modules/fail2ban/manifests/filter.pp - Issue 29364214: Issue 2487 - Introduce fail2ban module

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments.

Keyboard Shortcuts

	File
u :	up to issue
m :	publish + mail comments
M :	edit review message
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line
<Enter> :	respond to / edit current comment
d :	mark current comment as done

	Issue
u :	up to list of issues
m :	publish + mail comments
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue
# :	close issue

	Comment/message editing
<Ctrl> + s or <Ctrl> + Enter :	save comment
<Esc> :	cancel edit

Side by Side Diff: modules/fail2ban/manifests/filter.pp

Issue 29364214: Issue 2487 - Introduce fail2ban module (Closed)

Patch Set: Issue 2487 - Introduce fail2ban module Created Nov. 29, 2016, 12:44 p.m.

Left:
Right:

Use n/p to move between diff chunks; N/P to move between comments.

Jump to:

View unified diff | Download patch

OLD	NEW
(Empty)
	1 # == Type: fail2ban::filter

	2 #

	3 # Manage filter information and files for any custom filter.

	4 #

	5 # == Parameters:

	6 #

	7 # [failregex]
	mathias 2016/11/29 13:21:24 Either we allow for passing a single string as wel Either we allow for passing a single string as well (the most common use-case probably, and easy to wrap into an array later, but a little more excessive documentation required) or we should re-name the parameter to reflect the list character (plural). f.lopez 2016/12/01 09:13:48 Acknowledged. Show quoted text On 2016/11/29 13:21:24, mathias wrote: > Either we allow for passing a single string as well (the most common use-case > probably, and easy to wrap into an array later, but a little more excessive > documentation required) or we should re-name the parameter to reflect the list > character (plural). Acknowledged.
	8 # Array of strings containing the regular expressions applied to

	9 # the filter.

	10 #

	11 # [ensure]

	12 # Translates directly into the state of the file resource.

	13 #

	14 # === Examples:

	15 #

	16 # fail2ban::filter => {'CVE-2013-0235':
	mathias 2016/11/29 13:21:24 The "=>" here is invalid syntax, and the sub-level The "=>" here is invalid syntax, and the sub-levels below should be indented by 2wo spaces only. f.lopez 2016/12/01 09:13:48 Acknowledged. Show quoted text On 2016/11/29 13:21:24, mathias wrote: > The "=>" here is invalid syntax, and the sub-levels below should be indented by > 2wo spaces only. Acknowledged.
	17 # failregex => [

	18 # '^<HOST>.\"WordPress\/.',

	19 # '^.\"WordPress\/.<HOST>.*'
	mathias 2016/11/29 13:21:24 Missing a comma here, after the string item. Missing a comma here, after the string item. f.lopez 2016/12/01 09:13:48 Acknowledged. Show quoted text On 2016/11/29 13:21:24, mathias wrote: > Missing a comma here, after the string item. Acknowledged.
	20 # ],

	21 # 'ensure' => 'present',

	22 # }
	mathias 2016/11/29 13:21:24 Another comment-line (hash-tag in the beginning, o Another comment-line (hash-tag in the beginning, otherwise empty) should follow here. f.lopez 2016/12/01 09:13:48 Acknowledged. Show quoted text On 2016/11/29 13:21:24, mathias wrote: > Another comment-line (hash-tag in the beginning, otherwise empty) should follow > here. Acknowledged.
	23 define fail2ban::filter (

	24 $failregex = [],

	25 $ensure = 'present',

	26 ) {

	27

	28 include fail2ban

	29 include stdlib

	30

	31 if (size($failregex) == 0) and ($ensure == 'present') {

	32 fail('Require an array of string[s] with the regex patterns to apply.')
	mathias 2016/11/29 13:21:24 Those square brackets are not necessary. And the e Those square brackets are not necessary. And the error message does not indicate the actual issue, namely that an empty array has been encountered ("array of strings" vs "array of one or more regular expressions", for example). f.lopez 2016/12/01 09:13:48 Acknowledged. Show quoted text On 2016/11/29 13:21:24, mathias wrote: > Those square brackets are not necessary. And the error message does not indicate > the actual issue, namely that an empty array has been encountered ("array of > strings" vs "array of one or more regular expressions", for example). Acknowledged.
	33 }

	34

	35 file {"/etc/fail2ban/filter.d/$title.conf":

	36 ensure => $ensure,

	37 content => template("fail2ban/filter.erb"),

	38 group => 'root',

	39 mode => '0644',

	40 owner => 'root',

	41 require => Package['fail2ban'],

	42 notify => Service['fail2ban'],

	43 }

	44 }

	45

OLD	NEW

« no previous file with comments | « no previous file | modules/fail2ban/manifests/init.pp » ('j') | modules/fail2ban/manifests/init.pp » ('J')