ExternalMirrors
/
nginx-formula
mirror of https://github.com/saltstack-formulas/nginx-formula
Watch 1
Star 0
Fork 1
Code Issues 0 Releases 34 Wiki Activity
Saltstack Official Nginx Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
587 Commits
3 Branches
Tree: 037c13a674
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '037c13a674'
${ noResults }
nginx-formula/nginx/pkg.sls

211 lines
6.3KB
Raw Blame History 

  1. # nginx.pkg

  2. #

  3. # Manages installation of nginx from pkg.

  4. 

  5. {#- Get the `tplroot` from `tpldir` #}

  6. {%- set tplroot = tpldir.split('/')[0] %}

  7. {%- from tplroot ~ "/map.jinja" import nginx, sls_block with context %}

  8. {%- from tplroot ~ "/libtofs.jinja" import files_switch with context %}

  9. 

  10. {%- if nginx.install_from_repo %}

  11.   {% set from_official = true %}

  12.   {% set from_ppa = false %}

  13.   {% set from_phusionpassenger = false %}

  14. {% elif nginx.install_from_ppa %}

  15.   {% set from_official = false %}

  16.   {% set from_ppa = true %}

  17.   {% set from_phusionpassenger = false %}

  18. {% elif nginx.install_from_phusionpassenger %}

  19.   {% set from_official = false %}

  20.   {% set from_ppa = false %}

  21.   {% set from_phusionpassenger = true %}

  22. {% else %}

  23.   {% set from_official = false %}

  24.   {% set from_ppa = false %}

  25.   {% set from_phusionpassenger = false %}

  26. {%- endif %}

  27. 

  28. nginx_install:

  29.   pkg.installed:

  30.     {{ sls_block(nginx.package.opts) }}

  31.     {% if nginx.lookup.package is iterable and nginx.lookup.package is not string %}

  32.     - pkgs:

  33.       {% for pkg in nginx.lookup.package %}

  34.       - {{ pkg }}

  35.       {% endfor %}

  36.     {% else %}

  37.     - name: {{ nginx.lookup.package }}

  38.     {% endif %}

  39. 

  40. {% if salt['grains.get']('os_family') == 'Debian' %}

  41.   {%- if from_official %}

  42. nginx_official_repo_keyring:

  43.   file.managed:

  44.     - name: /usr/share/keyrings/nginx-archive-keyring.gpg

  45.     - source: {{ files_switch(['nginx-archive-keyring.gpg'],

  46.                               lookup='nginx_official_repo_keyring'

  47.                  )

  48.               }}

  49.     - require_in:

  50.       - pkgrepo: nginx_official_repo

  51.   {%- endif %}

  52. 

  53. nginx_official_repo:

  54.   pkgrepo:

  55.     {%- if from_official %}

  56.     - managed

  57.     {%- else %}

  58.     - absent

  59.     {%- endif %}

  60.     - humanname: nginx apt repo

  61.     - name: deb [signed-by=/usr/share/keyrings/nginx-archive-keyring.gpg] http://nginx.org/packages/{{ grains['os'].lower() }}/ {{ grains['oscodename'] }} nginx

  62.     - file: /etc/apt/sources.list.d/nginx-official-{{ grains['oscodename'] }}.list

  63.     - require_in:

  64.       - pkg: nginx_install

  65.     - watch_in:

  66.       - pkg: nginx_install

  67. 

  68.    {%- if grains.os not in ('Debian',) %}

  69.        ## applies to Ubuntu and derivatives only #}

  70. nginx_ppa_repo:

  71.   pkgrepo:

  72.     {%- if from_ppa %}

  73.     - managed

  74.     {%- else %}

  75.     - absent

  76.     {%- endif %}

  77.     {% if salt['grains.get']('os') == 'Ubuntu' %}

  78.     - ppa: nginx/{{ nginx.ppa_version }}

  79.     {% else %}

  80.     - name: deb http://ppa.launchpad.net/nginx/{{ nginx.ppa_version }}/ubuntu {{ grains['oscodename'] }} main

  81.     - keyid: C300EE8C

  82.     - keyserver: keyserver.ubuntu.com

  83.     {% endif %}

  84.     - require_in:

  85.       - pkg: nginx_install

  86.     - watch_in:

  87.       - pkg: nginx_install

  88.    {%- endif %}

  89. 

  90.   {%- if from_phusionpassenger %}

  91. nginx_phusionpassenger_repo_keyring:

  92.   file.managed:

  93.     - name: /usr/share/keyrings/phusionpassenger-archive-keyring.gpg

  94.     - source: {{ files_switch(['phusionpassenger-archive-keyring.gpg'],

  95.                               lookup='nginx_phusionpassenger_repo_keyring'

  96.                  )

  97.               }}

  98.     - require_in:

  99.       - pkgrepo: nginx_phusionpassenger_repo

  100. 

