blob: 67714f293e8c50b7bb09fdf0394440c6da6779af (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
class profile::postgresql::pam_ldap_pgbouncer (
String $pg_user = "postgres"
) {
include "profile::pam_ldap"
$password_seed = lookup("base_installation::puppet_pass_seed")
$ldap_server = lookup("base_installation::ldap_server")
$ldap_base = lookup("base_installation::ldap_base")
$ldap_dn = lookup("base_installation::ldap_dn")
$ldap_password = generate_password(24, $password_seed, "ldap")
$ldap_attribute = "uid"
$ldap_filter = lookup("role::backup::postgresql::pgbouncer_access_filter", { "default_value" => undef })
if empty($ldap_filter) {
fail("need ldap filter for pgbouncer")
}
file { "/etc/pam_ldap.d/pgbouncer.conf":
ensure => "present",
mode => "0600",
owner => $pg_user,
group => "root",
content => template("profile/postgresql/pam_ldap_pgbouncer.conf.erb"),
require => File["/etc/pam_ldap.d"],
} ->
file { "/etc/pam.d/pgbouncer":
ensure => "present",
mode => "0644",
owner => "root",
group => "root",
source => "puppet:///modules/profile/postgresql/pam_pgbouncer"
}
}
|