freighthop 0.0.6 → 0.1.0
Sign up to get free protection for your applications and to get access to all the features.
- data/Puppetfile +1 -0
- data/Puppetfile.lock +3 -0
- data/Vagrantfile +1 -1
- data/bin/fh +2 -78
- data/lib/freighthop/cli/help.rb +69 -0
- data/lib/freighthop/cli/ssh.rb +46 -0
- data/lib/freighthop/cli/vagrant.rb +26 -0
- data/lib/freighthop/cli.rb +40 -0
- data/lib/freighthop/config.rb +4 -0
- data/lib/freighthop/vagrant_env.rb +24 -0
- data/lib/freighthop/version.rb +1 -1
- data/lib/freighthop.rb +7 -4
- data/local_modules/freighthop/manifests/database/mysql.pp +20 -0
- data/local_modules/freighthop/manifests/database/postgres.pp +6 -6
- data/local_modules/freighthop/manifests/database.pp +6 -8
- data/local_modules/freighthop/manifests/init.pp +1 -8
- data/local_modules/freighthop/manifests/params.pp +0 -3
- data/modules/apt/CHANGELOG +12 -2
- data/modules/apt/Gemfile +6 -5
- data/modules/apt/Gemfile.lock +40 -5
- data/modules/apt/Modulefile +1 -1
- data/modules/apt/README.md +2 -1
- data/modules/apt/Rakefile +1 -0
- data/modules/apt/manifests/init.pp +4 -1
- data/modules/apt/manifests/ppa.pp +1 -1
- data/modules/apt/manifests/update.pp +1 -0
- data/modules/apt/metadata.json +21 -13
- data/modules/apt/spec/defines/ppa_spec.rb +3 -3
- data/modules/apt/spec/defines/source_spec.rb +2 -2
- data/modules/apt/spec/spec_helper_system.rb +30 -0
- data/modules/apt/spec/system/apt_builddep_spec.rb +38 -0
- data/modules/apt/spec/system/apt_key_spec.rb +53 -0
- data/modules/apt/spec/system/apt_ppa_spec.rb +59 -0
- data/modules/apt/spec/system/apt_source_spec.rb +51 -0
- data/modules/apt/spec/system/basic_spec.rb +10 -0
- data/modules/apt/spec/system/class_spec.rb +20 -0
- data/modules/apt/templates/source.list.erb +2 -2
- data/modules/freighthop/manifests/database/mysql.pp +20 -0
- data/modules/freighthop/manifests/database/postgres.pp +6 -6
- data/modules/freighthop/manifests/database.pp +6 -8
- data/modules/freighthop/manifests/init.pp +1 -8
- data/modules/freighthop/manifests/params.pp +0 -3
- data/modules/mysql/CHANGELOG +403 -0
- data/modules/mysql/Gemfile +24 -0
- data/modules/mysql/Gemfile.lock +129 -0
- data/modules/mysql/LICENSE +201 -0
- data/modules/mysql/Modulefile +9 -0
- data/modules/mysql/README.md +492 -0
- data/modules/mysql/Rakefile +2 -0
- data/modules/mysql/TODO +8 -0
- data/modules/mysql/files/mysqltuner.pl +966 -0
- data/modules/mysql/lib/puppet/parser/functions/mysql_deepmerge.rb +52 -0
- data/modules/mysql/lib/puppet/parser/functions/mysql_password.rb +15 -0
- data/modules/mysql/lib/puppet/parser/functions/mysql_strip_hash.rb +21 -0
- data/modules/mysql/lib/puppet/provider/database/mysql.rb +52 -0
- data/modules/mysql/lib/puppet/provider/database_grant/mysql.rb +210 -0
- data/modules/mysql/lib/puppet/provider/database_user/mysql.rb +76 -0
- data/modules/mysql/lib/puppet/provider/mysql.rb +67 -0
- data/modules/mysql/lib/puppet/provider/mysql_database/mysql.rb +68 -0
- data/modules/mysql/lib/puppet/provider/mysql_grant/mysql.rb +115 -0
- data/modules/mysql/lib/puppet/provider/mysql_user/mysql.rb +115 -0
- data/modules/mysql/lib/puppet/type/database.rb +21 -0
- data/modules/mysql/lib/puppet/type/database_grant.rb +79 -0
- data/modules/mysql/lib/puppet/type/database_user.rb +31 -0
- data/modules/mysql/lib/puppet/type/mysql_database.rb +22 -0
- data/modules/mysql/lib/puppet/type/mysql_grant.rb +72 -0
- data/modules/mysql/lib/puppet/type/mysql_user.rb +45 -0
- data/modules/mysql/manifests/backup.pp +31 -0
- data/modules/mysql/manifests/bindings/java.pp +10 -0
- data/modules/mysql/manifests/bindings/perl.pp +10 -0
- data/modules/mysql/manifests/bindings/php.pp +10 -0
- data/modules/mysql/manifests/bindings/python.pp +10 -0
- data/modules/mysql/manifests/bindings/ruby.pp +10 -0
- data/modules/mysql/manifests/bindings.pp +33 -0
- data/modules/mysql/manifests/client/install.pp +8 -0
- data/modules/mysql/manifests/client.pp +27 -0
- data/modules/mysql/manifests/db.pp +59 -0
- data/modules/mysql/manifests/init.pp +100 -0
- data/modules/mysql/manifests/params.pp +230 -0
- data/modules/mysql/manifests/server/account_security.pp +22 -0
- data/modules/mysql/manifests/server/backup.pp +56 -0
- data/modules/mysql/manifests/server/config.pp +31 -0
- data/modules/mysql/manifests/server/install.pp +9 -0
- data/modules/mysql/manifests/server/monitor.pp +24 -0
- data/modules/mysql/manifests/server/mysqltuner.pp +9 -0
- data/modules/mysql/manifests/server/providers.pp +8 -0
- data/modules/mysql/manifests/server/root_password.pp +21 -0
- data/modules/mysql/manifests/server/service.pp +19 -0
- data/modules/mysql/manifests/server.pp +69 -0
- data/modules/mysql/metadata.json +289 -0
- data/modules/mysql/spec/classes/mysql_bindings_spec.rb +58 -0
- data/modules/mysql/spec/classes/mysql_client_spec.rb +16 -0
- data/modules/mysql/spec/classes/mysql_server_account_security_spec.rb +41 -0
