145 Commits

Author SHA1 Message Date
unkinben 1cf2e7c923 fix: set owner/group to defaults
- defaults set via hiera, works over multiple OS's
2023-11-12 21:51:14 +11:00
Matthew 66000f897c updating perms for files 2023-09-14 13:23:49 -05:00
Matthew ce4188f385 updating file permissions for keys 2023-09-14 10:26:59 -05:00
Matthew 6fb0c5eb3c i am rusty 2023-09-12 12:56:10 -05:00
Matthew 2076433243 removed puppet support < 7 2023-09-12 12:53:08 -05:00
Matthew 11d8bbf21f puppetversion typo 2023-09-12 12:50:56 -05:00
Matthew 6e72a36d37 updated defaults 2023-09-12 12:46:29 -05:00
Matthew 15dee34b9e Adding support for puppet 7 2023-09-12 12:35:31 -05:00
Nate Riffe 09e9960e51 Change some resources names 2018-03-30 09:21:52 -05:00
Cedric DEFORTIS a0b6e70c19 Fix lint warnings 2018-02-19 09:43:59 +01:00
Cédric Defortis 1ea5d96d6b Fix mv destination file path for /etc/bind
- Force Package[bind] to be installed before moving /etc/bind into the
  $chroot_dir

- Fix recursive permissions for /var/bind9/chroot/** directories (so
  that user bind can cross those directories if they belong to root)
2018-02-19 09:19:22 +01:00
Cédric Defortis 16f2f22c4b Use creates instead of unless in bind exec mkdir 2018-02-19 09:19:22 +01:00
Cedric DEFORTIS 5a098b6c2d Changed exec resources that create /dev/*
It now uses the `creates` attribute instead of `unless`
2018-02-19 09:19:22 +01:00
Cédric Defortis 44bb1b0e0e First draft of chroot implementation for Debian
- RHEL chroot code has been moved into a bind::chroot::package class

