Forge Home

ipquery

Module to deploy the ipquery tool

9,120 downloads

8,800 latest version

4.6 quality score

We run a couple of automated
scans to help you access a
module's quality. Each module is
given a score based on how well
the author has formatted their
code and documentation and
modules are also checked for
malware using VirusTotal.

Please note, the information below
is for guidance only and neither of
these methods should be considered
an endorsement by Puppet.

Version information

  • 0.5.1 (latest)
  • 0.5.0
released Jun 12th 2015
This version is compatible with:

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'gene1wood-ipquery', '0.5.1'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add gene1wood-ipquery
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install gene1wood-ipquery --version 0.5.1

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download
Tags: ec2, aws

Documentation

gene1wood/ipquery — version 0.5.1 Jun 12th 2015

#ipquery

####Table of Contents

  1. Overview
  2. Module Description - What the module does and why it is useful
  3. Setup - The basics of getting started with the ipquery module
  4. Usage - Configuration options and additional functionality
  5. Reference - An under-the-hood peek at what the module is doing and how
  6. Limitations - OS compatibility, etc.
  7. Development - Guide for contributing to the module

##Overview

Installs and configures the ipquery website.

##Module Description

The ipquery module deploys the ipquery and ip2instance packages, configures them and serves the ipquery website using Apache httpd and mod_wsgi.

##Setup

###What the IPQuery module affects

  • Creates a python virtual environement
  • Installs the ipquery and ip2instance pypi packages into that virtual enviroinment
  • Creates an ipquery configuration file so that ipquery can both
  • Installs and configures Apache httpd to serve the ipquery website using mod_wsgi over HTTPS

###Setup Requirements

In order to maintain backwards compatibility with Puppet 3.x and stringified facts the $ip2instance_roles parameter is a JSON encoded list instead of a list.

###Beginning with the IPQuery module

Include the module as you would any other, passing in all of the parameters to configure it or using hiera to override the parameter defaults with your settings.

##Usage

To use the ipquery module you'll need to pass in the following configuration parameters to override the defaults.

###SAML configuration

  • $idp_name The name of the identity provider. This value is used to identify the SAML provider in the case where you are using multiple providers. Example : oktadev
  • $saml_url The URL configured with your SAML provider. This URL will be hosted by your SAML provider and provide the SAML metadata needed to use them as an identity provider. Example : http://idp.oktadev.com/metadata

###IP2Instance configuration

  • $ip2instance_roles A JSON encoded list of AWS IAM Role ARNs that ipquery assumes in order to gather information about AWS ec2 instances. Note: This is JSON encoded to work around Puppet 3.x stringified facts. Example :
    "[\"arn:aws:iam::012345678901:role/MyRole\",
      \"arn:aws:iam::123456789010:role/MyRole\"]"

###Other configuration

  • $flask_secret_key Session secret which Flask sessions require for security. Example : 11111111-1111-1111-1111-111111111111
  • $tls_cert_filename The filename of the SSL/TLS certificate used by Apache. Example : /etc/pki/tls/certs/cert.crt
  • $tls_certificate The SSL/TLS certificate. Example :
    "-----BEGIN CERTIFICATE-----\n
    MIIChDCCAe2gAwIBAgIJALrQYmKb2JKTMA0GCSqGSIb3DQEBBQUAMFsxCzAJBgNV\n
    .
    .
    .
    rCCZOCHlYGwXp98AxJJHDVjBx9uYFWSQ\n
    -----END CERTIFICATE-----"
  • $tls_certificate_key The SSL/TLS certificate private key. Example :
    "-----BEGIN RSA PRIVATE KEY-----\n
    MIICXQIBAAKBgQC1WR2q2F3ZwljUsVJLWCCL5rfTTJi10gOrkTHWjtsx1xMe7hy5\n
    .
    .
    .
    ad5fe0sb4By15wbr459Rwq+xalIhLv1qAHVROI173FYV\n
    -----END RSA PRIVATE KEY-----"
  • $tls_key_filename The filename of the SSL/TLS private key used by Apache Example : /etc/pki/tls/private/cert.key
  • $username The user to run Flask as. Example : ipqueryuser
  • $virtualenv_dir The directory path to create the virtual environment in. Example : /opt/ipquery/venv
  • $wsgi_filename The filename of the WSGI file. Example : /opt/ipquery/ipquery.wsgi

##Reference

###Class: ipquery

Installs and configures ipquery.

Include the ipquery class to install ipquery:

  class { 'ipquery': }

##Limitations

IPQuery expects to run on RHEL/CentOS 7.

##Development

Feel free to fork this module and contribut pull requests.