- data/modules/mysql/spec/classes/mysql_server_backup_spec.rb +112 -0
- data/modules/mysql/spec/classes/mysql_server_monitor_spec.rb +31 -0
- data/modules/mysql/spec/classes/mysql_server_mysqltuner_spec.rb +5 -0
- data/modules/mysql/spec/classes/mysql_server_spec.rb +162 -0
- data/modules/mysql/spec/defines/mysql_db_spec.rb +51 -0
- data/modules/mysql/spec/spec.opts +6 -0
- data/modules/mysql/spec/spec_helper.rb +5 -0
- data/modules/mysql/spec/spec_helper_system.rb +28 -0
- data/modules/mysql/spec/system/mysql_account_delete_spec.rb +35 -0
- data/modules/mysql/spec/system/mysql_backup_spec.rb +77 -0
- data/modules/mysql/spec/system/mysql_bindings_spec.rb +90 -0
- data/modules/mysql/spec/system/mysql_db_spec.rb +61 -0
- data/modules/mysql/spec/system/mysql_server_monitor_spec.rb +30 -0
- data/modules/mysql/spec/system/mysql_server_root_password_spec.rb +71 -0
- data/modules/mysql/spec/system/mysql_server_spec.rb +85 -0
- data/modules/mysql/spec/system/types/mysql_grant_spec.rb +314 -0
- data/modules/mysql/spec/system/types/mysql_user_spec.rb +35 -0
- data/modules/mysql/spec/unit/mysql_password_spec.rb +27 -0
- data/modules/mysql/spec/unit/puppet/functions/mysql_deepmerge_spec.rb +77 -0
- data/modules/mysql/spec/unit/puppet/provider/database/mysql_spec.rb +86 -0
- data/modules/mysql/spec/unit/puppet/provider/database_grant/mysql_spec.rb +95 -0
- data/modules/mysql/spec/unit/puppet/provider/database_user/mysql_spec.rb +119 -0
- data/modules/mysql/spec/unit/puppet/provider/mysql_database/mysql_spec.rb +118 -0
- data/modules/mysql/spec/unit/puppet/provider/mysql_user/mysql_spec.rb +130 -0
- data/modules/mysql/spec/unit/puppet/type/mysql_database_spec.rb +29 -0
- data/modules/mysql/spec/unit/puppet/type/mysql_user_spec.rb +30 -0
- data/modules/mysql/templates/my.cnf.erb +17 -0
- data/modules/mysql/templates/my.cnf.pass.erb +7 -0
- data/modules/mysql/templates/my.conf.cnf.erb +17 -0
- data/modules/mysql/templates/mysqlbackup.sh.erb +57 -0
- data/modules/mysql/tests/backup.pp +8 -0
- data/modules/mysql/tests/bindings.pp +3 -0
- data/modules/mysql/tests/init.pp +1 -0
- data/modules/mysql/tests/java.pp +1 -0
- data/modules/mysql/tests/mysql_database.pp +12 -0
- data/modules/mysql/tests/mysql_grant.pp +5 -0
- data/modules/mysql/tests/mysql_user.pp +23 -0
- data/modules/mysql/tests/perl.pp +1 -0
- data/modules/mysql/tests/python.pp +1 -0
- data/modules/mysql/tests/ruby.pp +1 -0
- data/modules/mysql/tests/server/account_security.pp +4 -0
- data/modules/mysql/tests/server/config.pp +11 -0
- data/modules/mysql/tests/server.pp +3 -0
- data/modules/postgresql/Changelog +191 -0
- data/modules/postgresql/Gemfile +1 -0
- data/modules/postgresql/Gemfile.lock +9 -0
- data/modules/postgresql/LICENSE +198 -12
- data/modules/postgresql/Modulefile +2 -2
- data/modules/postgresql/NOTICE +14 -0
- data/modules/postgresql/README.md +435 -184
- data/modules/postgresql/files/validate_postgresql_connection.sh +31 -0
- data/modules/postgresql/lib/puppet/provider/postgresql_conf/parsed.rb +37 -0
- data/modules/postgresql/lib/puppet/provider/postgresql_psql/ruby.rb +4 -0
- data/modules/postgresql/lib/puppet/type/postgresql_conf.rb +31 -0
- data/modules/postgresql/lib/puppet/type/postgresql_psql.rb +4 -0
- data/modules/postgresql/manifests/client.pp +17 -16
- data/modules/postgresql/manifests/globals.pp +95 -0
- data/modules/postgresql/manifests/lib/devel.pp +15 -0
- data/modules/postgresql/manifests/lib/java.pp +15 -0
- data/modules/postgresql/manifests/lib/python.pp +13 -0
- data/modules/postgresql/manifests/params.pp +127 -222
- data/modules/postgresql/manifests/repo/apt_postgresql_org.pp +30 -0
- data/modules/postgresql/manifests/repo/yum_postgresql_org.pp +38 -0
- data/modules/postgresql/manifests/repo.pp +22 -0
- data/modules/postgresql/manifests/server/config.pp +113 -0
- data/modules/postgresql/manifests/server/config_entry.pp +43 -0
- data/modules/postgresql/manifests/server/contrib.pp +27 -0
- data/modules/postgresql/manifests/server/database.pp +75 -0
- data/modules/postgresql/manifests/server/database_grant.pp +18 -0
- data/modules/postgresql/manifests/server/db.pp +36 -0
- data/modules/postgresql/manifests/server/firewall.pp +21 -0
- data/modules/postgresql/manifests/server/grant.pp +81 -0
- data/modules/postgresql/manifests/server/initdb.pp +52 -0
- data/modules/postgresql/manifests/server/install.pp +49 -0
- data/modules/postgresql/manifests/server/passwd.pp +34 -0
- data/modules/postgresql/manifests/server/pg_hba_rule.pp +54 -0
- data/modules/postgresql/manifests/server/plperl.pp +27 -0
- data/modules/postgresql/manifests/server/reload.pp +15 -0
- data/modules/postgresql/manifests/{role.pp → server/role.pp} +19 -33
- data/modules/postgresql/manifests/server/service.pp +40 -0
- data/modules/postgresql/manifests/{table_grant.pp → server/table_grant.pp} +4 -4
