summaryrefslogtreecommitdiff
path: root/sitemodules/profiles/manifests/icinga2_master.pp
diff options
context:
space:
mode:
Diffstat (limited to 'sitemodules/profiles/manifests/icinga2_master.pp')
-rw-r--r--sitemodules/profiles/manifests/icinga2_master.pp96
1 files changed, 2 insertions, 94 deletions
diff --git a/sitemodules/profiles/manifests/icinga2_master.pp b/sitemodules/profiles/manifests/icinga2_master.pp
index 274e3a8..e6db26d 100644
--- a/sitemodules/profiles/manifests/icinga2_master.pp
+++ b/sitemodules/profiles/manifests/icinga2_master.pp
@@ -7,14 +7,12 @@
# Parameters
# ----------
#
-# @param web2_database_name database name for IcingaWeb2 database
-# @param web2_database_user database user for IcingaWeb2 database
+# @param ido_database_password database password for Icinga2 IDO database
# @param web2_database_password database password for IcingaWeb2 database
# @param api_users Icinga2 API users
+# @param pki_ticket_salt Ticket salt for API endpoint
# @param ca_key Icinga2 CA private key content
# @param ca_certificate Icinga2 CA certificate content
-# @param master_key Icinga2 master private key content
-# @param master_csr Icinga2 master CSR
#
# Examples
# --------
@@ -40,8 +38,6 @@ class profiles::icinga2_master (
String $pki_ticket_salt,
String $ca_key,
String $ca_certificate,
- String $master_key,
- String $master_csr,
) {
include profiles::icinga2_common
include postgresql::server
@@ -81,101 +77,13 @@ class profiles::icinga2_master (
class { '::icinga2::feature::api':
pki => 'none',
- ssl_cacert => $ca_certificate,
- ssl_key => $master_key,
- ssl_cert => $::profiles::icinga2_common::master_certificate,
}
icinga2::object::zone { 'global-templates':
global => true,
}
- #file { '/etc/icinga2/conf.d/api-users.conf':
- # ensure => file,
- # content => epp('profiles/icinga2_master/conf.d/api-users.conf.epp', {
- # 'api_users' => $api_users
- # }),
- # owner => 'root',
- # group => 'nagios',
- # mode => '0640',
- # require => Package['icinga2'],
- #}
-
create_resources(icinga2::object::apiuser, $api_users)
- #file { "/var/lib/icinga2/certs/${::facts['fqdn']}.key":
- # ensure => file,
- # owner => 'nagios',
- # group => 'nagios',
- # mode => '0600',
- # content => $master_key,
- # require => File['/var/lib/icinga2/certs'],
- #}
- #file { "/var/lib/icinga2/certs/${::facts['fqdn']}.csr":
- # ensure => file,
- # owner => 'nagios',
- # group => 'nagios',
- # mode => '0644',
- # content => $master_csr,
- # require => File['/var/lib/icinga2/certs'],
- #}
- #file { '/var/lib/icinga2/ca':
- # ensure => directory,
- # owner => 'nagios',
- # group => 'nagios',
- # mode => '0700',
- # require => Package['icinga2'],
- #}
- #file { '/var/lib/icinga2/ca/ca.key':
- # ensure => file,
- # content => $ca_key,
- # owner => 'nagios',
- # group => 'nagios',
- # mode => '0600',
- # require => File['/var/lib/icinga2/ca'],
- #}
- #file { '/var/lib/icinga2/ca/ca.crt':
- # ensure => file,
- # content => $::profiles::icinga2_common::ca_certificate,
- # owner => 'nagios',
- # group => 'nagios',
- # mode => '0644',
- # require => File['/var/lib/icinga2/ca'],
- #}
- #exec { "/usr/sbin/icinga2 node setup --master":
- # creates => "/etc/icinga2/features-enabled/api.conf",
- # require => [
- # Package['icinga2'],
- # File['/var/lib/icinga2/ca/ca.key'],
- # File["/var/lib/icinga2/certs/${::facts['fqdn']}.key"]
- # ],
- # notify => Service['icinga2'],
- #}
- #exec { '/usr/sbin/icinga2 feature enable ido-pgsql':
- # creates => "/etc/icinga2/features-enabled/ido-pgsql.conf",
- # require => Package['icinga2-ido-pgsql'],
- # notify => Service['icinga2'],
- #}
- #service { 'icinga2':
- # ensure => 'running',
- # enable => true,
- # require => [
- # Package['icinga2'],
- # Package['icinga2-ido-pgsql'],
- # ],
- # subscribe => [
- # File['/etc/icinga2/icinga2.conf'],
- # File['/etc/icinga2/init.conf'],
- # File['/etc/icinga2/features-enabled/checker.conf'],
- # File['/etc/icinga2/features-enabled/mainlog.conf'],
- # File['/etc/icinga2/features-enabled/notification.conf'],
- # File['/etc/icinga2/zones.conf'],
- # File['/etc/icinga2/conf.d/api-users.conf'],
- # File['/var/lib/icinga2/ca'],
- # File['/var/lib/icinga2/ca/ca.key'],
- # File['/var/lib/icinga2/ca/ca.crt'],
- # File['/var/lib/icinga2/certs/ca.crt'],
- # ],
- #}
Icinga2::Object::Zone <<| |>> ~> Service['icinga2']
Icinga2::Object::Endpoint <<| |>> ~> Service['icinga2']
generated by cgit v1.2.1 (git 2.18.0) at 2023-05-30 18:48:56 +0000