move filter-syslog to its own class

2be185a1 · Adam Lewenberg · 25aa9367 · 2be185a1 · 2be185a1 · 2be185a1
Commit 2be185a1 authored Sep 07, 2020 by Adam Lewenberg
--- a/README.md
+++ b/README.md
+[[_TOC_]]
+
+# The su_apache Puppet module
+
+## Overview
+
+This Puppet module
+
+* Installs Apache 2.4
+
+* Opens up the iptables firewall to allow access to ports 80 and 443 from the entire internet
+
+* Manages the Apache SSL security settings files
+
+## Configuration
+
+The `su_apache` module will install the filter-syslog file apropriate for
+Apache. If you want do not want to install this file, set
+`su-apache::filter_syslog` to `absent` in your Hiera file(s).
+
+### Debian configuration
+
+### RedHat configuration
--- a/manifests/filter_syslog.pp
+++ b/manifests/filter_syslog.pp
+# This class assumes that some _other_ class has already declared the
+# '/etc/filter-syslog" file resource.
+
+class su_apache::filter_syslog (
+  Enum['present', 'absent'] $ensure = 'present',
+) {
+
+  if ($ensure == 'present') {
+    # PRESENT
+    # Default syslog filtering and iptables configuration.
+    file { '/etc/filter-syslog/apache':
+      ensure  => present,
+      source  => 'puppet:///modules/su_apache/etc/filter-syslog/apache',
+      require => File['/etc/filter-syslog'],
+    }
+  } else {
+    # ABSENT
+    file { '/etc/filter-syslog/apache':
+      ensure => absent,
+    }
+  }
+
+}
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -69,10 +69,8 @@ class su_apache (
    'RedHat': { include su_apache::redhat }
  }

-  # Default syslog filtering and iptables configuration.
-  file { '/etc/filter-syslog/apache':
-    source => 'puppet:///modules/su_apache/etc/filter-syslog/apache',
-  }
+  include su_apache::filter_syslog
+
  base::iptables::rule { 'web':
    description => 'Allow web accesses from anywhere',
    protocol    => 'tcp',