7281fba7ab
Ref: https://github.com/saltstack-formulas/packages-formula/pull/74 === Do not change lines below === { "chain": [], "cmd": "git ls-files -z firewalld | xargs --null -I '()' find '()' -type f -print0 | xargs --null sed --in-place --regexp-extended 's#\"firewalld/#\"./#g;s#- firewalld\\.#- .#;'", "exit": 0, "extra_inputs": [], "inputs": [], "outputs": [], "pwd": "." } ^^^ Do not change lines above ^^^
50 lines
1.4 KiB
Plaintext
50 lines
1.4 KiB
Plaintext
# == State: firewalld.services
|
|
#
|
|
# This state ensures that /etc/firewalld/services/ exists.
|
|
#
|
|
{% from "./map.jinja" import firewalld with context %}
|
|
|
|
directory_firewalld_services:
|
|
file.directory: # make sure this is a directory
|
|
- name: /etc/firewalld/services
|
|
- user: root
|
|
- group: root
|
|
- mode: 750
|
|
- require:
|
|
- pkg: package_firewalld # make sure package is installed
|
|
- require_in:
|
|
- service: service_firewalld
|
|
- watch_in:
|
|
- cmd: reload_firewalld # reload firewalld config
|
|
|
|
|
|
# == Define: firewalld.services
|
|
#
|
|
# This defines a service configuration, see firewalld.service (5) man page.
|
|
# You usually don't need this, you can simply add ports to zone.
|
|
|
|
{% for k, v in salt['pillar.get']('firewalld:services', {}).items() %}
|
|
{% set s_name = v.name|default(k) %}
|
|
|
|
/etc/firewalld/services/{{ s_name }}.xml:
|
|
file:
|
|
- managed
|
|
- name: /etc/firewalld/services/{{ s_name }}.xml
|
|
- user: root
|
|
- group: root
|
|
- mode: 644
|
|
- source: salt://firewalld/files/service.xml
|
|
- template: jinja
|
|
- require:
|
|
- pkg: package_firewalld # make sure package is installed
|
|
- file: directory_firewalld_services
|
|
- require_in:
|
|
- service: service_firewalld
|
|
- watch_in:
|
|
- cmd: reload_firewalld # reload firewalld config
|
|
- context:
|
|
name: {{ s_name }}
|
|
service: {{ v|json }}
|
|
|
|
{% endfor %}
|