- data/modules/postgresql/manifests/server/tablespace.pp +42 -0
- data/modules/postgresql/manifests/server.pp +61 -83
- data/modules/postgresql/manifests/validate_db_connection.pp +49 -50
- data/modules/postgresql/metadata.json +123 -73
- data/modules/postgresql/spec/spec_helper_system.rb +13 -1
- data/modules/postgresql/spec/system/client_spec.rb +22 -0
- data/modules/postgresql/spec/system/common_patterns_spec.rb +53 -0
- data/modules/postgresql/spec/system/contrib_spec.rb +33 -0
- data/modules/postgresql/spec/system/lib/devel_spec.rb +22 -0
- data/modules/postgresql/spec/system/lib/java_spec.rb +25 -0
- data/modules/postgresql/spec/system/lib/python_spec.rb +24 -0
- data/modules/postgresql/spec/system/postgresql_psql_spec.rb +51 -0
- data/modules/postgresql/spec/system/server/config_entry_spec.rb +32 -0
- data/modules/postgresql/spec/system/server/database_grant_spec.rb +54 -0
- data/modules/postgresql/spec/system/server/database_spec.rb +35 -0
- data/modules/postgresql/spec/system/server/db_spec.rb +143 -0
- data/modules/postgresql/spec/system/server/grant_spec.rb +55 -0
- data/modules/postgresql/spec/system/server/pg_hba_rule_spec.rb +85 -0
- data/modules/postgresql/spec/system/server/plperl_spec.rb +29 -0
- data/modules/postgresql/spec/system/server/role_spec.rb +103 -0
- data/modules/postgresql/spec/system/server/table_grant_spec.rb +72 -0
- data/modules/postgresql/spec/system/server/tablespace_spec.rb +74 -0
- data/modules/postgresql/spec/system/server_spec.rb +217 -0
- data/modules/postgresql/spec/system/validate_db_connection_spec.rb +91 -0
- data/modules/postgresql/spec/unit/classes/client_spec.rb +27 -2
- data/modules/postgresql/spec/unit/classes/globals_spec.rb +28 -0
- data/modules/postgresql/spec/unit/classes/lib/devel_spec.rb +12 -0
- data/modules/postgresql/spec/unit/classes/{postgresql_java_spec.rb → lib/java_spec.rb} +9 -19
- data/modules/postgresql/spec/unit/classes/lib/python_spec.rb +31 -0
- data/modules/postgresql/spec/unit/classes/params_spec.rb +2 -1
- data/modules/postgresql/spec/unit/classes/repo_spec.rb +17 -0
- data/modules/postgresql/spec/unit/classes/server/contrib_spec.rb +42 -0
- data/modules/postgresql/spec/unit/classes/server/initdb_spec.rb +28 -0
- data/modules/postgresql/spec/unit/classes/server/plperl_spec.rb +45 -0
- data/modules/postgresql/spec/unit/classes/server_spec.rb +83 -2
- data/modules/postgresql/spec/unit/defines/server/config_entry_spec.rb +23 -0
- data/modules/postgresql/spec/unit/defines/server/database_grant_spec.rb +26 -0
- data/modules/postgresql/spec/unit/defines/server/database_spec.rb +16 -0
- data/modules/postgresql/spec/unit/defines/server/db_spec.rb +28 -0
- data/modules/postgresql/spec/unit/defines/{database_grant_spec.rb → server/grant_spec.rb} +7 -4
- data/modules/postgresql/spec/unit/defines/{pg_hba_rule_spec.rb → server/pg_hba_rule_spec.rb} +59 -2
- data/modules/postgresql/spec/unit/defines/server/role_spec.rb +23 -0
- data/modules/postgresql/spec/unit/defines/server/table_grant_spec.rb +27 -0
- data/modules/postgresql/spec/unit/defines/server/tablespace_spec.rb +23 -0
- data/modules/postgresql/spec/unit/defines/validate_db_connection_spec.rb +22 -9
- data/modules/postgresql/spec/unit/provider/postgresql_conf/parsed_spec.rb +112 -0
- data/modules/postgresql/spec/unit/puppet/provider/postgresql_psql/ruby_spec.rb +29 -0
- data/modules/postgresql/spec/unit/puppet/type/postgresql_psql_spec.rb +1 -0
- data/modules/postgresql/spec/unit/type/postgresql_conf_spec.rb +50 -0
- metadata +177 -53
- data/modules/postgresql/examples/init.pp +0 -1
- data/modules/postgresql/examples/official-postgresql-repos.pp +0 -19
- data/modules/postgresql/examples/postgresql_database.pp +0 -22
- data/modules/postgresql/examples/postgresql_db.pp +0 -30
- data/modules/postgresql/examples/postgresql_grant.pp +0 -14
- data/modules/postgresql/examples/postgresql_pg_hba_rule.pp +0 -18
- data/modules/postgresql/examples/postgresql_pgconf_extras.pp +0 -19
- data/modules/postgresql/examples/postgresql_tablespace.pp +0 -73
- data/modules/postgresql/examples/postgresql_user.pp +0 -28
- data/modules/postgresql/examples/server.pp +0 -10
- data/modules/postgresql/lib/facter/postgres_default_version.rb +0 -69
- data/modules/postgresql/manifests/config/afterservice.pp +0 -47
- data/modules/postgresql/manifests/config/beforeservice.pp +0 -171
- data/modules/postgresql/manifests/config.pp +0 -74
- data/modules/postgresql/manifests/contrib.pp +0 -29
- data/modules/postgresql/manifests/database.pp +0 -85
- data/modules/postgresql/manifests/database_grant.pp +0 -35
- data/modules/postgresql/manifests/database_user.pp +0 -60
- data/modules/postgresql/manifests/db.pp +0 -77
- data/modules/postgresql/manifests/devel.pp +0 -27
- data/modules/postgresql/manifests/grant.pp +0 -77
- data/modules/postgresql/manifests/init.pp +0 -145
- data/modules/postgresql/manifests/initdb.pp +0 -52
