dea75ed695
* install_modules.sh: Add puppetlabs-haproxy forge module. * modules/cgit/manifests/init.pp: Add haproxy config to load balance https, https and git protocol git access. Each git server will host git http on port 8080, https on port 4443 and git protocol on 29418. These endpoints will then be load balanced by a single haproxy instance listening on ports 80, 443 and 9418. The use of haproxy and having services listen on offset ports to accomodate haproxy is toggleable using the $balance_git and $behind_proxy boolean flags. Additionally, configure rsyslog for haproxy. * modules/cgit/files/rsyslog.haproxy.conf: Enable syslog over UDP on port 514. This is needed by haproxy to perform logging. Send local0 messages to /var/log/haproxy.log. * modules/cgit/templates/ssl.conf.erb: Make Apache https listen port configurable. Remove default virtualhost. * modules/cgit/templates/httpd.conf.erb: Make Apache http listen port configurable. * modules/cgit/templates/git.vhost..erb: Make Apache http(s) listen ports configuruable. Allow http without redirecting to https as a fallback option to accomodate CentOS clients. * modules/openstack_project/manifests/git.pp: Pass load balancer variables through to the cgit manifest. * manifests/site.pp: Configure git.o.o to run the load balancer haproxy and balance across the new gitXX.o.o nodes. Change-Id: Icefc5923cff9a7c6ce62c1923ec2ea87ebc6474a
58 lines
1.9 KiB
Bash
Executable File
58 lines
1.9 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
MODULE_PATH=/etc/puppet/modules
|
|
|
|
# Array of modules to be installed key:value is module:version.
|
|
declare -A MODULES
|
|
#NOTE: if we previously installed kickstandproject-ntp we nuke it here
|
|
# since puppetlabs-ntp and kickstandproject-ntp install to the same dir
|
|
if grep kickstandproject-ntp /etc/puppet/modules/ntp/Modulefile &> /dev/null; then
|
|
rm -Rf "/etc/puppet/modules/ntp"
|
|
fi
|
|
MODULES["puppetlabs-ntp"]="0.2.0"
|
|
|
|
MODULES["openstackci-dashboard"]="0.0.8"
|
|
|
|
# freenode #puppet 2012-09-25:
|
|
# 18:25 < jeblair> i would like to use some code that someone wrote,
|
|
# but it's important that i understand how the author wants me to use
|
|
# it...
|
|
# 18:25 < jeblair> in the case of the vcsrepo module, there is
|
|
# ambiguity, and so we are trying to determine what the author(s)
|
|
# intent is
|
|
# 18:30 < jamesturnbull> jeblair: since we - being PL - are the author
|
|
# - our intent was not to limit it's use and it should be Apache
|
|
# licensed
|
|
MODULES["openstackci-vcsrepo"]="0.0.8"
|
|
|
|
MODULES["puppetlabs-apache"]="0.0.4"
|
|
MODULES["puppetlabs-apt"]="1.1.0"
|
|
MODULES["puppetlabs-haproxy"]="0.3.0"
|
|
MODULES["puppetlabs-mysql"]="0.5.0"
|
|
MODULES["puppetlabs-postgresql"]="2.3.0"
|
|
MODULES["puppetlabs-stdlib"]="3.2.0"
|
|
MODULES["saz-memcached"]="2.0.2"
|
|
MODULES["saz-gearman"]="2.0.1"
|
|
MODULES["spiette-selinux"]="0.5.1"
|
|
|
|
MODULE_LIST=`puppet module list`
|
|
|
|
# Transition away from old things
|
|
if [ -d /etc/puppet/modules/vcsrepo/.git ]
|
|
then
|
|
rm -rf /etc/puppet/modules/vcsrepo
|
|
fi
|
|
|
|
for MOD in ${!MODULES[*]} ; do
|
|
# If the module at the current version does not exist upgrade or install it.
|
|
if ! echo $MODULE_LIST | grep "$MOD ([^v]*v${MODULES[$MOD]}" >/dev/null 2>&1
|
|
then
|
|
# Attempt module upgrade. If that fails try installing the module.
|
|
if ! puppet module upgrade $MOD --version ${MODULES[$MOD]} >/dev/null 2>&1
|
|
then
|
|
# This will get run in cron, so silence non-error output
|
|
puppet module install $MOD --version ${MODULES[$MOD]} >/dev/null
|
|
fi
|
|
fi
|
|
done
|