corpus_parole: dev/provisioning/modules/elasticsearch/manifests/shield/user.pp@cf0f23803a53 (annotated)

406 cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	1	# == Define: elasticsearch::shield::user
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	2	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	3	# Manages shield users.
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	4	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	5	# === Parameters
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	6	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	7	# [ensure]
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	8	# Whether the user should be present or not.
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	9	# Set to 'absent' to ensure a user is not installed
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	10	# Value type is string
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	11	# Default value: present
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	12	# This variable is optional
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	13	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	14	# [password]
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	15	# Password for the given user. A plaintext password will be managed
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	16	# with the esusers utility and requires a refresh to update, while
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	17	# a hashed password from the esusers utility will be managed manually
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	18	# in the uses file.
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	19	# Value type is string
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	20	# Default value: undef
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	21	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	22	# [roles]
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	23	# A list of roles to which the user should belong.
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	24	# Value type is array
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	25	# Default value: []
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	26	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	27	# === Examples
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	28	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	29	# # Creates and manages a user with membership in the 'logstash'
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	30	# # and 'kibana4' roles.
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	31	# elasticsearch::shield::user { 'bob':
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	32	# password => 'foobar',
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	33	# roles => ['logstash', 'kibana4'],
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	34	# }
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	35	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	36	# === Authors
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	37	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	38	# * Tyler Langlois <mailto:tyler@elastic.co>
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	39	#
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	40	define elasticsearch::shield::user (
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	41	$password,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	42	$ensure = 'present',
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	43	$roles = [],
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	44	) {
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	45	validate_string($ensure, $password)
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	46	validate_array($roles)
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	47
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	48	if $password =~ /^\$2a\$/ {
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	49	elasticsearch_shield_user { $name:
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	50	ensure => $ensure,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	51	hashed_password => $password,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	52	}
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	53	} else {
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	54	elasticsearch_shield_user { $name:
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	55	ensure => $ensure,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	56	password => $password,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	57	provider => 'esusers',
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	58	}
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	59	}
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	60
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	61	elasticsearch_shield_user_roles { $name:
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	62	ensure => $ensure,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	63	roles => $roles,
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	64	}
cf0f23803a53 upgrade elasticsearch to 5.0, upgrade ember ymh <ymh.work@gmail.com> parents: diff changeset	65	}

author	ymh <ymh.work@gmail.com>
	Wed, 09 Nov 2016 15:05:41 +0100
changeset 406	cf0f23803a53
permissions	-rwxr-xr-x