summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--pillar/role/salt/roleproxy.sls12
-rw-r--r--salt/profile/salt/roleproxy.sls34
-rw-r--r--salt/role/salt/roleproxy.sls2
3 files changed, 48 insertions, 0 deletions
diff --git a/pillar/role/salt/roleproxy.sls b/pillar/role/salt/roleproxy.sls
new file mode 100644
index 0000000..13f74bd
--- /dev/null
+++ b/pillar/role/salt/roleproxy.sls
@@ -0,0 +1,12 @@
+salt:
+ roleproxy:
+ nb_host: ${'secret_salt:roleproxy:nb_host'}
+ nb_token: ${'secret_salt:roleproxy:nb_token'}
+
+firewalld:
+ zones:
+ internal:
+ ports:
+ - comment: salt-roleproxy
+ port: 4580
+ protocol: tcp
diff --git a/salt/profile/salt/roleproxy.sls b/salt/profile/salt/roleproxy.sls
new file mode 100644
index 0000000..a7393f7
--- /dev/null
+++ b/salt/profile/salt/roleproxy.sls
@@ -0,0 +1,34 @@
+{%- set roleproxy_pillar = pillar['salt']['roleproxy'] -%}
+
+salt_roleproxy_packages:
+ pkg.installed:
+ - names:
+ - salt-netbox-roleproxy
+ - watch_in:
+ - service: salt_roleproxy_service
+
+salt_roleproxy_sysconfig:
+ file.keyvalue:
+ - name: /etc/sysconfig/roleproxy
+ - separator: '='
+ - show_changes: False
+ - key_values:
+ NB_HOST: {{ roleproxy_pillar['nb_host'] }}
+ NB_TOKEN: {{ roleproxy_pillar['nb_token'] }}
+ - require:
+ - pkg: salt_roleproxy_packages
+ - watch_in:
+ - service: salt_roleproxy_service
+
+salt_roleproxy_service_enable:
+ service.enabled:
+ - name: roleproxy
+ - require:
+ - pkg: salt_roleproxy_packages
+
+salt_roleproxy_service:
+ service.running:
+ - name: roleproxy
+ - watch:
+ - pkg: salt_roleproxy_packages
+ - file: salt_roleproxy_sysconfig
diff --git a/salt/role/salt/roleproxy.sls b/salt/role/salt/roleproxy.sls
new file mode 100644
index 0000000..7b5ac78
--- /dev/null
+++ b/salt/role/salt/roleproxy.sls
@@ -0,0 +1,2 @@
+include:
+ - profile.salt.roleproxy