Merge pull request voxpupuli#184 from saz/use-hiera

replace params.pp with hiera data

Author: ju5t

data/common.yaml

@@ -1 +1,6 @@
---- {}
+---
+powerdns::authoritative_package_ensure: installed
+powerdns::authoritative_extra_packages_ensure: installed
+powerdns::authoritative_version: '4.8'
+powerdns::recursor_package_ensure: installed
+powerdns::recursor_version: '4.9'

data/os/Archlinux.yaml

@@ -0,0 +1,21 @@
+---
+powerdns::db_dir: /var/lib/powerdns
+powerdns::db_file: "%{lookup('powerdns::db_dir')}/powerdns.sqlite3"
+powerdns::mysql_schema_file: /usr/share/doc/powerdns/schema.mysql.sql
+powerdns::pgsql_schema_file: /usr/share/doc/powerdns/schema.pgsql.sql
+powerdns::sqlite_schema_file: /usr/share/doc/powerdns/schema.sqlite3.sql
+powerdns::mysql_backend_package_name: nil
+powerdns::ldap_backend_package_name: nil
+powerdns::pgsql_backend_package_name: nil
+powerdns::sqlite_backend_package_name: nil
+powerdns::lmdb_backend_package_name: nil
+powerdns::sqlite_package_name: sqlite
+powerdns::authoritative_package_name: powerdns
+powerdns::authoritative_extra_packages: []
+powerdns::authoritative_service_name: pdns
+powerdns::authoritative_configdir: /etc/powerdns
+powerdns::authoritative_config: "%{lookup('powerdns::authoritative_configdir')}/pdns.conf"
+powerdns::recursor_configdir: /etc/powerdns
+powerdns::recursor_config: "%{lookup('powerdns::recursor_configdir')}/recursor.conf"
+powerdns::recursor_package_name: powerdns-recursor
+powerdns::recursor_service_name: pdns-recursor

data/os/Debian.yaml

@@ -0,0 +1,22 @@
+---
+powerdns::db_dir: /var/lib/powerdns
+powerdns::db_file: "%{lookup('powerdns::db_dir')}/powerdns.sqlite3"
+powerdns::mysql_schema_file: /usr/share/doc/pdns-backend-mysql/schema.mysql.sql
+powerdns::pgsql_schema_file: /usr/share/doc/pdns-backend-pgsql/schema.pgsql.sql
+powerdns::sqlite_schema_file: /usr/share/doc/pdns-backend-sqlite3/schema.sqlite3.sql
+powerdns::mysql_backend_package_name: pdns-backend-mysql
+powerdns::ldap_backend_package_name: pdns-backend-ldap
+powerdns::pgsql_backend_package_name: pdns-backend-pgsql
+powerdns::sqlite_backend_package_name: pdns-backend-sqlite3
+powerdns::lmdb_backend_package_name: pdns-backend-lmdb
+powerdns::sqlite_package_name: sqlite3
+powerdns::authoritative_package_name: pdns-server
+powerdns::authoritative_extra_packages:
+  - dirmngr
+powerdns::authoritative_service_name: pdns
+powerdns::authoritative_configdir: /etc/powerdns
+powerdns::authoritative_config: "%{lookup('powerdns::authoritative_configdir')}/pdns.conf"
+powerdns::recursor_configdir: /etc/powerdns
+powerdns::recursor_config: "%{lookup('powerdns::recursor_configdir')}/recursor.conf"
+powerdns::recursor_package_name: pdns-recursor
+powerdns::recursor_service_name: pdns-recursor

