Defined Type: gpfs::client::rkm

Defined in:
manifests/client/rkm.pp

Summary

Manage GPFS client ISKLM configuration

Overview

Parameters:

  • rkm_id (String[1]) (defaults to: $name)
  • type (String[1]) (defaults to: 'ISKLM')
  • kmip_server_uris (Array) (defaults to: [])
  • key_store (Stdlib::Absolutepath) (defaults to: '/var/mmfs/etc/RKMcerts/ISKLM.proj2')
  • key_store_source (Optional[String[1]]) (defaults to: undef)
  • passphrase (Optional[String[1]]) (defaults to: undef)
  • client_cert_label (Optional[String[1]]) (defaults to: undef)
  • tenant_name (Optional[String[1]]) (defaults to: undef)
  • connection_timeout (String[1]) (defaults to: '5')
  • connection_attempts (String[1]) (defaults to: '3')
  • retry_sleep (String[1]) (defaults to: '50000')
  • order (String[1]) (defaults to: '10') 


15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
 
# File 'manifests/client/rkm.pp', line 15

define gpfs::client::rkm (
  String[1] $rkm_id = $name,
  String[1] $type = 'ISKLM',
  Array $kmip_server_uris     = [],
  Stdlib::Absolutepath $key_store = '/var/mmfs/etc/RKMcerts/ISKLM.proj2',
  Optional[String[1]] $key_store_source = undef,
  Optional[String[1]] $passphrase = undef,
  Optional[String[1]] $client_cert_label = undef,
  Optional[String[1]] $tenant_name = undef,
  String[1] $connection_timeout = '5',
  String[1] $connection_attempts = '3',
  String[1] $retry_sleep = '50000',
  String[1] $order = '10',
) {
  # Template uses:
  # - $rkm_id
  # - $kmip_server_uris
  # - $key_store
  # - $passphrase
  # - $client_cert_label
  # - $tenant_name
  # - $connection_timeout
  # - $connection_attempts
  # - $retry_sleep
  concat::fragment { "RKM.conf.${name}":
    target  => '/var/mmfs/etc/RKM.conf',
    content => template('gpfs/RKM.conf.erb'),
    order   => $order,
  }

  $_key_store_parent = dirname($key_store)
  if ! defined(File[$_key_store_parent]) {
    file { $_key_store_parent:
      ensure => 'directory',
      owner  => 'root',
      group  => 'root',
      mode   => '0755',
    }
  }

  if ! defined(File[$key_store]) {
    file { $key_store:
      ensure => 'file',
      owner  => 'root',
      group  => 'root',
      mode   => '0600',
      source => $key_store_source,
    }
  }
}