- data/modules/postgresql/manifests/java.pp +0 -29
- data/modules/postgresql/manifests/package_source/apt_postgresql_org.pp +0 -21
- data/modules/postgresql/manifests/package_source/yum_postgresql_org.pp +0 -30
- data/modules/postgresql/manifests/pg_hba.pp +0 -19
- data/modules/postgresql/manifests/pg_hba_rule.pp +0 -41
- data/modules/postgresql/manifests/plperl.pp +0 -24
- data/modules/postgresql/manifests/psql.pp +0 -56
- data/modules/postgresql/manifests/python.pp +0 -18
- data/modules/postgresql/manifests/tablespace.pp +0 -59
- data/modules/postgresql/spec/system/install_spec.rb +0 -707
- data/modules/postgresql/spec/system/non_defaults_spec.rb +0 -114
- data/modules/postgresql/spec/unit/classes/contrib_spec.rb +0 -11
- data/modules/postgresql/spec/unit/classes/devel_spec.rb +0 -11
- data/modules/postgresql/spec/unit/classes/init_spec.rb +0 -71
- data/modules/postgresql/spec/unit/classes/postgresql_python_spec.rb +0 -53
- data/modules/postgresql/spec/unit/defines/database_spec.rb +0 -14
- data/modules/postgresql/spec/unit/defines/database_user_spec.rb +0 -19
- data/modules/postgresql/spec/unit/defines/db_spec.rb +0 -20
- data/modules/postgresql/spec/unit/defines/pg_hba_spec.rb +0 -20
- data/modules/postgresql/spec/unit/defines/psql_spec.rb +0 -20
- data/modules/postgresql/spec/unit/defines/role_spec.rb +0 -14
- data/modules/postgresql/spec/unit/defines/tablespace_spec.rb +0 -19
- data/modules/postgresql/spec/unit/facts/postgres_default_version_spec.rb +0 -14
@@ -0,0 +1,115 @@
|
|
1
|
+
require File.expand_path(File.join(File.dirname(__FILE__), '..', 'mysql'))
|
2
|
+
Puppet::Type.type(:mysql_user).provide(:mysql, :parent => Puppet::Provider::Mysql) do
|
3
|
+
|
4
|
+
desc 'manage users for a mysql database.'
|
5
|
+
commands :mysql => 'mysql'
|
6
|
+
|
7
|
+
# Build a property_hash containing all the discovered information about MySQL
|
8
|
+
# users.
|
9
|
+
def self.instances
|
10
|
+
users = mysql([defaults_file, '-NBe',
|
11
|
+
"SELECT CONCAT(User, '@',Host) AS User FROM mysql.user"].compact).split("\n")
|
12
|
+
# To reduce the number of calls to MySQL we collect all the properties in
|
13
|
+
# one big swoop.
|
14
|
+
users.collect do |name|
|
15
|
+
query = "SELECT MAX_USER_CONNECTIONS, MAX_CONNECTIONS, MAX_QUESTIONS, MAX_UPDATES, PASSWORD FROM mysql.user WHERE CONCAT(user, '@', host) = '#{name}'"
|
16
|
+
@max_user_connections, @max_connections_per_hour, @max_queries_per_hour,
|
17
|
+
@max_updates_per_hour, @password = mysql([defaults_file, "-NBe", query].compact).split(/\s/)
|
18
|
+
|
19
|
+
new(:name => name,
|
20
|
+
:ensure => :present,
|
21
|
+
:password_hash => @password,
|
22
|
+
:max_user_connections => @max_user_connections,
|
23
|
+
:max_connections_per_hour => @max_connections_per_hour,
|
24
|
+
:max_queries_per_hour => @max_queries_per_hour,
|
25
|
+
:max_updates_per_hour => @max_updates_per_hour
|
26
|
+
)
|
27
|
+
end
|
28
|
+
end
|
29
|
+
|
30
|
+
# We iterate over each mysql_user entry in the catalog and compare it against
|
31
|
+
# the contents of the property_hash generated by self.instances
|
32
|
+
def self.prefetch(resources)
|
33
|
+
users = instances
|
34
|
+
resources.keys.each do |name|
|
35
|
+
if provider = users.find { |user| user.name == name }
|
36
|
+
resources[name].provider = provider
|
37
|
+
end
|
38
|
+
end
|
39
|
+
end
|
40
|
+
|
41
|
+
def create
|
42
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
43
|
+
password_hash = @resource.value(:password_hash)
|
44
|
+
max_user_connections = @resource.value(:max_user_connections) || 0
|
45
|
+
max_connections_per_hour = @resource.value(:max_connections_per_hour) || 0
|
46
|
+
max_queries_per_hour = @resource.value(:max_queries_per_hour) || 0
|
47
|
+
max_updates_per_hour = @resource.value(:max_updates_per_hour) || 0
|
48
|
+
|
49
|
+
mysql([defaults_file, '-e', "GRANT USAGE ON *.* TO '#{merged_name}' IDENTIFIED BY PASSWORD '#{password_hash}' WITH MAX_USER_CONNECTIONS #{max_user_connections} MAX_CONNECTIONS_PER_HOUR #{max_connections_per_hour} MAX_QUERIES_PER_HOUR #{max_queries_per_hour} MAX_UPDATES_PER_HOUR #{max_updates_per_hour}"].compact)
|
50
|
+
|
51
|
+
@property_hash[:ensure] = :present
|
52
|
+
@property_hash[:password_hash] = password_hash
|
53
|
+
@property_hash[:max_user_connections] = max_user_connections
|
54
|
+
@property_hash[:max_connections_per_hour] = max_connections_per_hour
|
55
|
+
@property_hash[:max_queries_per_hour] = max_queries_per_hour
|
56
|
+
@property_hash[:max_updates_per_hour] = max_updates_per_hour
|
57
|
+
|
58
|
+
exists? ? (return true) : (return false)
|
59
|
+
end
|
60
|
+
|
61
|
+
def destroy
|
62
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
63
|
+
mysql([defaults_file, '-e', "DROP USER '#{merged_name}'"].compact)
|
64
|
+
|
65
|
+
@property_hash.clear
|
66
|
+
exists? ? (return false) : (return true)
|
67
|
+
end
|
68
|
+
|
69
|
+
def exists?