data/os/FreeBSD.yaml

@@ -0,0 +1,21 @@
+---
+powerdns::db_dir: /var/db/powerdns
+powerdns::db_file: "%{lookup('powerdns::db_dir')}/powerdns.sqlite3"
+powerdns::mysql_schema_file: /usr/local/share/doc/powerdns/schema.mysql.sql
+powerdns::pgsql_schema_file: /usr/local/share/doc/powerdns/schema.pgsql.sql
+powerdns::sqlite_schema_file: /usr/local/share/doc/powerdns/schema.sqlite3.sql
+powerdns::mysql_backend_package_name: pdns-backend-mysql
+powerdns::ldap_backend_package_name: nil
+powerdns::pgsql_backend_package_name: nil
+powerdns::sqlite_backend_package_name: nil
+powerdns::lmdb_backend_package_name: nil
+powerdns::sqlite_package_name: sqlite3
+powerdns::authoritative_package_name: powerdns
+powerdns::authoritative_extra_packages: []
+powerdns::authoritative_service_name: pdns
+powerdns::authoritative_configdir: /usr/local/etc/pdns
+powerdns::authoritative_config: "%{lookup('powerdns::authoritative_configdir')}/pdns.conf"
+powerdns::recursor_configdir: /usr/local/etc/pdns
+powerdns::recursor_config: "%{lookup('powerdns::recursor_configdir')}/recursor.conf"
+powerdns::recursor_package_name: powerdns-recursor
+powerdns::recursor_service_name: pdns-recursor

data/os/RedHat.yaml

@@ -0,0 +1,21 @@
+---
+powerdns::db_dir: /var/lib/powerdns
+powerdns::db_file: "%{lookup('powerdns::db_dir')}/powerdns.sqlite3"
+powerdns::mysql_schema_file: /usr/share/doc/pdns-backend-mysql-4.8.1/schema.mysql.sql
+powerdns::pgsql_schema_file: /usr/share/doc/pdns-backend-postgresql-4.8.1/schema.pgsql.sql
+powerdns::sqlite_schema_file: /usr/share/doc/pdns-backend-sqlite-4.8.1/schema.sqlite.sql
+powerdns::mysql_backend_package_name: pdns-backend-mysql
+powerdns::ldap_backend_package_name: pdns-backend-ldap
+powerdns::pgsql_backend_package_name: pdns-backend-postgresql
+powerdns::sqlite_backend_package_name: pdns-backend-sqlite
+powerdns::lmdb_backend_package_name: pdns-backend-lmdb
+powerdns::sqlite_package_name: sqlite
+powerdns::authoritative_package_name: pdns
+powerdns::authoritative_extra_packages: []
+powerdns::authoritative_service_name: pdns
+powerdns::authoritative_configdir: /etc/pdns
+powerdns::authoritative_config: "%{lookup('powerdns::authoritative_configdir')}/pdns.conf"
+powerdns::recursor_configdir: /etc/pdns-recursor
+powerdns::recursor_config: "%{lookup('powerdns::recursor_configdir')}/recursor.conf"
+powerdns::recursor_package_name: pdns-recursor
+powerdns::recursor_service_name: pdns-recursor

manifests/authoritative.pp

@@ -1,34 +1,19 @@
 # powerdns::authoritative
 class powerdns::authoritative (
-  $package_ensure = $powerdns::params::default_package_ensure,
-  Optional[Array[String]] $install_packages = $powerdns::install_packages,
 ) inherits powerdns {
   # install the powerdns package
-  package { $powerdns::params::authoritative_package:
-    ensure => $package_ensure,
+  package { $powerdns::authoritative_package_name:
+    ensure => $powerdns::authoritative_package_ensure,
   }
 
-  stdlib::ensure_packages($install_packages)
-
-  $supported_backends = [
-    'mysql',
-    'bind',
-    'postgresql',
-    'ldap',
-    'sqlite',
-    'lmdb',
-  ]
-
-  unless $powerdns::backend in $supported_backends {
-    fail("${powerdns::backend} is not supported. We only support ${supported_backends.join(', ')} at the moment.")
-  }
+  stdlib::ensure_packages($powerdns::authoritative_extra_packages, { 'ensure' => $powerdns::authoritative_extra_packages_ensure })
 
   include "powerdns::backends::${powerdns::backend}"
 
   service { 'pdns':
     ensure  => running,
-    name    => $powerdns::params::authoritative_service,
+    name    => $powerdns::authoritative_service_name,
     enable  => true,
-    require => Package[$powerdns::params::authoritative_package],
+    require => Package[$powerdns::authoritative_package_name],
   }
 }

manifests/backends/bind.pp

@@ -3,9 +3,9 @@
   # Remove the default simplebind configuration as we prefer to manage PowerDNS
   # consistently across all operating systems. This file is added to Debian
   # based systems due to Debian's policies.
-  file { "${powerdns::params::authoritative_configdir}/pdns.d/pdns.simplebind.conf":
+  file { "${powerdns::authoritative_configdir}/pdns.d/pdns.simplebind.conf":
     ensure  => absent,
-    require => Package[$powerdns::params::authoritative_package],
+    require => Package[$powerdns::authoritative_package_name],
   }
 
