Verified Commit 296620c9 authored by Adam Lewenberg's avatar Adam Lewenberg
Browse files

Add source parameter to kerberos class to override /etc/krb5.conf

parent 92b598b8
release/005.007 (unreleased)
[kerberos] Add options to completely override /etc/krb5.conf using one
the parameter $source. [adamhl]
[newsyslog] Pull out filter-syslog from newsyslog so filtersyslog can
be used separately from newsyslog. [adamhl]
......
......@@ -14,6 +14,9 @@
# content => undef,
# }
# }
#
# UPDATE: Rather than overriding this class, you may want to use the
# $source parameter defined below.
# **********************************************************************
#
#
......@@ -35,10 +38,24 @@
# name's IP address PTR record may not match the hostname (e.g., for
# services running in Amazon Web Services).
# Default: true
#
# $source:
# If you want to use your own /etc/krb5.conf file completely overriding
# the one provided in this class, use this parameter.
# Example:
# class { 'base::kerberos':
# source => 'puppet:///modules/s_accounts/etc/krb5.conf',
# }
#
# Note that we don't have an an analagous "content" parameter as calling
# a template from a different module is not a good idea.
# Default: undef
class base::kerberos(
$prefer_tcp = false,
$krb_env = 'prod',
$rdns_enabled = true,
$source = undef,
){
# We only allow the 'prod', 'uat', and 'test' environments.
......@@ -71,9 +88,16 @@ class base::kerberos(
}
# Basic Kerberos configuration.
file { '/etc/krb5.conf':
content => template('base/kerberos/krb5.conf.erb')
if ($source) {
file { '/etc/krb5.conf':
source => $source,
}
} else {
file { '/etc/krb5.conf':
content => template('base/kerberos/krb5.conf.erb'),
}
}
}
# base::kerberos::dr is no longer needed, because it's functionality has been
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment