guest access for dak on ftp-master

author Peter Palfrader <peter@palfrader.org>

Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)

committer Peter Palfrader <peter@palfrader.org>

Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)
author Peter Palfrader <peter@palfrader.org>
Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)
committer Peter Palfrader <peter@palfrader.org>
Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)
diff --git a/data/common.yaml b/data/common.yaml

index 06f3e9b..a853b5b 100644 (file)
--- a/data/common.yaml
+++ b/data/common.yaml
@@ -51,6 +51,8 @@ bacula::client::storage_server: storace.debian.org
  roles::debsources::db_address: bmdb1.debian.org
  roles::debsources::db_port: 5440
  
+roles::ftp_master::db_port: 5433
+
  roles::postgresql::ftp_master_dak_replica::db_server: fasolo.debian.org
  roles::postgresql::ftp_master_dak_replica::db_port: 5433
  roles::postgresql::ftp_master_dak_replica::db_role: repuser
diff --git a/modules/roles/manifests/ftp_master.pp b/modules/roles/manifests/ftp_master.pp

index 7b3053a..b95330c 100644 (file)
--- a/modules/roles/manifests/ftp_master.pp
+++ b/modules/roles/manifests/ftp_master.pp
@@ -1,4 +1,10 @@
-class roles::ftp_master {
+# ftpmaster role
+#
+# @param db_port    port of the database cluster for ftp-master's dak
+class roles::ftp_master (
+  Integer $db_port,
+)
+{
    include roles::dakmaster
    include roles::signing
    include apache2
@@ -23,4 +29,13 @@ class roles::ftp_master {
      chain       => 'ssh',
      saddr       => $base::public_addresses,
    }
+
+  postgres::cluster::hba_entry { 'dak-guest':
+    pg_port  => $db_port,
+    database => 'projectb',
+    user     => 'guest',
+    address  => '127.0.0.1',
+    method   => 'trust',
+  }
+
  }
author	Peter Palfrader <peter@palfrader.org>
	Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Sun, 29 Sep 2019 16:55:44 +0000 (18:55 +0200)
data/common.yaml		patch \| blob \| history
modules/roles/manifests/ftp_master.pp		patch \| blob \| history