  101. # Remove the old repo file

  102. nginx_phusionpassenger_repo_remove:

  103.   pkgrepo.absent:

  104.     - name: deb http://nginx.org/packages/{{ grains['os'].lower() }}/ {{ grains['oscodename'] }} nginx

  105.     - keyid: 561F9B9CAC40B2F7

  106.     - require_in:

  107.       - pkgrepo: nginx_phusionpassenger_repo

  108.   file.absent:

  109.     - name: /etc/apt/sources.list.d/nginx-phusionpassenger-{{ grains['oscodename'] }}.list

  110.     - require_in:

  111.       - pkgrepo: nginx_phusionpassenger_repo

  112.   {%- endif %}

  113. 

  114. nginx_phusionpassenger_repo:

  115.   pkgrepo:

  116.     {%- if from_phusionpassenger %}

  117.     - managed

  118.     {%- else %}

  119.     - absent

  120.     {%- endif %}

  121.     - humanname: nginx phusionpassenger repo

  122.     - name: deb [signed-by=/usr/share/keyrings/phusionpassenger-archive-keyring.gpg] https://oss-binaries.phusionpassenger.com/apt/passenger {{ grains['oscodename'] }} main

  123.     - file: /etc/apt/sources.list.d/phusionpassenger-official-{{ grains['oscodename'] }}.list

  124.     - require_in:

  125.       - pkg: nginx_install

  126.     - watch_in:

  127.       - pkg: nginx_install

  128. {% endif %}

  129. 

  130. {% if salt['grains.get']('os_family') == 'Suse' or salt['grains.get']('os') == 'SUSE' %}

  131. nginx_zypp_repo:

  132.   pkgrepo:

  133.     {%- if from_official %}

  134.     - managed

  135.     {%- else %}

  136.     - absent

  137.     {%- endif %}

  138.     - name: server_http

  139.     - humanname: server_http

  140.     - baseurl: 'http://download.opensuse.org/repositories/server:/http/openSUSE_13.2/'

  141.     - enabled: True

  142.     - autorefresh: True

  143.     - gpgcheck: {{ nginx.lookup.gpg_check }}

  144.     - gpgkey: {{ nginx.lookup.gpg_key }}

  145.     - require_in:

  146.       - pkg: nginx_install

  147.     - watch_in:

  148.       - pkg: nginx_install

  149. {% endif %}

  150. 

  151. {% if salt['grains.get']('os_family') == 'RedHat' %}

  152. {%   if salt['grains.get']('osfinger', '') in ['Amazon Linux-2'] %}

  153. nginx_epel_repo:

  154.   pkgrepo.managed:

  155.     - name: epel

  156.     - humanname: Extra Packages for Enterprise Linux 7 - $basearch

  157.     - mirrorlist: https://mirrors.fedoraproject.org/metalink?repo=epel-7&arch=$basearch

  158.     - enabled: 1

  159.     - gpgcheck: 1

  160.     - gpgkey: https://dl.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-7

  161.     - failovermethod: priority

  162.     - require_in:

  163.       - pkg: nginx_install

  164.     - watch_in:

  165.       - pkg: nginx_install

  166. {%   endif %}

  167. 

  168. nginx_yum_repo:

  169.   pkgrepo:

  170.     {%- if from_official %}

  171.     - managed

  172.     {%- else %}

  173.     - absent

  174.     {%- endif %}

  175.     - name: nginx

  176.     - humanname: nginx repo

  177.     {%- if salt['grains.get']('os') == 'CentOS' %}

  178.     - baseurl: 'http://nginx.org/packages/centos/$releasever/$basearch/'

  179.     {%- else %}

  180.     - baseurl: 'http://nginx.org/packages/rhel/{{ nginx.lookup.rh_os_releasever }}/$basearch/'

  181.     {%- endif %}

  182.     - gpgcheck: {{ nginx.lookup.gpg_check }}

  183.     - gpgkey: {{ nginx.lookup.gpg_key }}

  184.     - enabled: True

  185.     - require_in:

  186.       - pkg: nginx_install

  187.     - watch_in:

  188.       - pkg: nginx_install

  189. 

  190. nginx_phusionpassenger_yum_repo:

  191.   pkgrepo:

  192.     {%- if from_phusionpassenger %}

  193.     - managed

  194.     {%- else %}

  195.     - absent

  196.     {%- endif %}

  197.     - name: passenger

  198.     - humanname: nginx phusionpassenger repo

  199.     - baseurl: 'https://oss-binaries.phusionpassenger.com/yum/passenger/el/$releasever/$basearch'

  200.     - repo_gpgcheck: 1

  201.     - gpgcheck: 0

  202.     - gpgkey: 'https://oss-binaries.phusionpassenger.com/yum/definitions/RPM-GPG-KEY.asc'

  203.     - enabled: True

  204.     - sslverify: 1

  205.     - sslcacert: /etc/pki/tls/certs/ca-bundle.crt

  206.     - require_in:

  207.       - pkg: nginx_install

  208.     - watch_in:

  209.       - pkg: nginx_install

  210. {% endif %}