- Debian family (and probably other families) can use the
  `bind::chroot::manual` class to enable chroot for bind using the method
  described here: https://wiki.debian.org/Bind9#Bind_Chroot
2018-02-19 09:19:22 +01:00
Cédric Defortis bcaafc05e1 Implemented chroot feature for RHEL/CentOS7 2018-02-19 09:18:15 +01:00
Nate Riffe 91ccb29eca Remove the deprecated audit metaparameter 2017-07-11 19:05:05 -05:00
Cedric DEFORTIS 81135efa23 tkey-* additional parameters
- tkey-gssapi-credential
- tkey-domain
2017-05-31 15:41:52 +02:00
Cedric DEFORTIS d0dc06d4ca Fix global variable error & update concat version 2017-05-04 21:17:58 +02:00
Cedric DEFORTIS 3ad9e7d8d3 Make rake lint happy by fixing WARNINGS 2017-05-04 21:17:39 +02:00
Nate Riffe d580291c69 Explicitly reference the bind keys file
Debian supplies the bind keys at /etc/bind/bind.keys and RedHat supplies it at
/etc/named.iscdlv.key. Add the directive that references this file. I think it
may have "just worked" on Debian, baesd on the information at
https://www.isc.org/downloads/bind/bind-keys/
2017-04-16 09:05:56 -05:00
Nate Riffe f0ba56e35d Fix a typo and release 7.2.1 2017-03-02 06:32:17 -06:00
Nate Riffe 8504b27498 Implement support for logging configuration
Adds `bind::logging::channel` and `bind::logging::category` defines in order to
support logging configuration.
2017-02-25 12:42:54 -06:00
Nate Riffe 987470f22a Merge pull request #111 from makeacode/server_clause
support creating server clauses
2017-02-09 07:19:15 -06:00
makeacode ca3cdb064e Hardcode fragment order 2017-02-08 12:54:44 -05:00
makeacode 67cb532f94 Update to use at least the 2.0.0 version of puppetlabs-concat 2017-02-02 00:42:04 -05:00
makeacode ebfa2455a1 support creating server clauses 2017-02-02 00:14:07 -05:00
Nate Riffe 7b6565a49c Add query controls to views
Add configurators for `allow-query`, `allow-query-on`, `allow-query-cache`, and
`allow-query-cache-on` directives in a view context.
2017-01-29 15:57:19 -06:00
Nate Riffe c72da6157f Push the class defaults into hiera
The bind class parameter defaults values are meant to be supplied via module
data. Really, these ought to come through the bind::defaults class from hiera,
but that class is currently the home of platform defaults which are not meant
to be overridden by the user. This is a first step, maybe? A normalization for
sure.
2016-11-07 20:01:17 -06:00
Hossy 89751eea38 Support for "forward" statement
Add "forward" statement in options { } block in named.conf.
2016-10-18 21:02:17 -05:00
Nate Riffe d6188b8f4e Merge pull request #100 from inkblot/rndc-helper
Implement a helper script for zone reloads
2016-07-09 09:09:44 -05:00
Tom Ford bb4f210c44 Allow forwarders to be set for master/slave zones 2016-07-08 15:04:04 +01:00
Tom Ford 84782740dd Need unique name for the rndc reload exec 2016-07-08 14:32:00 +01:00
Nate Riffe 40531e21eb Implement a helper script for zone reloads
It turns out the `rndc` command that was intended to reload a managed zone
wasn't working (see PR #91 for reference) if more than one view included the
zone. The helper script is really just a wrapper around the `rndc` command
itself, it translates its final parameter into a domain/class/view tuple and
pass the leading parameters and the tuple to `rndc`.
2016-07-07 21:15:41 -05:00
Nate Riffe de1a021911 Add allow-transfers to views
Views support an `allow-transfer` directive essentially identical to the one in
zones. Copy the code from `manifests/zone.pp` and `templates/zone.conf.erb` to
support it.
2016-07-04 10:18:38 -05:00
Nate Riffe da2a88ec86 Merge branch '6.0-prerelease'
Conflicts:
	metadata.json
2016-07-04 09:48:23 -05:00
Nate Riffe 88481f94fd Finalize the 6.0-prerelease branch 2016-07-04 09:39:51 -05:00
Nate Riffe dcbba5a0cb Harmonize default value for also_notify
The template code that processes also_notify is of a kind with the checks and
processing of other optional smart-array values. Make its default an empty
string so that the clause may be properly omitted from a config that doesn't
use it.
2016-05-06 15:18:53 -05:00
Nate Riffe 0532e1cd57 Merge remote-tracking branch 'ocado/empty-zones' into 6.0-prerelease
Conflicts:
	manifests/view.pp
2016-04-20 08:17:51 -05:00
Nate Riffe dd03f5a559 Merge remote-tracking branch 'ocado/empty-zones'
Conflicts:
	manifests/view.pp
2016-04-20 08:17:27 -05:00
Nate Riffe 1ec9823c0f Merge remote-tracking branch 'ocado/minimal-responses' into 6.0-prerelease
Conflicts:
	templates/view.erb
2016-04-20 08:07:56 -05:00
Nate Riffe db935f8b86 Merge remote-tracking branch 'ocado/minimal-responses' 2016-04-20 08:05:49 -05:00
Nate Riffe d50406d0df Merge remote-tracking branch 'ocado/notify-source' into 6.0-prerelease 2016-04-20 08:02:26 -05:00
Nate Riffe 31ef46feb8 Merge remote-tracking branch 'ocado/notify-source' 2016-04-20 08:02:17 -05:00
Nate Riffe 8348f42a17 Merge remote-tracking branch 'hdeadman/forwarderport' into 6.0-prerelease 2016-04-20 07:39:32 -05:00
Nate Riffe 202526e425 Merge remote-tracking branch 'hdeadman/forwarderport' 2016-04-20 07:38:25 -05:00
Ahmad Jagot 2b8b7ccc41 Add allow-empty-zones support.
Conflicts:
	manifests/view.pp
	templates/view.erb
2016-04-20 13:37:20 +01:00
Nate Riffe 4d2d2f63a8 Merge branch 'filter-aaaa-on-v4-option' into 6.0-prerelease 2016-04-20 07:33:18 -05:00
Jean-Francois Roche badd25b0e6 Add option to filter ipv6 address on ipv4
refs https://kb.isc.org/article/AA-00576/0/Filter-AAAA-option-in-BIND-9-.html
2016-04-20 07:30:54 -05:00
Alex Frolkin e579b5479b Support minimal-responses setting on views 2016-04-15 15:32:09 +01:00
Alex Frolkin 0f5d3e6019 Add support for notify-source and also-notify
Conflicts:
	templates/view.erb
2016-04-15 15:29:31 +01:00