2 include roles::pubsub::params
4 $cluster_cookie = $roles::pubsub::params::cluster_cookie
5 $admin_password = $roles::pubsub::params::admin_password
6 $ftp_password = $roles::pubsub::params::ftp_password
8 $cc_secondary = rapoport
13 "rabbit@${cc_master}",
14 "rabbit@${cc_secondary}",
16 clustercookie => '8r17so6o1s124ns49sr08n0o24342160',
17 delete_guest_user => true,
21 rabbitmq_user { 'admin':
23 password => $admin_password,
24 provider => 'rabbitmqctl',
27 rabbitmq_user { 'ftpteam':
29 password => $ftp_password,
30 provider => 'rabbitmqctl',
33 rabbitmq_vhost { 'packages':
35 provider => 'rabbitmqctl',
38 rabbitmq_user_permissions { 'admin@packages':
39 configure_permission => '.*',
40 read_permission => '.*',
41 write_permission => '.*',
42 provider => 'rabbitmqctl',
44 Rabbitmq_user['admin'],
45 Rabbitmq_vhost['packages']
49 rabbitmq_user_permissions { 'admin@/':
50 configure_permission => '.*',
51 read_permission => '.*',
52 write_permission => '.*',
53 provider => 'rabbitmqctl',
54 require => Rabbitmq_user['admin']
57 rabbitmq_user_permissions { 'ftpteam@packages':
58 configure_permission => '.*',
59 read_permission => '.*',
60 write_permission => '.*',
61 provider => 'rabbitmqctl',
63 Rabbitmq_user['ftpteam'],
64 Rabbitmq_vhost['packages']
68 @ferm::rule { 'rabbitmq':
69 description => 'rabbitmq connections',
70 rule => '&SERVICE_RANGE(tcp, 5672, $HOST_DEBIAN_V4)'
73 @ferm::rule { 'rabbitmq-v6':
75 description => 'rabbitmq connections',
76 rule => '&SERVICE_RANGE(tcp, 5672, $HOST_DEBIAN_V6)'
79 if $::hostname == $cc_master {
85 @ferm::rule { 'rabbitmq_cluster':
87 description => 'rabbitmq cluster connections',
88 rule => "proto tcp mod state state (NEW) saddr (${you}) ACCEPT"