|
70
|
+
@property_hash[:ensure] == :present || false
|
71
|
+
end
|
72
|
+
|
73
|
+
##
|
74
|
+
## MySQL user properties
|
75
|
+
##
|
76
|
+
|
77
|
+
# Generates method for all properties of the property_hash
|
78
|
+
mk_resource_methods
|
79
|
+
|
80
|
+
def password_hash=(string)
|
81
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
82
|
+
mysql([defaults_file, '-e', "SET PASSWORD FOR '#{merged_name}' = '#{string}'"].compact)
|
83
|
+
|
84
|
+
password_hash == string ? (return true) : (return false)
|
85
|
+
end
|
86
|
+
|
87
|
+
def max_user_connections=(int)
|
88
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
89
|
+
mysql([defaults_file, '-e', "GRANT USAGE ON *.* TO '#{merged_name}' WITH MAX_USER_CONNECTIONS #{int}"].compact).chomp
|
90
|
+
|
91
|
+
max_user_connections == int ? (return true) : (return false)
|
92
|
+
end
|
93
|
+
|
94
|
+
def max_connections_per_hour=(int)
|
95
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
96
|
+
mysql([defaults_file, '-e', "GRANT USAGE ON *.* TO '#{merged_name}' WITH MAX_CONNECTIONS_PER_HOUR #{int}"].compact).chomp
|
97
|
+
|
98
|
+
max_connections_per_hour == int ? (return true) : (return false)
|
99
|
+
end
|
100
|
+
|
101
|
+
def max_queries_per_hour=(int)
|
102
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
103
|
+
mysql([defaults_file, '-e', "GRANT USAGE ON *.* TO '#{merged_name}' WITH MAX_QUERIES_PER_HOUR #{int}"].compact).chomp
|
104
|
+
|
105
|
+
max_queries_per_hour == int ? (return true) : (return false)
|
106
|
+
end
|
107
|
+
|
108
|
+
def max_updates_per_hour=(int)
|
109
|
+
merged_name = @resource[:name].sub('@', "'@'")
|
110
|
+
mysql([defaults_file, '-e', "GRANT USAGE ON *.* TO '#{merged_name}' WITH MAX_UPDATES_PER_HOUR #{int}"].compact).chomp
|
111
|
+
|
112
|
+
max_updates_per_hour == int ? (return true) : (return false)
|
113
|
+
end
|
114
|
+
|
115
|
+
end
|
@@ -0,0 +1,21 @@
|
|
1
|
+
# This has to be a separate type to enable collecting
|
2
|
+
Puppet::Type.newtype(:database) do
|
3
|
+
@doc = 'Manage databases.'
|
4
|
+
|
5
|
+
ensurable
|
6
|
+
|
7
|
+
newparam(:name, :namevar=>true) do
|
8
|
+
desc 'The name of the database.'
|
9
|
+
validate do |value|
|
10
|
+
Puppet.warning("database has been deprecated in favor of mysql_database.")
|
11
|
+
true
|
12
|
+
end
|
13
|
+
end
|
14
|
+
|
15
|
+
newproperty(:charset) do
|
16
|
+
desc 'The characterset to use for a database'
|
17
|
+
defaultto :utf8
|
18
|
+
newvalue(/^\S+$/)
|
19
|
+
end
|
20
|
+
|
21
|
+
end
|
@@ -0,0 +1,79 @@
|
|
1
|
+
# This has to be a separate type to enable collecting
|
2
|
+
Puppet::Type.newtype(:database_grant) do
|
3
|
+
@doc = "Manage a database user's rights."
|
4
|
+
#ensurable
|
5
|
+
|
6
|
+
autorequire :database do
|
7
|
+
# puts "Starting db autoreq for %s" % self[:name]
|
8
|
+
reqs = []
|
9
|
+
matches = self[:name].match(/^([^@]+)@([^\/]+)\/(.+)$/)
|
10
|
+
unless matches.nil?
|
11
|
+
reqs << matches[3]
|
12
|
+
end
|
13
|
+
# puts "Autoreq: '%s'" % reqs.join(" ")
|
14
|
+
reqs
|
15
|
+
end
|
16
|
+
|
17
|
+
autorequire :database_user do
|
18
|
+
# puts "Starting user autoreq for %s" % self[:name]
|
19
|
+
reqs = []
|
20
|
+
matches = self[:name].match(/^([^@]+)@([^\/]+).*$/)
|
21
|
+
unless matches.nil?
|
22
|
+
reqs << '%s@%s' % [ matches[1], matches[2] ]
|
23
|
+
end
|
24
|
+
# puts "Autoreq: '%s'" % reqs.join(" ")
|
25
|
+
reqs
|
26
|
+
end
|
27
|
+
|
28
|
+
newparam(:name, :namevar=>true) do
|
29
|
+
desc 'The primary key: either user@host for global privilges or user@host/database for database specific privileges'
|
30
|
+
validate do |value|
|
31
|
+
Puppet.warning("database_grant has been deprecated in favor of mysql_grant.")
|
32
|
+
true
|
33
|
+
end
|
34
|
+
end
|
35
|
+
|
36
|
+
newproperty(:privileges, :array_matching => :all) do
|
37
|
+
desc 'The privileges the user should have. The possible values are implementation dependent.'
