Added puppetlabs-firewall (required by puppetlabs-postgresql), updated the other modules.

2014-07-11 14:51:15 -05:00 · 2014-07-11 14:51:15 -05:00 · dee66abcdd
commit dee66abcdd
parent 5f4b7a3b72
137 changed files with 11118 additions and 419 deletions
--- a/modules/postgresql/manifests/server/config.pp
+++ b/modules/postgresql/manifests/server/config.pp
@ -4,6 +4,7 @@ class postgresql::server::config {
  $ip_mask_deny_postgres_user = $postgresql::server::ip_mask_deny_postgres_user
  $ip_mask_allow_all_users    = $postgresql::server::ip_mask_allow_all_users
  $listen_addresses           = $postgresql::server::listen_addresses
+  $port                       = $postgresql::server::port
  $ipv4acls                   = $postgresql::server::ipv4acls
  $ipv6acls                   = $postgresql::server::ipv6acls
  $pg_hba_conf_path           = $postgresql::server::pg_hba_conf_path
@ -19,7 +20,7 @@ class postgresql::server::config {
    if ($manage_pg_hba_conf == true) {
      # Prepare the main pg_hba file
      concat { $pg_hba_conf_path:
-        owner  => 0,
+        owner  => $user,
        group  => $group,
        mode   => '0640',
        warn   => true,
@ -97,6 +98,18 @@ class postgresql::server::config {
    postgresql::server::config_entry { 'listen_addresses':
      value => $listen_addresses,
    }
+    postgresql::server::config_entry { 'port':
+      value => "${port}",
+    }
+
+    # RedHat-based systems hardcode some PG* variables in the init script, and need to be overriden
+    # in /etc/sysconfig/pgsql/postgresql. Create a blank file so we can manage it with augeas later.
+    if ($::osfamily == 'RedHat') and ($::operatingsystemrelease !~ /^7/) {
+      file { '/etc/sysconfig/pgsql/postgresql':
+        ensure  => present,
+        replace => false,
+      }
+    }
  } else {
    file { $pg_hba_conf_path:
      ensure => absent,