-
-
Notifications
You must be signed in to change notification settings - Fork 881
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Introducing Puppet Module Data #453
Changes from 3 commits
9bd63d3
678256f
4c5f1e3
00ec3f4
8012085
7a67a9d
c1ae12d
abe5824
54230bc
d8b93ee
9d2f485
e31f2e4
f5d456a
33dd9e2
fad593a
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,91 @@ | ||
--- | ||
nginx::config::temp_dir: /tmp | ||
nginx::config::run_dir: /var/nginx | ||
nginx::config::conf_template: nginx/conf.d/nginx.conf.erb | ||
nginx::config::proxy_conf_template: nginx/conf.d/proxy.conf.erb | ||
nginx::config::confd_purge: false | ||
nginx::config::vhost_purge: false | ||
nginx::config::worker_processes: 1 | ||
nginx::config::worker_connections: 1024 | ||
nginx::config::worker_rlimit_nofile: 1024 | ||
nginx::config::types_hash_max_size: 1024 | ||
nginx::config::types_hash_bucket_size: 512 | ||
nginx::config::names_hash_bucket_size: 64 | ||
nginx::config::names_hash_max_size: 512 | ||
nginx::config::multi_accept: off | ||
nginx::config::events_use: false | ||
nginx::config::sendfile: on | ||
nginx::config::keepalive_timeout: 65 | ||
nginx::config::http_tcp_nodelay: on | ||
nginx::config::http_tcp_nopush: off | ||
nginx::config::gzip: on | ||
nginx::config::server_tokens: on | ||
nginx::config::spdy: off | ||
nginx::config::ssl_stapling: off | ||
nginx::config::proxy_redirect: off | ||
nginx::config::proxy_set_header: | ||
- 'Host $host' | ||
- 'X-Real-IP $remote_addr' | ||
- 'X-Forwarded-For $proxy_add_x_forwarded_for' | ||
nginx::config::proxy_cache_path: false | ||
nginx::config::proxy_cache_levels: 1 | ||
nginx::config::proxy_cache_keys_zone: 'd2:100m' | ||
nginx::config::proxy_cache_max_size: 500m | ||
nginx::config::proxy_cache_inactive: 20m | ||
nginx::config::fastcgi_cache_path: false | ||
nginx::config::fastcgi_cache_levels: 1 | ||
nginx::config::fastcgi_cache_keys_zone: 'd3:100m' | ||
nginx::config::fastcgi_cache_max_size: 500m | ||
nginx::config::fastcgi_cache_inactive: 20m | ||
nginx::config::fastcgi_cache_key: false | ||
nginx::config::fastcgi_cache_use_stale: false | ||
nginx::config::client_body_temp_path: /var/nginx/client_body_temp | ||
nginx::config::client_body_buffer_size: 128k | ||
nginx::config::client_max_body_size: 10m | ||
nginx::config::proxy_temp_path: /var/nginx/proxy_temp | ||
nginx::config::proxy_connect_timeout: 90 | ||
nginx::config::proxy_send_timeout: 90 | ||
nginx::config::proxy_read_timeout: 90 | ||
nginx::config::proxy_buffers: '32 4k' | ||
nginx::config::proxy_http_version: 1.0 | ||
nginx::config::proxy_buffer_size: 8k | ||
nginx::config::proxy_headers_hash_bucket_size: 64 | ||
nginx::config::logdir: /var/log/nginx | ||
|
||
# Service restart after Nginx 0.7.53 could also be just | ||
# "/path/to/nginx/bin -s HUP" Some init scripts do a configtest, some don't. | ||
# If configtest_enable it's true then service restart will take | ||
# $nx_service_restart value, forcing configtest. | ||
nginx::config::configtest_enable: false | ||
nginx::config::service_restart: '/etc/init.d/nginx configtest && /etc/init.d/nginx restart' | ||
nginx::config::service_ensure: running | ||
|
||
nginx::config::mail: false | ||
|
||
nginx::config::http_cfg_append: false | ||
nginx::config::nginx_error_log: /var/log/nginx/error.log | ||
nginx::config::http_access_log: /var/log/nginx/access.log | ||
|
||
# package name depends on distribution, e.g. for Debian nginx-full | nginx-light | ||
nginx::config::package_name: nginx | ||
nginx::config::package_ensure: present | ||
nginx::config::package_source: nginx | ||
nginx::config::manage_repo: true | ||
|
||
nginx::config::root_group: root | ||
# Specific owner for sites-available directory | ||
nginx::config::sites_available_owner: root | ||
nginx::config::sites_available_group: root | ||
nginx::config::sites_available_mode: '0644' | ||
|
||
# Owner for all other files | ||
nginx::config::global_owner: root | ||
nginx::config::global_group: root | ||
nginx::config::global_mode: '0644' | ||
|
||
nginx::config::pid: /var/run/nginx.pid | ||
|
||
nginx::config::conf_dir: /etc/nginx | ||
|
||
nginx::config::super_user: true | ||
nginx::config::daemon_user: nginx |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
--- | ||
:hierarchy: | ||
- osfamily/%{::osfamily} | ||
- kernelversion/%{::kernelversion} | ||
- kernel/%{::kernel} | ||
- common |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
--- | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I think this will be problematic... There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Good catch. Joyent is the only use-case in |
||
nginx::config::conf_dir: /opt/local/etc/nginx | ||
nginx::config::daemon_user: www |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
--- | ||
nginx::config::pid: false | ||
nginx::config::daemon_user: http |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
--- | ||
nginx::config::daemon_user: www-data |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
--- | ||
nginx::config::conf_dir: /usr/local/etc/nginx | ||
nginx::config::daemon_user: www | ||
nginx::config::root_group: wheel |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
--- | ||
nginx::config::daemon_user: webservd |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,33 @@ | ||
# Usage of Hiera | ||
|
||
This module takes advantage of the `puppet-module-data` pattern as introduced | ||
by R.I. Pinnear to allow for a significant amount of flexibility with base | ||
configuration of the module. This is to reduce the amount of clutter starting | ||
to gather in `params.pp`, and provide a foundation for future enhancements. | ||
|
||
## Upgrading | ||
|
||
If you happen to be here because of some silly deprecation notice, it is | ||
probably because a manifest is declaring attributes for the Nginx Class. | ||
Upgrading should be easy! | ||
|
||
* Step 1: Make sure you have Hiera configured. https://docs.puppetlabs.com/hiera/1/puppet.html#puppet-3-and-newer | ||
* Step 2: Move any declared parameters to hiera. | ||
* Step 3: Profit! | ||
|
||
For example: | ||
|
||
``` | ||
class { 'nginx': | ||
logdir => '/data/nginx/logs', | ||
} | ||
``` | ||
|
||
should become in your hiera configs: | ||
|
||
``` | ||
nginx::config::logdir: /data/nginx/logs | ||
``` | ||
|
||
Please note: This module takes advantage of Puppet 3 data module bindings. | ||
Be aware of any gotchas that accompany this. Take a look at https://docs.puppetlabs.com/hiera/1/puppet.html#limitations |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Facter falls back to
kernel
when it doesn't have a specific match forosfamily
, so I think having kernel in the hierarchy is redundantThere was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
That functionality is only with Facter 2.2, right? I don't know if we can assert that across the board yet. Whadda think?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks like it's always been that way: puppetlabs/facter@8f938c1
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Heh. TIL. :) Incoming change.