The opendev project has been moving away from puppet and this is one of
the puppet modules that is no longer used. To simplify things for us we
are taking the extra step of retiring this repo.
Change-Id: I83a8d643adacd41947203604fdad1b0cc544c680
The ubuntu package is a couple releases out of date even in Xenial
and we're hitting some random crashes with the version we're
running. Hopefully a newer version will fix it. Switching to the PPA
will get us the same version slated for inclusion in Ubuntu 18.04
LTS (Bionic) until we have an opportunity to upgrade the server.
Change-Id: Ie4b6170db670e3284d6bd069a13d4a6468507c76
Currently there is no way to independtly disable the encrypted
websockets connection from the mqtt tls listener. This commit switches
this to be the new enable_websocket_tls flag which will be used to
independtly control whether we deploy an encypted websockets port.
Change-Id: I2bb806210dbe5c40cfda5ac205f3659c2085f0e1
It looks like our puppet-lint version changed and now the server.pp file
is failing. This commit updates that so it passes puppet-lint and
enables us to land changes again.
Change-Id: Ie71e4217852bddae0e1a5235c0182ed97de73454
This commit adds support for enabling tls encrypted port listeners.
If enable_tls is set you can specify the cert files necessary and
mosquitto will be configured to setup additional ports that are
encryped in addition to the unencrypted ports.
Change-Id: I7c77285e347d8c1b2c3318360258246b78f885a8
This commit adds configuring a websocket listener to the mosquitto
config. By default it will listen on port 80. The next step will be
enabling an ssl/tls encrypted websocket port too.
Change-Id: Ibec91fd0abc637ea7087872cab1ec8487c73acae
This commit adds configuring some basic security. It enables
anonymous read only access (which is important for this use case)
also setups a privileged user which has global readwrite on the
broker. Eventually we can move to a more fine grained permission
model with per service and per topic write permission, but this is
a sane starting point.
Change-Id: I546007f1f4fc57d9edd54294a27c2cd726a134db
This commit removes the config.pp manifest which was from the
cookiecutter, but not used anywhere.
Change-Id: I51f735ea63c0f2bd26ce3d5ff1d46786e9b8bd6d
This patch gets to a point where mosquitto is installed and configured
with sane defaults. The next step is to add configurability to the
point necessary for the infra use case.
This commit adds a config template and the basic setup we need for
actually installing and configuring mosquitto. The next step is to
fill in the details of the config file and tunables from puppet.