|
38
|
+
|
39
|
+
def should_to_s(newvalue = @should)
|
40
|
+
if newvalue
|
41
|
+
unless newvalue.is_a?(Array)
|
42
|
+
newvalue = [ newvalue ]
|
43
|
+
end
|
44
|
+
newvalue.collect do |v| v.downcase end.sort.join ', '
|
45
|
+
else
|
46
|
+
nil
|
47
|
+
end
|
48
|
+
end
|
49
|
+
|
50
|
+
def is_to_s(currentvalue = @is)
|
51
|
+
if currentvalue
|
52
|
+
unless currentvalue.is_a?(Array)
|
53
|
+
currentvalue = [ currentvalue ]
|
54
|
+
end
|
55
|
+
currentvalue.collect do |v| v.downcase end.sort.join ', '
|
56
|
+
else
|
57
|
+
nil
|
58
|
+
end
|
59
|
+
end
|
60
|
+
|
61
|
+
# use the sorted outputs for comparison
|
62
|
+
def insync?(is)
|
63
|
+
if defined? @should and @should
|
64
|
+
case self.should_to_s
|
65
|
+
when 'all'
|
66
|
+
self.provider.all_privs_set?
|
67
|
+
when self.is_to_s(is)
|
68
|
+
true
|
69
|
+
else
|
70
|
+
false
|
71
|
+
end
|
72
|
+
else
|
73
|
+
true
|
74
|
+
end
|
75
|
+
end
|
76
|
+
end
|
77
|
+
|
78
|
+
end
|
79
|
+
|
@@ -0,0 +1,31 @@
|
|
1
|
+
# This has to be a separate type to enable collecting
|
2
|
+
Puppet::Type.newtype(:database_user) do
|
3
|
+
@doc = 'Manage a database user. This includes management of users password as well as privileges'
|
4
|
+
|
5
|
+
ensurable
|
6
|
+
|
7
|
+
newparam(:name, :namevar=>true) do
|
8
|
+
desc "The name of the user. This uses the 'username@hostname' or username@hostname."
|
9
|
+
validate do |value|
|
10
|
+
Puppet.warning("database has been deprecated in favor of mysql_user.")
|
11
|
+
# https://dev.mysql.com/doc/refman/5.1/en/account-names.html
|
12
|
+
# Regex should problably be more like this: /^[`'"]?[^`'"]*[`'"]?@[`'"]?[\w%\.]+[`'"]?$/
|
13
|
+
raise(ArgumentError, "Invalid database user #{value}") unless value =~ /[\w-]*@[\w%\.:]+/
|
14
|
+
username = value.split('@')[0]
|
15
|
+
if username.size > 16
|
16
|
+
raise ArgumentError, 'MySQL usernames are limited to a maximum of 16 characters'
|
17
|
+
end
|
18
|
+
end
|
19
|
+
end
|
20
|
+
|
21
|
+
newproperty(:password_hash) do
|
22
|
+
desc 'The password hash of the user. Use mysql_password() for creating such a hash.'
|
23
|
+
newvalue(/\w+/)
|
24
|
+
end
|
25
|
+
|
26
|
+
newproperty(:max_user_connections) do
|
27
|
+
desc "Max concurrent connections for the user. 0 means no (or global) limit."
|
28
|
+
newvalue(/\d+/)
|
29
|
+
end
|
30
|
+
|
31
|
+
end
|
@@ -0,0 +1,22 @@
|
|
1
|
+
Puppet::Type.newtype(:mysql_database) do
|
2
|
+
@doc = 'Manage MySQL databases.'
|
3
|
+
|
4
|
+
ensurable
|
5
|
+
|
6
|
+
newparam(:name, :namevar => true) do
|
7
|
+
desc 'The name of the MySQL database to manage.'
|
8
|
+
end
|
9
|
+
|
10
|
+
newproperty(:charset) do
|
11
|
+
desc 'The CHARACTER SET setting for the database'
|
12
|
+
defaultto :utf8
|
13
|
+
newvalue(/^\S+$/)
|
14
|
+
end
|
15
|
+
|
16
|
+
newproperty(:collate) do
|
17
|
+
desc 'The COLLATE setting for the database'
|
18
|
+
defaultto :utf8_general_ci
|
19
|
+
newvalue(/^\S+$/)
|
20
|
+
end
|
21
|
+
|
22
|
+
end
|
@@ -0,0 +1,72 @@
|
|
1
|
+
# This has to be a separate type to enable collecting
|
2
|
+
Puppet::Type.newtype(:mysql_grant) do
|
3
|
+
@doc = "Manage a MySQL user's rights."
|
4
|
+
ensurable
|
5
|
+
|
6
|
+
autorequire(:file) { '/root/.my.cnf' }
|
7
|
+
|
8
|
+
def initialize(*args)
|
9
|
+
super
|
10
|
+
# Forcibly munge any privilege with 'ALL' in the array to exist of just
|
11
|
+
# 'ALL'. This can't be done in the munge in the property as that iterates
|
12
|
+
# over the array and there's no way to replace the entire array before it's
|
13
|
+
# returned to the provider.
|
14
|
+
if self[:ensure] == :present and Array(self[:privileges]).count > 1 and self[:privileges].to_s.include?('ALL')
|
15
|
+
self[:privileges] = 'ALL'
|
16
|
+
end
|
17
|
+
# Sort the privileges array in order to ensure the comparision in the provider
|
18
|
+
# self.instances method match. Otherwise this causes it to keep resetting the
|
19
|
+
# privileges.
|
20
|
+
self[:privileges] = Array(self[:privileges]).sort!
|
21
|
+
end
|
22
|
+
|
23
|
+
validate do
|
24
|
+
fail('privileges parameter is required.') if self[:ensure] == :present and self[:privileges].nil?
|
25
|
+
fail('table parameter is required.') if self[:ensure] == :present and self[:table].nil?
|
26
|
+
fail('user parameter is required.') if self[:ensure] == :present and self[:user].nil?
