property :name, String
property :description, String, :required => true
property :after, [String, Array]
+property :wants, [String, Array]
property :type, String,
:default => "simple",
:is => %w(simple forking oneshot dbus notify idle)
property :exec_start_post, String
property :exec_stop, String
property :exec_reload, String
+property :standard_input, String,
+ :is => %w(null tty tty-force tty-fail socket)
+property :standard_output, String,
+ :is => %w(inherit null tty journal syslog kmsg journal+console syslog+console kmsg+console socket)
+property :standard_error, String,
+ :is => %w(inherit null tty journal syslog kmsg journal+console syslog+console kmsg+console socket)
property :restart, String,
:is => %w(on-success on-failure on-abnormal on-watchdog on-abort always)
+property :private_tmp, [TrueClass, FalseClass]
+property :private_devices, [TrueClass, FalseClass]
+property :private_network, [TrueClass, FalseClass]
+property :protect_system, [TrueClass, FalseClass, String]
+property :protect_home, [TrueClass, FalseClass, String]
property :timeout_sec, Fixnum
property :pid_file, String
<% if @after -%>
After=<%= Array(@after).join(" ") %>
<% end -%>
+<% if @wants -%>
+Wants=<%= Array(@wants).join(" ") %>
+<% end -%>
[Service]
Type=<%= @type %>
<% if @exec_reload -%>
ExecReload=<%= @exec_reload %>
<% end -%>
+<% if @standard_input -%>
+StandardInput=<%= @standard_input %>
+<% end -%>
+<% if @standard_output -%>
+StandardOutput=<%= @standard_output %>
+<% end -%>
+<% if @standard_error -%>
+StandardError=<%= @standard_error %>
+<% end -%>
+<% if @private_tmp -%>
+PrivateTmp=<%= @private_tmp %>
+<% end -%>
+<% if @private_devices -%>
+PrivateDevices=<%= @private_devices %>
+<% end -%>
+<% if @private_network -%>
+PrivateNetwork=<%= @private_network %>
+<% end -%>
+<% if @protect_system -%>
+ProtectSystem=<%= @protect_system %>
+<% end -%>
+<% if @protect_home -%>
+ProtectHome=<%= @protect_home %>
+<% end -%>
<% if @restart -%>
Restart=<%= @restart %>
<% end -%>
package "renderd"
+systemd_service "renderd" do
+ description "Mapnik rendering daemon"
+ after "postgresql.service"
+ wants "postgresql.service"
+ user "www-data"
+ exec_start "/usr/bin/renderd -f"
+ standard_error "null"
+ private_tmp true
+ private_devices true
+ private_network true
+ protect_system "full"
+ protect_home true
+ restart "on-failure"
+end
+
service "renderd" do
action [:enable, :start]
- supports :status => false, :restart => true, :reload => false
end
directory "/srv/tile.openstreetmap.org/tiles" do
projects / chef.git / commitdiff