X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/e5f294d3dc676675b2803915571c28337468c3b3..137c1558a1a89a99b4770ffa1f4b71fc46eb0020:/cookbooks/fail2ban/resources/jail.rb diff --git a/cookbooks/fail2ban/resources/jail.rb b/cookbooks/fail2ban/resources/jail.rb index 203a10f9a..e5801c065 100644 --- a/cookbooks/fail2ban/resources/jail.rb +++ b/cookbooks/fail2ban/resources/jail.rb @@ -1,14 +1,14 @@ # -# Cookbook Name:: fail2ban +# Cookbook:: fail2ban # Resource:: fail2ban_jail # -# Copyright 2015, OpenStreetMap Foundation +# Copyright:: 2015, OpenStreetMap Foundation # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # -# http://www.apache.org/licenses/LICENSE-2.0 +# https://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, @@ -17,13 +17,19 @@ # limitations under the License. # +unified_mode true + default_action :create -property :jail, :kind_of => String, :name_attribute => true +property :jail, :kind_of => String, :name_property => true property :filter, :kind_of => String +property :backend, :kind_of => String +property :journalmatch, :kind_of => String property :logpath, :kind_of => String property :protocol, :kind_of => String property :ports, :kind_of => Array, :default => [] +property :bantime, :kind_of => [Integer, String] +property :findtime, :kind_of => [Integer, String] property :maxretry, :kind_of => Integer property :ignoreips, :kind_of => Array @@ -33,12 +39,16 @@ action :create do source "jail.erb" owner "root" group "root" - mode 0o644 + mode "644" variables :name => new_resource.jail, :filter => new_resource.filter, + :backend => new_resource.backend, + :journalmatch => new_resource.journalmatch, :logpath => new_resource.logpath, :protocol => new_resource.protocol, :ports => new_resource.ports, + :bantime => new_resource.bantime, + :findtime => new_resource.findtime, :maxretry => new_resource.maxretry, :ignoreips => new_resource.ignoreips end @@ -51,5 +61,5 @@ action :delete do end def after_created - notifies :reload, "service[fail2ban]" + notifies :restart, "service[fail2ban]" end