aboutsummaryrefslogblamecommitdiff
path: root/modules/role/manifests/cryptoportfolio.pp
blob: 046b79ef3f223f4445ef4ee0e462c48fef2bf87b (plain) (tree) 
57ae81e












6a91977
















0a4ec37

0a4ec37






f67c528


76a321e
















































57ae81e

1
2
3
4
5
6
7
8
9
10
11
12

13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28

29

30
31
32
33
34
35

36
37

38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

86












                                                                                                                           















                                                                                             
 





                                                       

                                                  















































                                                                                                           
 
class role::cryptoportfolio {
  include "base_installation"

  include "profile::postgresql"

  $password_seed = lookup("base_installation::puppet_pass_seed") |$key| { {} }

  postgresql::server::db { 'cryptoportfolio':
    user =>  'cryptoportfolio',
    password =>  postgresql_password('cryptoportfolio', generate_password(24, $password_seed, "postgres_cryptoportfolio")),
  }

  postgresql::server::pg_hba_rule { 'allow localhost TCP access to cryptoportfolio user':
    type        => 'host',
    database    => 'cryptoportfolio',
    user        => 'cryptoportfolio',
    address     => '127.0.0.1/32',
    auth_method => 'md5',
    order       => "b0",
  }
  postgresql::server::pg_hba_rule { 'allow localhost ip6 TCP access to cryptoportfolio user':
    type        => 'host',
    database    => 'cryptoportfolio',
    user        => 'cryptoportfolio',
    address     => '::1/128',
    auth_method => 'md5',
    order       => "b0",
  }

  class { 'nginx': }

  nginx::resource::server { 'cryptoportfolio.immae.eu':
    listen_port => 80,
    proxy       => 'http://localhost:8000',
  }

  ensure_packages(["go", "npm", "nodejs", "yarn"])

  user { "cryptoportfolio":
    name       => "cryptoportfolio",
    ensure     => "present",
    managehome => true,
    home       => "/opt/cryptoportfolio",
    system     => true,
    password   => '!!',
  }

  $front_version = lookup("cryptoportfolio::front_version") |$key| { {} }
  $front_sha256 = lookup("cryptoportfolio::front_sha256") |$key| { {} }

  unless empty($front_version) {
    file { "/opt/cryptoportfolio/front":
      ensure => directory,
      mode   => "0700",
      owner  => "cryptoportfolio",
      group  => "cryptoportfolio",
    }

    file { "/opt/cryptoportfolio/front/${front_version}":
      ensure  => directory,
      mode    => "0700",
      owner   => "cryptoportfolio",
      group   => "cryptoportfolio",
      require => File["/opt/cryptoportfolio/front"],
    }

    archive { "/opt/cryptoportfolio/front/${front_version}.tar.gz":
      path          => "/opt/cryptoportfolio/front/${front_version}.tar.gz",
      source        => "https://git.immae.eu/releases/cryptoportfolio/front/front_${front_version}.tar.gz",
      creates       => "/opt/cryptoportfolio/front/${front_version}/README.md",
      checksum_type => "sha256",
      checksum      => $front_sha256,
      cleanup       => false,
      extract       => true,
      extract_path  => "/opt/cryptoportfolio/front/${front_version}",
      require       => File["/opt/cryptoportfolio/front/${front_version}"],
    }

    file { "/opt/cryptoportfolio/front/current":
      ensure  => "link",
      target  => "/opt/cryptoportfolio/front/${front_version}",
      require => Archive["/opt/cryptoportfolio/front/${front_version}.tar.gz"]
    }
  }

}
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-08 14:35:29 +0000