|
27
|
+
end
|
28
|
+
|
29
|
+
newparam(:name, :namevar => true) do
|
30
|
+
desc 'Name to describe the grant.'
|
31
|
+
|
32
|
+
munge do |value|
|
33
|
+
value.delete("'")
|
34
|
+
end
|
35
|
+
end
|
36
|
+
|
37
|
+
newproperty(:privileges, :array_matching => :all) do
|
38
|
+
desc 'Privileges for user'
|
39
|
+
|
40
|
+
munge do |value|
|
41
|
+
value.upcase
|
42
|
+
end
|
43
|
+
end
|
44
|
+
|
45
|
+
newproperty(:table) do
|
46
|
+
desc 'Table to apply privileges to.'
|
47
|
+
|
48
|
+
munge do |value|
|
49
|
+
value.delete("`")
|
50
|
+
end
|
51
|
+
|
52
|
+
newvalues(/.*\..*/)
|
53
|
+
end
|
54
|
+
|
55
|
+
newproperty(:user) do
|
56
|
+
desc 'User to operate on.'
|
57
|
+
validate do |value|
|
58
|
+
# https://dev.mysql.com/doc/refman/5.1/en/account-names.html
|
59
|
+
# Regex should problably be more like this: /^[`'"]?[^`'"]*[`'"]?@[`'"]?[\w%\.]+[`'"]?$/
|
60
|
+
raise(ArgumentError, "Invalid user #{value}") unless value =~ /[\w-]*@[\w%\.:]+/
|
61
|
+
username = value.split('@')[0]
|
62
|
+
if username.size > 16
|
63
|
+
raise ArgumentError, 'MySQL usernames are limited to a maximum of 16 characters'
|
64
|
+
end
|
65
|
+
end
|
66
|
+
end
|
67
|
+
|
68
|
+
newproperty(:options, :array_matching => :all) do
|
69
|
+
desc 'Options to grant.'
|
70
|
+
end
|
71
|
+
|
72
|
+
end
|
@@ -0,0 +1,45 @@
|
|
1
|
+
# This has to be a separate type to enable collecting
|
2
|
+
Puppet::Type.newtype(:mysql_user) do
|
3
|
+
@doc = 'Manage a MySQL user. This includes management of users password as well as privileges.'
|
4
|
+
|
5
|
+
ensurable
|
6
|
+
|
7
|
+
newparam(:name, :namevar => true) do
|
8
|
+
desc "The name of the user. This uses the 'username@hostname' or username@hostname."
|
9
|
+
validate do |value|
|
10
|
+
# https://dev.mysql.com/doc/refman/5.1/en/account-names.html
|
11
|
+
# Regex should problably be more like this: /^[`'"]?[^`'"]*[`'"]?@[`'"]?[\w%\.]+[`'"]?$/
|
12
|
+
raise(ArgumentError, "Invalid database user #{value}") unless value =~ /[\w-]*@[\w%\.:]+/
|
13
|
+
username = value.split('@')[0]
|
14
|
+
if username.size > 16
|
15
|
+
raise ArgumentError, 'MySQL usernames are limited to a maximum of 16 characters'
|
16
|
+
end
|
17
|
+
end
|
18
|
+
end
|
19
|
+
|
20
|
+
newproperty(:password_hash) do
|
21
|
+
desc 'The password hash of the user. Use mysql_password() for creating such a hash.'
|
22
|
+
newvalue(/\w+/)
|
23
|
+
end
|
24
|
+
|
25
|
+
newproperty(:max_user_connections) do
|
26
|
+
desc "Max concurrent connections for the user. 0 means no (or global) limit."
|
27
|
+
newvalue(/\d+/)
|
28
|
+
end
|
29
|
+
|
30
|
+
newproperty(:max_connections_per_hour) do
|
31
|
+
desc "Max connections per hour for the user. 0 means no (or global) limit."
|
32
|
+
newvalue(/\d+/)
|
33
|
+
end
|
34
|
+
|
35
|
+
newproperty(:max_queries_per_hour) do
|
36
|
+
desc "Max queries per hour for the user. 0 means no (or global) limit."
|
37
|
+
newvalue(/\d+/)
|
38
|
+
end
|
39
|
+
|
40
|
+
newproperty(:max_updates_per_hour) do
|
41
|
+
desc "Max updates per hour for the user. 0 means no (or global) limit."
|
42
|
+
newvalue(/\d+/)
|
43
|
+
end
|
44
|
+
|
45
|
+
end
|
@@ -0,0 +1,31 @@
|
|
1
|
+
# Deprecated class
|
2
|
+
class mysql::backup (
|
3
|
+
$backupuser,
|
4
|
+
$backuppassword,
|
5
|
+
$backupdir,
|
6
|
+
$backupcompress = true,
|
7
|
+
$backuprotate = 30,
|
8
|
+
$delete_before_dump = false,
|
9
|
+
$backupdatabases = [],
|
10
|
+
$file_per_database = false,
|
11
|
+
$ensure = 'present',
|
12
|
+
$time = ['23', '5'],
|
13
|
+
) {
|
14
|
+
|
15
|
+
crit("This class has been deprecated and callers should directly call
|
16
|
+
mysql::server::backup now.")
