Class shib2idp::idp::finalize
In: /etc/puppet/modules/shib2idp/manifests/classes/idp/finalize.pp
Parent:

Class: shib2idp::idp::finalize

This class executes the finalize stage of the installation and configuration of the Shibboleth IdP on the Puppet agent machine.

The finalize operations are used to finalize IdP configuration, to register all attribute resolver and attribute filters.

Parameters:

install_ldap:This parameter permits to specify if an OpenLDAP server must be installed on the IdP machine or not.
domain_name:This parameter permits to specify the domain name for the LDAP user database.
basedn:This parameters must contain the base DN of the LDAP server.
rootdn:This parameters must contain the CN for the user with root access to the LDAP server.
rootpw:This parameters must contain the password of the user with root access to the LDAP server.
ldap_host:This parameter must contain the LDAP host the IdP will connect to (may be left undef if install_ldap is set to true).
ldap_use_ssl:This parameter must contain true of the LDAP connection must use SSL (may be left undef if install_ldap is set to true).
ldap_use_tls:This parameter must contain true of the LDAP connection must use TLS (may be left undef if install_ldap is set to true).

Actions:

Requires:

Sample Usage: This class file is not called directly.

Resources

Resources

Exec["apps_semaphore_shibboleth_finalized"]
   cwd => "/usr/local/src"
   command => "/bin/echo finalized > /usr/local/src/shibboleth-identityprovider/.puppet"
   require => Exec["apps_tomcatrestart_finalized"]
Exec["apps_tomcatrestart_finalized"]
   command => "/etc/init.d/tomcat6 restart"
   logoutput => "on_failure"
   require => File["/opt/shibboleth-idp/conf/attribute-filter.xml"]
Exec["create_table_shibidp"]
   command => /usr/bin/mysql -uroot -p$rootpw userdb < /tmp/userdb.sql
   require => File["/tmp/userdb.sql"]
Exec["rm-userdb.sql"]
   cwd => "/tmp"
   command => "/bin/rm -f /tmp/userdb.sql"
   refreshonly => true
   require => Exec["create_table_shibidp"]
File["/opt/shibboleth-idp/conf/attribute-filter.xml"]
   ensure => present
   owner => "root"
   group => "root"
   mode => "0644"
   source => "puppet:///modules/shib2idp/attribute-filter.xml"
   require => Notify["ldap_ok"]
File["/opt/shibboleth-idp/conf/attribute-resolver.xml"]
   ensure => present
   owner => "root"
   group => "root"
   mode => "0644"
   source => "puppet:///modules/shib2idp/attribute-resolver.xml"
   require => Exec["rm-userdb.sql"]
File["/opt/shibboleth-idp/conf/handler.xml"]
   ensure => present
   owner => "root"
   group => "root"
   mode => "0644"
   source => "puppet:///modules/shib2idp/handler.xml"
   require => File_line["ipd_log_2"]
File["/opt/shibboleth-idp/lib/mysql-connector-java.jar"]
   ensure => "link"
   target => "/usr/share/java/mysql-connector-java.jar"
   require => [Class["mysql::java"], Notify["ldap_configured"]]
File["/tmp/userdb.sql"]
   ensure => present
   owner => "root"
   group => "root"
   mode => "0644"
   source => "puppet:///modules/shib2idp/userdb.sql"
   require => Mysql::db["userdb"]
File["/var/lib/tomcat6/common/mysql-connector-java.jar"]
   ensure => "link"
   target => "/usr/share/java/mysql-connector-java.jar"
   require => [Class["mysql::java"], Notify["ldap_configured"]]
File_line["ipd_log_1"]
   ensure => present
   path => "/etc/environment"
   line => "IDP_LOG=/opt/shibboleth-idp/logs/idp-process.log"
   require => Notify["finalizing"]
File_line["ipd_log_2"]
   ensure => present
   path => "/etc/environment"
   line => "TOMCAT_LOG_DIR=/var/log/tomcat6/"
   require => File_line["ipd_log_1"]
Mysql::Db["userdb"]
   user => "root"
   password => $rootpw
   host => "localhost"
   grant => ["all"]
   require => [File["/var/lib/tomcat6/common/mysql-connector-java.jar"], File["/opt/shibboleth-idp/lib/mysql-connector-java.jar"]]

[Validate]