   # set the configuration variables
@@ -19,33 +19,33 @@
   powerdns::config { 'bind-config':
     ensure  => present,
     setting => 'bind-config',
-    value   => "${powerdns::params::authoritative_configdir}/named.conf",
+    value   => "${powerdns::authoritative_configdir}/named.conf",
     type    => 'authoritative',
-    require => Package[$powerdns::params::authoritative_package],
+    require => Package[$powerdns::authoritative_package_name],
   }
 
-  file { "${powerdns::params::authoritative_configdir}/named.conf":
+  file { "${powerdns::authoritative_configdir}/named.conf":
     ensure  => file,
     mode    => '0644',
     owner   => 'root',
-    group   => 'root',
-    require => Package[$powerdns::params::authoritative_package],
+    group   => 0,
+    require => Package[$powerdns::authoritative_package_name],
   }
 
   file_line { 'powerdns-bind-baseconfig':
     ensure  => present,
-    path    => "${powerdns::params::authoritative_configdir}/named.conf",
-    line    => "options { directory \"${powerdns::params::authoritative_configdir}/named\"; };",
+    path    => "${powerdns::authoritative_configdir}/named.conf",
+    line    => "options { directory \"${powerdns::authoritative_configdir}/named\"; };",
     match   => 'options',
     notify  => Service['pdns'],
-    require => File["${powerdns::params::authoritative_configdir}/named.conf"],
+    require => File["${powerdns::authoritative_configdir}/named.conf"],
   }
 
-  file { "${powerdns::params::authoritative_configdir}/named":
+  file { "${powerdns::authoritative_configdir}/named":
     ensure  => directory,
     mode    => '0755',
     owner   => 'root',
-    group   => 'root',
-    require => Package[$powerdns::params::authoritative_package],
+    group   => 0,
+    require => Package[$powerdns::authoritative_package_name],
   }
 }

manifests/backends/ldap.pp

@@ -1,11 +1,12 @@
 # ldap backend for powerdns
-class powerdns::backends::ldap ($package_ensure = $powerdns::params::default_package_ensure) inherits powerdns {
+class powerdns::backends::ldap (
+) inherits powerdns {
   if $facts['os']['family'] == 'Debian' {
     # The pdns-server package from the Debian APT repo automatically installs the bind
     # backend package which we do not want when using another backend such as ldap.
     package { 'pdns-backend-bind':
       ensure  => purged,
-      require => Package[$powerdns::params::authoritative_package],
+      require => Package[$powerdns::authoritative_package_name],
     }
   }
 
@@ -31,15 +32,10 @@
     type    => 'authoritative',
   }
 
-  $_ldap_secret = $powerdns::ldap_secret =~ Sensitive ? {
-    true => $powerdns::ldap_secret.unwrap,
-    false => $powerdns::ldap_secret
-  }
-
   powerdns::config { 'ldap-secret':
     ensure  => present,
     setting => 'ldap-secret',
-    value   => $_ldap_secret,
+    value   => $powerdns::ldap_secret,
     type    => 'authoritative',
   }
 
@@ -57,12 +53,12 @@
     type    => 'authoritative',
   }
 
-  if $powerdns::params::ldap_backend_package_name {
+  if $powerdns::ldap_backend_package_name {
     # set up the powerdns backend
-    package { $powerdns::params::ldap_backend_package_name:
-      ensure  => $package_ensure,
+    package { $powerdns::ldap_backend_package_name:
+      ensure  => $powerdns::authoritative_package_ensure,
       before  => Service['pdns'],
-      require => Package[$powerdns::params::authoritative_package],
+      require => Package[$powerdns::authoritative_package_name],
     }
   }
 

manifests/backends/lmdb.pp

@@ -1,19 +1,18 @@
 # lmdb backend for powerdns
 class powerdns::backends::lmdb (
-  $package_ensure = $powerdns::params::default_package_ensure
 ) inherits powerdns {
   if $facts['os']['family'] == 'Debian' {
     # The pdns-server package from the Debian APT repo automatically installs the bind
     # backend package which we do not want when using another backend such as ldap.
     package { 'pdns-backend-bind':
       ensure  => purged,
-      require => Package[$powerdns::params::authoritative_package],
+      require => Package[$powerdns::authoritative_package_name],
     }
 
