puppet-zanata/manifests/client.pp

# Copyright 2015 Hewlett-Packard Development Company, L.P.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: zanata::client
#
class zanata::client(
  $version = '3.7.3',
  $user = 'jenkins',
  $group = 'jenkins',
  $server = '',
  $server_url = '',
  $server_user = '',
  $server_api_key = '',
  $homedir = '/home/jenkins/',
) {

  $server_id = parse_server_id($server_url)
  $server_name = regsubst($server_id, '_', '.', 'G')

  file { '/opt/zanata':
    ensure  => directory,
    owner   => $user,
    group   => $group,
    mode    => '0644',
    require => User[$user],
  }

  exec { 'get_zanata_client_dist_tarball':
    command => "wget https://search.maven.org/remotecontent?filepath=org/zanata/zanata-cli/${version}/zanata-cli-${version}-dist.tar.gz -O /opt/zanata/zanata-cli-${version}-dist.tar.gz",
    path    => '/bin:/usr/bin',
    creates => "/opt/zanata/zanata-cli-${version}-dist.tar.gz",
    require => File['/opt/zanata'],
  }

  file { "/opt/zanata/zanata-cli-${version}-dist.tar.gz":
    ensure  => present,
    owner   => $user,
    group   => $group,
    mode    => '0644',
    require => Exec['get_zanata_client_dist_tarball'],
  }

  exec { 'get_zanata_server_certificate':
    command => "openssl s_client -connect ${server_name}:443 -prexit 2>/dev/null | openssl x509 -in /dev/stdin -out /opt/zanata/${server_id}.crt",
    path    => '/bin:/usr/bin',
    creates => "/opt/zanata/${server_id}.crt",
    require => File['/opt/zanata'],
  }

  file { "/opt/zanata/${server_id}.crt":
    ensure  => present,
    owner   => $user,
    group   => $group,
    mode    => '0644',
    require => Exec['get_zanata_server_certificate'],
  }

  java_ks { 'zanata_server:keystore':
    ensure       => latest,
    certificate  => "/opt/zanata/${server_id}.crt",
    target       => '/etc/ssl/certs/java/cacerts',
    password     => 'changeit',
    require      => File["/opt/zanata/${server_id}.crt"],
  }

  file { '/etc/ssl/certs/java/cacerts':
    owner   => 'root',
    group   => 'root',
    mode    => '0644',
    require => Java_ks['zanata_server:keystore']
  }

  exec { 'unpack_zanata_client_dist_tarball':
    command => "tar zxf zanata-cli-${version}-dist.tar.gz",
    path    => '/bin:/usr/bin',
    user    => $user,
    cwd     => '/opt/zanata',
    creates => "/opt/zanata/zanata-cli-${version}/bin/zanata-cli",
    require => Exec['get_zanata_client_dist_tarball'],
  }

  file { "/opt/zanata/zanata-cli-${version}/bin/zanata-cli":
    ensure  => present,
    owner   => $user,
    group   => $group,
    mode    => '0755',
    require => Exec['unpack_zanata_client_dist_tarball'],
  }

  file { '/usr/local/bin/zanata-cli':
    ensure  => link,
    target  => "/opt/zanata/zanata-cli-${version}/bin/zanata-cli",
    require => File["/opt/zanata/zanata-cli-${version}/bin/zanata-cli"],
  }

  package { 'openjdk-7-jre-headless':
    ensure => present,
  }

  file { "${homedir}/.config/zanata.ini":
    ensure  => present,
    owner   => $user,
    group   => $group,
    mode    => '0600',
    content => template('zanata/zanata.ini.erb'),
  }
}