350b4938a3
The designate::dns class was really just configuring things according to a bind9 backend. As such, move it's resources to the bind9 backend manifest and deprecate this class. Additionnally, we stop managing configuration files resources inside /var/lib/designate. According to upstream documentation [1] and from discussing this with upstream developers, this is not an intended way of configuring designate. This also avoids having to manage permissions (and selinux) between designate and bind. [1]: http://docs.openstack.org/developer/designate/getting-started.html Change-Id: Ia62a3d1a72622f3eb1ceeabaf4cef36090a7a8d3
47 lines
1.2 KiB
Puppet
47 lines
1.2 KiB
Puppet
# == Class designate::backend::bind9
|
|
#
|
|
# Configure bind9 as backend
|
|
#
|
|
# == Parameters
|
|
#
|
|
# [*rndc_config_file*]
|
|
# (optional) Location of the rndc configuration file.
|
|
# Defaults to '/etc/rndc.conf'
|
|
#
|
|
# [*rndc_key_file*]
|
|
# (optional) Location of the rndc key file.
|
|
# Defaults to '/etc/rndc.key'
|
|
#
|
|
# [*rndc_host*]
|
|
# (optional) Host running DNS service.
|
|
# Defaults to '127.0.0.1'
|
|
#
|
|
# [*rndc_port*]
|
|
# (optional) Port to use for dns service on rndc_host.
|
|
# Defaults to '953'
|
|
#
|
|
class designate::backend::bind9 (
|
|
$rndc_host = '127.0.0.1',
|
|
$rndc_port = '953',
|
|
$rndc_config_file = '/etc/rndc.conf',
|
|
$rndc_key_file = '/etc/rndc.key'
|
|
) inherits designate::params {
|
|
include ::designate
|
|
include ::dns
|
|
|
|
designate_config {
|
|
'backend:bind9/rndc_host' : value => $rndc_host;
|
|
'backend:bind9/rndc_port' : value => $rndc_port;
|
|
'backend:bind9/rndc_config_file' : value => $rndc_config_file;
|
|
'backend:bind9/rndc_key_file' : value => $rndc_key_file;
|
|
}
|
|
|
|
file_line { 'dns allow-new-zones':
|
|
ensure => present,
|
|
path => $::dns::optionspath,
|
|
line => 'allow-new-zones yes;',
|
|
require => Class['::designate'],
|
|
notify => Service[$::dns::namedservicename]
|
|
}
|
|
}
|