|
17
|
+
|
18
|
+
class { 'mysql::server::backup':
|
19
|
+
ensure => $ensure,
|
20
|
+
backupuser => $backupuser,
|
21
|
+
backuppassword => $backuppassword,
|
22
|
+
backupdir => $backupdir,
|
23
|
+
backupcompress => $backupcompress,
|
24
|
+
backuprotate => $backuprotate,
|
25
|
+
delete_before_dump => $delete_before_dump,
|
26
|
+
backupdatabases => $backupdatabases,
|
27
|
+
file_per_database => $file_per_database,
|
28
|
+
time => $time,
|
29
|
+
}
|
30
|
+
|
31
|
+
}
|
@@ -0,0 +1,33 @@
|
|
1
|
+
# See README.md.
|
2
|
+
class mysql::bindings (
|
3
|
+
# Boolean to determine if we should include the classes.
|
4
|
+
$java_enable = false,
|
5
|
+
$perl_enable = false,
|
6
|
+
$php_enable = false,
|
7
|
+
$python_enable = false,
|
8
|
+
$ruby_enable = false,
|
9
|
+
# Settings for the various classes.
|
10
|
+
$java_package_ensure = $mysql::params::java_package_ensure,
|
11
|
+
$java_package_name = $mysql::params::java_package_name,
|
12
|
+
$java_package_provider = $mysql::params::java_package_provider,
|
13
|
+
$perl_package_ensure = $mysql::params::perl_package_ensure,
|
14
|
+
$perl_package_name = $mysql::params::perl_package_name,
|
15
|
+
$perl_package_provider = $mysql::params::perl_package_provider,
|
16
|
+
$php_package_ensure = $mysql::params::php_package_ensure,
|
17
|
+
$php_package_name = $mysql::params::php_package_name,
|
18
|
+
$php_package_provider = $mysql::params::php_package_provider,
|
19
|
+
$python_package_ensure = $mysql::params::python_package_ensure,
|
20
|
+
$python_package_name = $mysql::params::python_package_name,
|
21
|
+
$python_package_provider = $mysql::params::python_package_provider,
|
22
|
+
$ruby_package_ensure = $mysql::params::ruby_package_ensure,
|
23
|
+
$ruby_package_name = $mysql::params::ruby_package_name,
|
24
|
+
$ruby_package_provider = $mysql::params::ruby_package_provider
|
25
|
+
) inherits mysql::params {
|
26
|
+
|
27
|
+
if $java_enable { include '::mysql::bindings::java' }
|
28
|
+
if $perl_enable { include '::mysql::bindings::perl' }
|
29
|
+
if $php_enable { include '::mysql::bindings::php' }
|
30
|
+
if $python_enable { include '::mysql::bindings::python' }
|
31
|
+
if $ruby_enable { include '::mysql::bindings::ruby' }
|
32
|
+
|
33
|
+
}
|
@@ -0,0 +1,27 @@
|
|
1
|
+
#
|
2
|
+
class mysql::client (
|
3
|
+
$bindings_enable = $mysql::params::bindings_enable,
|
4
|
+
$package_ensure = $mysql::params::client_package_ensure,
|
5
|
+
$package_name = $mysql::params::client_package_name,
|
6
|
+
) inherits mysql::params {
|
7
|
+
|
8
|
+
include '::mysql::client::install'
|
9
|
+
|
10
|
+
if $bindings_enable {
|
11
|
+
class { 'mysql::bindings':
|
12
|
+
java_enable => true,
|
13
|
+
perl_enable => true,
|
14
|
+
php_enable => true,
|
15
|
+
python_enable => true,
|
16
|
+
ruby_enable => true,
|
17
|
+
}
|
18
|
+
}
|
19
|
+
|
20
|
+
|
21
|
+
# Anchor pattern workaround to avoid resources of mysql::client::install to
|
22
|
+
# "float off" outside mysql::client
|
23
|
+
anchor { 'mysql::client::start': } ->
|
24
|
+
Class['mysql::client::install'] ->
|
25
|
+
anchor { 'mysql::client::end': }
|
26
|
+
|
27
|
+
}
|
@@ -0,0 +1,59 @@
|
|
1
|
+
# See README.md for details.
|
2
|
+
define mysql::db (
|
3
|
+
$user,
|
4
|
+
$password,
|
5
|
+
$charset = 'utf8',
|
6
|
+
$collate = 'utf8_general_ci',
|
7
|
+
$host = 'localhost',
|
8
|
+
$grant = 'ALL',
|
9
|
+
$sql = '',
|
10
|
+
$enforce_sql = false,
|
11
|
+
$ensure = 'present'
|
12
|
+
) {
|
13
|
+
#input validation
|
14
|
+
validate_re($ensure, '^(present|absent)$',
|
15
|
+
"${ensure} is not supported for ensure. Allowed values are 'present' and 'absent'.")
|
16
|
+
$table = "${name}.*"
|
17
|
+
|
18
|
+
include '::mysql::client'
|
19
|
+
|
20
|
+
mysql_database { $name:
|
21
|
+
ensure => $ensure,
|
22
|
+
charset => $charset,
|
23
|
+
collate => $collate,
|
24
|
+
provider => 'mysql',
|
25
|
+
require => [ Class['mysql::server'], Class['mysql::client'] ],
|
26
|
+
before => Mysql_user["${user}@${host}"],
|
27
|
+
}
|
28
|
+
|
29
|
+
$user_resource = {
|
30
|
+
ensure => $ensure,
|
31
|
+
password_hash => mysql_password($password),
|
32
|
+
provider => 'mysql',
|
33
|
+
require => Class['mysql::server'],
|
34
|
+
}
|
35
|
+
ensure_resource('mysql_user', "${user}@${host}", $user_resource)
|
36
|
+
|
37
|
+
if $ensure == 'present' {
|
38
|
+
mysql_grant { "${user}@${host}/${table}":
|
39
|
+
privileges => $grant,
|
40
|
+
provider => 'mysql',
|
41
|
+
user => "${user}@${host}",
|
42
|
+
table => $table,
|
43
|
+
require => [ Mysql_user["${user}@${host}"], Class['mysql::server'] ],
|
44
|
+
}
|
45
|
+
|
46
|
+
$refresh = ! $enforce_sql
|
47
|
+
|
48
|
+
if $sql {
|
49
|
+
exec{ "${name}-import":
|
50
|
+
command => "/usr/bin/mysql ${name} < ${sql}",
|
51
|
+
logoutput => true,
|
52
|
+
environment => "HOME=${::root_home}",
|
53
|
+
refreshonly => $refresh,
|
54
|
+
require => Mysql_grant["${user}@${host}/${table}"],
|
55
|
+
subscribe => Mysql_database[$name],
|
56
|
+
}
|
57
|
+
}
|
58
|
+
}
|
59
|
+
}
|