default.rb 2.94 KB
Newer Older
jtimberman's avatar
jtimberman committed
1
2
3
4
#
# Cookbook Name:: rsyslog
# Recipe:: default
#
Tim Smith's avatar
Tim Smith committed
5
# Copyright 2009-2015, Chef Software, Inc.
jtimberman's avatar
jtimberman committed
6
7
8
9
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
10
#
jtimberman's avatar
jtimberman committed
11
#     http://www.apache.org/licenses/LICENSE-2.0
12
#
jtimberman's avatar
jtimberman committed
13
14
15
16
17
18
19
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

20
package 'rsyslog'
21
package 'rsyslog-relp' if node['rsyslog']['use_relp']
22

23
if node['rsyslog']['enable_tls'] && node['rsyslog']['tls_ca_file']
24
  Chef::Log.fatal("Recipe rsyslog::default can not use 'enable_tls' with protocol '#{node['rsyslog']['protocol']}' (requires 'tcp')") unless node['rsyslog']['protocol'] == 'tcp'
25
26
27
  package 'rsyslog-gnutls'
end

Dan Buch's avatar
Dan Buch committed
28
directory "#{node['rsyslog']['config_prefix']}/rsyslog.d" do
29
30
31
  owner 'root'
  group 'root'
  mode  '0755'
jtimberman's avatar
jtimberman committed
32
33
end

34
35
log node['rsyslog']['group']

Mihai Petracovici's avatar
Mihai Petracovici committed
36
directory node['rsyslog']['working_dir'] do
37
38
  owner node['rsyslog']['user']
  group node['rsyslog']['group']
39
  mode  '0700'
40
41
end

Jennifer Davis's avatar
Jennifer Davis committed
42
43
44
45
46
execute 'validate_config' do
  command "rsyslogd -N 1 -f #{node['rsyslog']['config_prefix']}/rsyslog.conf"
  action  :nothing
end

47
48
# Our main stub which then does its own rsyslog-specific
# include of things in /etc/rsyslog.d/*
Dan Buch's avatar
Dan Buch committed
49
template "#{node['rsyslog']['config_prefix']}/rsyslog.conf" do
50
51
52
53
  source  'rsyslog.conf.erb'
  owner   'root'
  group   'root'
  mode    '0644'
Jennifer Davis's avatar
Jennifer Davis committed
54
  notifies :run, 'execute[validate_config]'
55
  notifies :restart, "service[#{node['rsyslog']['service_name']}]"
jtimberman's avatar
jtimberman committed
56
end
57

Dan Buch's avatar
Dan Buch committed
58
template "#{node['rsyslog']['config_prefix']}/rsyslog.d/50-default.conf" do
59
60
61
62
  source  '50-default.conf.erb'
  owner   'root'
  group   'root'
  mode    '0644'
Jennifer Davis's avatar
Jennifer Davis committed
63
  notifies :run, 'execute[validate_config]'
64
  notifies :restart, "service[#{node['rsyslog']['service_name']}]"
65
end
66

67
68
# syslog needs to be stopped before rsyslog can be started on RHEL versions before 6.0
if platform_family?('rhel') && node['platform_version'].to_i < 6
69
  service 'syslog' do
70
71
    action [:stop, :disable]
  end
72
73
elsif platform_family?('smartos', 'omnios')
  # syslog needs to be stopped before rsyslog can be started on SmartOS, OmniOS
Dan Buch's avatar
Dan Buch committed
74
75
76
  service 'system-log' do
    action :disable
  end
77
78
end

79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
if platform_family?('omnios')
  # manage the SMF manifest on OmniOS
  template '/var/svc/manifest/system/rsyslogd.xml' do
    source 'omnios-manifest.xml.erb'
    owner 'root'
    group 'root'
    mode '0644'
    notifies :run, 'execute[import rsyslog manifest]', :immediately
  end

  execute 'import rsyslog manifest' do
    action :nothing
    command 'svccfg import /var/svc/manifest/system/rsyslogd.xml'
    notifies :restart, "service[#{node['rsyslog']['service_name']}]"
  end
end

96
97
98
99
service node['rsyslog']['service_name'] do
  supports restart: true, status: true
  action [:enable, :start]
end