feat: manage vault version (#446)
- add params for version and package name - add param to cleanup openbao - add version lock (if not latest) Reviewed-on: #446
This commit was merged in pull request #446.
This commit is contained in:
@@ -6,6 +6,9 @@ class profiles::vault::server (
|
||||
Undef
|
||||
] $members_role = undef,
|
||||
Array $vault_servers = [],
|
||||
String $package_name = 'vault',
|
||||
String $package_ensure = 'latest',
|
||||
Boolean $disable_openbao = true,
|
||||
Boolean $tls_disable = false,
|
||||
Stdlib::Port $client_port = 8200,
|
||||
Stdlib::Port $cluster_port = 8201,
|
||||
@@ -52,7 +55,33 @@ class profiles::vault::server (
|
||||
}
|
||||
}
|
||||
|
||||
# cleanup openbao?
|
||||
if $disable_openbao {
|
||||
package {'openbao':
|
||||
ensure => absent,
|
||||
before => Class['vault']
|
||||
}
|
||||
package {'openbao-vault-compat':
|
||||
ensure => absent,
|
||||
before => [
|
||||
Class['vault'],
|
||||
Package['openbao']
|
||||
]
|
||||
}
|
||||
}
|
||||
|
||||
# add versionlock for package_name?
|
||||
if $package_ensure != 'latest' {
|
||||
yum::versionlock{$package_name:
|
||||
ensure => present,
|
||||
version => $package_ensure,
|
||||
before => Class['vault']
|
||||
}
|
||||
}
|
||||
|
||||
class { 'vault':
|
||||
package_name => $package_name,
|
||||
package_ensure => $package_ensure,
|
||||
manage_service => false,
|
||||
manage_storage_dir => $manage_storage_dir,
|
||||
enable_ui => true,
|
||||
|
||||
Reference in New Issue
Block a user