     # The pdns-backend-lmdb package installs a configuration file that conflicts with this module's backend configuration.
-    file { "${powerdns::params::authoritative_configdir}/pdns.d/lmdb.conf":
+    file { "${powerdns::authoritative_configdir}/pdns.d/lmdb.conf":
       ensure  => absent,
-      require => Package[$powerdns::params::lmdb_backend_package_name],
+      require => Package[$powerdns::lmdb_backend_package_name],
       before  => Service['pdns'],
     }
   }
@@ -35,12 +34,12 @@
     }
   }
 
-  if $powerdns::params::lmdb_backend_package_name {
+  if $powerdns::lmdb_backend_package_name {
     # set up the powerdns backend
-    package { $powerdns::params::lmdb_backend_package_name:
-      ensure  => $package_ensure,
+    package { $powerdns::lmdb_backend_package_name:
+      ensure  => $powerdns::authoritative_package_ensure,
       before  => Service['pdns'],
-      require => Package[$powerdns::params::authoritative_package],
+      require => Package[$powerdns::authoritative_package_name],
     }
   }
 

manifests/backends/mysql.pp

@@ -1,5 +1,6 @@
 # mysql backend for powerdns
-class powerdns::backends::mysql ($package_ensure = $powerdns::params::default_package_ensure) inherits powerdns {
+class powerdns::backends::mysql (
+) inherits powerdns {
   # set the configuration variables
   powerdns::config { 'launch':
     ensure  => present,
@@ -29,16 +30,11 @@
     type    => 'authoritative',
   }
 
-  $_db_password = $powerdns::db_password =~ Sensitive ? {
-    true => $powerdns::db_password.unwrap,
-    false => $powerdns::db_password
-  }
-
-  if $_db_password {
+  if $powerdns::db_password {
     powerdns::config { 'gmysql-password':
       ensure  => present,
       setting => 'gmysql-password',
-      value   => $_db_password,
+      value   => $powerdns::db_password,
       type    => 'authoritative',
     }
   }
@@ -50,24 +46,19 @@
     type    => 'authoritative',
   }
 
-  if $powerdns::params::mysql_backend_package_name {
+  if $powerdns::mysql_backend_package_name {
     # set up the powerdns backend
-    package { $powerdns::params::mysql_backend_package_name:
-      ensure  => $package_ensure,
+    package { $powerdns::mysql_backend_package_name:
+      ensure  => $powerdns::authoritative_package_ensure,
       before  => Service['pdns'],
-      require => Package[$powerdns::params::authoritative_package],
+      require => Package[$powerdns::authoritative_package_name],
     }
   }
   if $powerdns::backend_install {
     # mysql database
     if ! defined(Class['mysql::server']) {
-      $_db_root_password = $powerdns::db_root_password =~ Sensitive ? {
-        true => $powerdns::db_root_password.unwrap,
-        false => $powerdns::db_root_password
-      }
-
       class { 'mysql::server':
-        root_password      => $_db_root_password,
+        root_password      => $powerdns::db_root_password,
         create_root_my_cnf => true,
       }
     }
@@ -77,15 +68,15 @@
     }
   }
 
-  if $powerdns::backend_create_tables and $_db_password {
+  if $powerdns::backend_create_tables and $powerdns::db_password {
     # make sure the database exists
     mysql::db { $powerdns::db_name:
       user     => $powerdns::db_username,
-      password => $_db_password,
+      password => $powerdns::db_password,
       host     => $powerdns::db_host,
       grant    => ['ALL'],
       sql      => [$powerdns::mysql_schema_file],
-      require  => Package[$powerdns::params::mysql_backend_package_name],
+      require  => Package[$powerdns::mysql_backend_package_name],
     }
   }
 }