X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/bb3a98f7f3bbc92dfcb437450ec18671e6c7b9a9..db1258aa91142e37e5dcded368a25ec2c937f473:/cookbooks/wordpress/definitions/wordpress_site.rb diff --git a/cookbooks/wordpress/definitions/wordpress_site.rb b/cookbooks/wordpress/definitions/wordpress_site.rb index 8cd887e4a..08aac28a3 100644 --- a/cookbooks/wordpress/definitions/wordpress_site.rb +++ b/cookbooks/wordpress/definitions/wordpress_site.rb @@ -17,8 +17,10 @@ # limitations under the License. # -define :wordpress_site, :action => [ :create, :enable ] do +define :wordpress_site, :action => [:create, :enable] do name = params[:name] + ssl_enabled = params[:ssl_enabled] || false + ssl_certificate = params[:ssl_certificate] aliases = Array(params[:aliases]) urls = Array(params[:urls]) directory = params[:directory] || "/srv/#{name}" @@ -64,35 +66,41 @@ define :wordpress_site, :action => [ :create, :enable ] do notifies :reload, "service[apache2]" end + wp_config = edit_file "#{directory}/wp-config-sample.php" do |line| + line.gsub!(/database_name_here/, database_name) + line.gsub!(/username_here/, database_user) + line.gsub!(/password_here/, database_password) + line.gsub!(/wp_/, database_prefix) + + line.gsub!(/('AUTH_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:auth_key]}'") + line.gsub!(/('SECURE_AUTH_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:secure_auth_key]}'") + line.gsub!(/('LOGGED_IN_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:logged_in_key]}'") + line.gsub!(/('NONCE_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:nonce_key]}'") + line.gsub!(/('AUTH_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:auth_salt]}'") + line.gsub!(/('SECURE_AUTH_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:secure_auth_salt]}'") + line.gsub!(/('LOGGED_IN_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:logged_in_salt]}'") + line.gsub!(/('NONCE_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:nonce_salt]}'") + + if line =~ /define\('WP_DEBUG'/ + line += "\n" + line += "/**\n" + line += " * Don't allow file editing.\n" + line += " */\n" + line += "define('DISALLOW_FILE_EDIT', true);\n" + if ssl_enabled + line += "define('FORCE_SSL_LOGIN', true);\n" + line += "define('FORCE_SSL_ADMIN', true);\n" + end + end + + line + end + file "#{directory}/wp-config.php" do owner node[:wordpress][:user] group node[:wordpress][:group] mode 0644 - content_from_file "#{directory}/wp-config-sample.php" do |line| - line.gsub!(/database_name_here/, database_name) - line.gsub!(/username_here/, database_user) - line.gsub!(/password_here/, database_password) - line.gsub!(/wp_/, database_prefix) - - line.gsub!(/('AUTH_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:auth_key]}'") - line.gsub!(/('SECURE_AUTH_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:secure_auth_key]}'") - line.gsub!(/('LOGGED_IN_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:logged_in_key]}'") - line.gsub!(/('NONCE_KEY', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:nonce_key]}'") - line.gsub!(/('AUTH_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:auth_salt]}'") - line.gsub!(/('SECURE_AUTH_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:secure_auth_salt]}'") - line.gsub!(/('LOGGED_IN_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:logged_in_salt]}'") - line.gsub!(/('NONCE_SALT', *)'put your unique phrase here'/, "\\1'#{node[:wordpress][:sites][name][:nonce_salt]}'") - - if line =~ /define\('WP_DEBUG'/ - line += "\n" - line += "/**\n" - line += " * Don't allow file editing.\n" - line += " */\n" - line += "define('DISALLOW_FILE_EDIT', true);\n" - end - - line - end + content wp_config notifies :reload, "service[apache2]" end @@ -103,15 +111,11 @@ define :wordpress_site, :action => [ :create, :enable ] do end file "#{directory}/sitemap.xml" do - owner "www-data" - group "www-data" - mode 0644 + action :delete end file "#{directory}/sitemap.xml.gz" do - owner "www-data" - group "www-data" - mode 0644 + action :delete end cookbook_file "#{directory}/googlefac54c35e800caab.html" do @@ -126,7 +130,8 @@ define :wordpress_site, :action => [ :create, :enable ] do cookbook "wordpress" template "apache.erb" directory directory - variables :aliases => aliases, :urls => urls + variables :aliases => aliases, :urls => urls, + :ssl_enabled => ssl_enabled, :ssl_certificate => ssl_certificate notifies :reload, "service[apache2]" end