dsa']
-		]
+	rabbitmq_policy { 'mirror-dsa@dsa':
+		pattern    => '.*',
+		priority   => 0,
+		applyto    => 'all',
+		definition => {
+			'ha-mode'      => 'all',
+			'ha-sync-mode' => 'automatic',
+		},
 	}
 
-	rabbitmq_policy { 'mirror-dsa':
-		vhost   => 'dsa',
-		match   => '.*',
-		policy  => '{"ha-mode":"all"}',
-		require => Rabbitmq_vhost['dsa']
+	rabbitmq_policy { 'mirror-buildd@buildd':
+		pattern    => '.*',
+		priority   => 0,
+		applyto    => 'all',
+		definition => {
+			'ha-mode'      => 'all',
+			'ha-sync-mode' => 'automatic',
+		},
 	}
 
-	rabbitmq_policy { 'mirror-buildd':
-		vhost   => 'buildd',
-		match   => '.*',
-		policy  => '{"ha-mode":"all"}',
-		require => Rabbitmq_vhost['buildd']
+	rabbitmq_policy { 'mirror-packages@packages':
+		pattern    => '.*',
+		priority   => 0,
+		applyto    => 'all',
+		definition => {
+			'ha-mode'      => 'all',
+			'ha-sync-mode' => 'automatic',
+		},
 	}
 
-	rabbitmq_policy { 'mirror-packages':
-		vhost   => 'packages',
-		match   => '.*',
-		policy  => '{"ha-mode":"all"}',
-		require => Rabbitmq_vhost['packages']
+	rabbitmq_policy { 'mirror_pet@pet':
+		pattern    => '.*',
+		priority   => 0,
+		applyto    => 'all',
+		definition => {
+			'ha-mode'      => 'all',
+			'ha-sync-mode' => 'automatic',
+		},
 	}
 
 	rabbitmq_plugin { 'rabbitmq_management':
 		ensure   => present,
-		provider => 'rabbitmqplugins',
-		require  => Package['rabbitmq-server'],
-		notify   => Service['rabbitmq-server']
 	}
 	rabbitmq_plugin { 'rabbitmq_management_agent':
 		ensure   => present,
-		provider => 'rabbitmqplugins',
-		require  => Package['rabbitmq-server'],
-		notify   => Service['rabbitmq-server']
 	}
 	rabbitmq_plugin { 'rabbitmq_tracing':
 		ensure   => present,
-		provider => 'rabbitmqplugins',
-		require  => Package['rabbitmq-server'],
-		notify   => Service['rabbitmq-server']
 	}
 	rabbitmq_plugin { 'rabbitmq_management_visualiser':
 		ensure   => present,
-		provider => 'rabbitmqplugins',
-		require  => Package['rabbitmq-server'],
-		notify   => Service['rabbitmq-server']
 	}
 
 }