PageRenderTime 98ms CodeModel.GetById 33ms RepoModel.GetById 1ms app.codeStats 0ms

/libraries/restart_service.rb

https://github.com/sewer2/cb-iptables-ng
Ruby | 51 lines | 21 code | 5 blank | 25 comment | 5 complexity | 39e82d1b7ce7a24c85e1d56578b3de91 MD5 | raw file
    

  1. #
    2. 

  2. # Cookbook Name:: iptables-ng
    3. 

  3. # Recipe:: restart_service
    4. 

  4. #
    5. 

  5. # Copyright 2013, Chris Aumann
    6. 

  6. #
    7. 

  7. # This program is free software: you can redistribute it and/or modify
    8. 

  8. # it under the terms of the GNU General Public License as published by
    9. 

  9. # the Free Software Foundation, either version 3 of the License, or
    10. 

  10. # (at your option) any later version.
    11. 

  11. #
    12. 

  12. # This program is distributed in the hope that it will be useful,
    13. 

  13. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    15. 

  15. # GNU General Public License for more details.
    16. 

  16. #
    17. 

  17. # You should have received a copy of the GNU General Public License
    18. 

  18. # along with this program.  If not, see <http://www.gnu.org/licenses/>.
    19. 

  19. #
    20. 

  20. 

  21. # This was implemented as a internal-only provider.
    22. 

  22. # Apparently, calling a LWRP from a LWRP doesnt' really work with
    23. 

  23. # subscribes / notifies. Therefore, using this workaround.
    24. 

  24. 

  25. module Iptables
    26. 

  26.   module Manage
    27. 

  27.     def restart_service(ip_version)
    28. 

  28.       # Restart iptables service if available
    29. 

  29.       if node['iptables-ng']["service_ipv#{ip_version}"]
    30. 

  30. 

  31.         # Do not restart twice if the command is the same for ipv4 and ipv6
    32. 

  32.         return if node['iptables-ng']['service_ipv4'] == node['iptables-ng']['service_ipv6'] and ip_version == 6
    33. 

  33. 

  34.         Chef::Resource::Service.new(node['iptables-ng']["service_ipv#{ip_version}"], run_context).tap do |service|
    35. 

  35.           service.supports(status: true, restart: true)
    36. 

  36.           service.run_action(:enable)
    37. 

  37.           service.run_action(:restart)
    38. 

  38.         end
    39. 

  39. 

  40.       # If no service is available, apply the rules manually
    41. 

  41.       else
    42. 

  42.         Chef::Log.info 'applying rules manually, as no service is specified'
    43. 

  43.         Chef::Resource::Execute.new("iptables-restore for ipv#{ip_version}", run_context).tap do |execute|
    44. 

  44.           execute.command("iptables-restore < #{node['iptables-ng']['script_ipv4']}") if ip_version == 4
    45. 

  45.           execute.command("ip6tables-restore < #{node['iptables-ng']['script_ipv6']}") if ip_version == 6
    46. 

  46.           execute.run_action(:run)
    47. 

  47.         end
    48. 

  48.       end
    49. 

  49.     end
    50. 

  50.   end
    51. 

  51. end
    52. 

  52.