A very slim nginx module for puppet.
- Latest Release:
- Build-Status:
- Official Site: http://dracoblue.net/
pp-ningx is copyright 2014-2015 by DracoBlue http://dracoblue.net
Latest version from puppet forge:
$ puppet module install DracoBlue-nginxLatest version from git.
$ cd modules
$ git clone https://github.com/DracoBlue/pp-nginx.git nginx# include package and server for nginx
include nginx
$server = "example.org"
# define new server (/vhost)
nginx::server { $server:
content => "listen *:80;
server_name $server;"
}
# define a location
nginx::server::location { "assets":
location => "~ ^/",
server => Nginx::Server[$server],
content => "root /var/www/assets/;"
}Result (/etc/nginx/conf.d/example.org.conf):
server {
listen *:80;
server_name example.org;
location ~ ^/ {
root /var/www/assets/;
}
}
There are only 3 classes in this puppet module.
- public:
include nginx: makes sure thatnginx::packageandnginx::serviceis available
- private
include nginx::package: is loaded by thenginxclass, to ensure that the nginx package is available on the operating systeminclude nginx::service: is loaded by thenginxclass, to ensure that the nginx service control is available
See the Example at the beginning for explanation how the nginx::server and nginx::server::location type work together.
Adds a new server in a file called /etc/nginx/conf.d/$name.conf.
nginx::server { "example.org":
server => 'example.org',
content => "listen *:80;
server_name example.org;"
}See tests/simple.example.org.pp for more examples.
Adds a location block definition to the given $server.
nginx::server::location { "assets":
server => Nginx::Server['example.org'],
location => '~ ^/assets/(.+)',
content => "root /var/www;"
}See tests/simple-locations.example.org.pp for more examples.
Adds an alias definition to map to a $directory for to the given $location.
nginx::server::location::alias { "assets-directory":
location => Nginx::Server::Location['assets'],
directory => '/var/www/assets/$1'
}See tests/alias-location.example.org.pp for more examples.
Adds allow and deny definitions to a given $location.
nginx::server::location::access { "assets-directory":
location => Nginx::Server::Location['assets'],
allow => ["127.0.0.1", "10.10.10.0/26"],
deny => ["192.168.0.1"]
}The access fragment will always put allow definitions before deny definitions. If you want to have some deny rules
before the allow rules, use two access definitions (like in tests/access-location-with-multiple-blocks.example.org.pp).
See tests/access-location.example.org.pp for more examples.
Adds auth_basic and auth_basic_user_file definitions to a given $location.
Be sure that nginx can access the absolute path given to in $user_file. The $text must not contain quotation marks (").
nginx::server::location::auth_basic { "assets-directory":
location => Nginx::Server::Location['assets'],
text => 'This is restricted',
user_file => '/etc/nginx/.htpasswd'
}See tests/auth-basic-location.example.org.pp for more examples.
This type is used within nginx::server::location::access and other nginx::server::location::* types to generate
the location fragment into the nginx::server::location.
Example usage (taken from nginx::server::location::access):
define nginx::server::location::access (
$allow = [],
$deny = [],
$content = undef,
$config_template = "nginx/conf.d/location/access.conf.erb",
$location = undef,
$ensure = present,
$order = "050",
) {
validate_array($allow)
validate_array($deny)
nginx::server::location::fragment { "access_${name}":
content => template($config_template),
location => $location,
ensure => $ensure,
order => $order,
}
}This area will contain some templates, which are frequently used. They are available in the manifests/templates/ folder.
Redirect a given domain from www.example.org to example.org with an own nginx server entry.
nginx::templates::www_rewrite_http_server { "example-www-redirect":
server_name => "example.org",
}Will generate:
server {
listen 80;
server_name www.example.org;
rewrite ^(.*) http://example.org$1 permanent;
}
On Linux:
$ make test
Successful tests: 7 / 7Hint: The tests will need sudo rights and will write into /tmp/pp-nginx-results. Every other file should not be affected.
In the Vagrant Box:
$ vagrant up --provision
$ vagrant ssh
$ sudo -s
$ cd /vagrant
$ PUPPET_AGENT_VERSION=1.2 bin/ensure_puppet_version
$ apt-get install rake # required for puppet-lint
$ gem install puppet-lint
$ make test
Successful tests: 7 / 7- dev
- added 4.x support
- added Vagrantfile for tests
- fixed file encoding for
nginx::templates::www_rewrite_http_servertemplate - fixed
nginx::templates::www_rewrite_http_serverif no content is given in puppet 4.x
- 2.0.0 (2015/02/02)
- removed symlink from tests folder (because they are not supported in packages)
- [BC] removed unused
nginx::baseclass - added puppet lint and puppet parser validate to travis tests
- fixed line indention and some other things to make puppet-lint happy #17
- [BC] renamed
nginx::server::location::auth-basictonginx::server::location::auth_basicfor puppet 4.0 compatibility - added template
nginx::templates::www_rewrite_http_serverfor redirect of e.g.www.example.orgtoexample.org
- 1.3.1 (2015/01/31)
- fixed recursive symlinks in test folder
- 1.3.0 (2014/05/18)
- added message if no proper
$serveris given to location (e.g. ifserver_config_file_nameparameter is missing) refs #11 - tests use a specific facter version now refs #14
- Use indention parameter to automagicly indent all given "content" lines refs #13
- added message if no proper
- 1.2.0 (2014/03/17)
- Changed properties for
$locationand$serverto resources instead of strings #10 - Removed
$serverparameter fornginx::server::location::*#9
- Changed properties for
- 1.1.0 (2014/03/17)
- added
nginx::server::location::auth-basic#8 - added base type
nginx::server::location::fragment#7 - added
nginx::server::location::access#6 - travis now tests multiple puppet versions #5
nginx::server::location::aliasadds the alias definition, to the nginx location specified #3
- added
- 1.0.0 (2014/03/16)
- Initial release
pp-nginx is licensed under the terms of MIT.