transfer parameters, iptables and service to puppet_cd - https://gitlab.confdroid.com/internal/confdroid_management/-/issues/292

manifests/params.pp

@@ -10,12 +10,8 @@
 # @param [String] pt_pkg_ensure valid: "present", "latest", "v1.2.3"
 # @param [String] pt_agent_pkg the packages for agents to install
 # @param [String] pt_server_pkg the server packages to install
-# @param [String] pt_server_pkg the puppetdb packages to install
+# @param [String] pt_puppetdb_pkg the puppetdb packages to install
 # @param [Array] pt_r10k_pkg the packages for r10k to install
-# @param [String] pt_user the puppet user
-# @param [String] pt_user_comment the user comment
-# @param [String] pt_user_home the user home
-# @param [String] pt_user_shell the user shell
 # @param [String] pt_environment the environment
 # @param [Boolean] pt_basemodulepath the base module path
 # @param [String] pt_logdir the log directory
@@ -51,10 +47,19 @@
 # @param [Boolean] pt_r10k_prefix the r10k prefix. defaults to false
 # @param [String] pt_r10k_basedir the base directory for r10k.yaml
 # @param [Array] pt_r10k_webhook_pkg the packages for the r10k webhook
-# @param [Boolean] pt_manage_user whether to manage the puppet user
 # @param [String] pt_r10k_webhook_port the port for the webhook listener
 # @param [String] pt_ssl_port the port for the puppetdb ssl port
 # @param [Boolean] pt_soft_write_failure whether to allow soft_write_failure
+# @param [String] pt_db_subname the url for the database connection
+# @param [String] pt_db_username the username for the database connection
+# @param [String] pt_db_password the password for the database connection
+# @param [String] pt_gc_interval How often (in minutes) to compact the database
+# @param [String] pt_http_port Port to listen on for clear-text HTTP.
+# @param [String] pt_https_port Port to listen on for HTTPs connections.
+# @param [String] pt_ssl_host IP address to listen on for HTTPS connections
+# @param [Boolean] pt_repl_on toggle the remote repl true false
+# @param [String] pt_repl_port What port the REPL should listen on
+# @param [String] pt_repl_host IP address to listen on
 ###############################################################################
 class puppet_cd::params (
 
@@ -67,18 +72,10 @@ class puppet_cd::params (
   String $pt_pkg_ensure             = 'present',
   String $pt_agent_pkg              = 'puppet-agent',
   String $pt_server_pkg             = 'puppetserver',
-  String $pt_puppetdb_pkg           = 'puppetdb-termini',
+  Array $pt_puppetdb_pkg            = ['puppetdb-termini', 'puppetdb'],
   Array $pt_r10k_pkg                = ['ruby','ruby-devel','rubygems','gcc','make'],
   Array $pt_r10k_webhook_pkg        = ['webrick', 'r10k_gitlab_webhook'],
 
-  # user settings
-  ## puppet user
-  Boolean $pt_manage_user           = false,
-  String $pt_user                   = 'puppet',
-  String $pt_user_comment           = 'puppetserver daemon',
-  String $pt_user_home              = '/opt/puppetlabs/server/data/puppetserver',
-  String $pt_user_shell             = '/sbin/nologin',
-
   # templates
   ## puppet
   String $pt_environment            = 'production',
@@ -112,6 +109,18 @@ class puppet_cd::params (
 # puppetdb
   String $pt_ssl_port               = '8081',
   Boolean $pt_soft_write_failure    = false,
+  String $pt_db_subname             = '//localhost:5432/puppetdb',
+  String $pt_db_username            = 'foobar',
+  String $pt_db_password            = 'foobar',
+  String $pt_gc_interval            = '60',
+  ## jetty
+  String $pt_http_port              = '8080',
+  String $pt_https_port             = '8081',
+  String $pt_ssl_host               = '0.0.0.0',
+  ## repl
+  Boolean $pt_repl_on               = false,
+  String $pt_repl_port              = '8082',
+  String $pt_repl_host              = '127.0.0.1',
 
 # r10k
   Boolean $pt_use_r10k              = false,