Mercurial > repos > other > Puppet

view modules/website/manifests/php.pp @ 224:636866c00b86 puppet-3.6

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Blacklist more user probes - a database and a generic "service"
author IBBoard <dev@ibboard.co.uk>
date Sun, 27 Oct 2019 16:59:42 +0000
parents 89cd717361fd
children 960e737a120e
line wrap: on
line source

class website::php(
    $suffix = '',
    $opcache = undef,
    $extras = [],
    ) {
  File {
      notify => Service['httpd'],
      tag => 'website',
  }
  Package {
      notify => Service['httpd'],
      tag => 'website',
  }
  Package <| tag == 'website' |> -> File <| tag == 'website' |>
  define website::php::extra_php ($pkg = $title) {
    package { "php${website::php::suffix}-${pkg}":
      ensure => installed,
    }
  }

  website::php::extra_php { $extras: }

  if $suffix =~ /^7[1-9]w$/ {
    $php_core = "mod_php${suffix}"
  } else {
    $php_core = "php${suffix}"
  }

  $packages = [ $php_core, "php${suffix}-mbstring", "php${suffix}-xml", "php${suffix}-gd" ]
  package { $packages:
    ensure => installed,
  }
  file { '/etc/php.d/custom-lockdown.ini':
    ensure => present,
    content => 'allow_url_fopen = \'off\'
    expose_php = Off',
  }
  file { '/etc/php.d/custom-php.ini':
    ensure => present,
    source => 'puppet:///modules/website/custom-php.ini',
  }

  if $opcache {
    package { "php${suffix}-${opcache}":
      ensure => installed,
      notify => Service['httpd'],
      require => Package[$php_core],
    }
    file { '/etc/php.d/opcache.ini':
      ensure => present,
      source => 'puppet:///modules/website/opcache.ini',
    }
  }
}