Fix parent for stormfly-02

[chef.git] / cookbooks / geodns / recipes / default.rb

diff --git a/cookbooks/geodns/recipes/default.rb b/cookbooks/geodns/recipes/default.rb
index 0bd74fb8e6d5d9ee37a1d864a8fc60a2ae44fe7d..f24f1b8deecaadc03ec803e555e530d1a3a31b9f 100644 (file)
--- a/cookbooks/geodns/recipes/default.rb
+++ b/cookbooks/geodns/recipes/default.rb
@@ -1,14 +1,14 @@
 #
-# Cookbook Name:: geodns
+# Cookbook:: geodns
 # Recipe:: default
 #
-# Copyright 2011, OpenStreetMap Foundation
+# Copyright:: 2011, OpenStreetMap Foundation
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
-#     http://www.apache.org/licenses/LICENSE-2.0
+#     https://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
@@ -17,53 +17,66 @@
 # limitations under the License.
 #
 
-package "pdns-server"
-package "pdns-backend-geo"
+package %w[
+  geoipupdate
+  gdnsd
+]
 
-service "pdns" do
-  action [ :enable, :start ]
-  supports :status => true, :restart => true, :reload => true
+execute "geoipdate" do
+  command "geoipupdate"
+  user "root"
+  group "root"
+  not_if { ::File.exist?("/var/lib/GeoIP/GeoLite2-Country.mmdb") }
 end
 
-file "/etc/powerdns/pdns.d/pdns.simplebind" do
-  action :delete
-  notifies :reload, resources(:service => "pdns")
+directory "/etc/gdnsd/config.d" do
+  owner "nobody"
+  group "nogroup"
+  mode 0o755
 end
 
-template "/etc/powerdns/pdns.d/geo.conf" do
-  source "geo.conf.erb"
+template "/etc/gdnsd/config" do
+  source "config.erb"
   owner "root"
   group "root"
-  mode "0600"
-  notifies :reload, resources(:service => "pdns")
+  mode 0o644
+  notifies :restart, "service[gdnsd]"
 end
 
-directory "/etc/powerdns/zones.d" do
+template "/etc/gdnsd/zones/geo.openstreetmap.org" do
+  source "geo.erb"
   owner "root"
   group "root"
-  mode "0755"
+  mode 0o644
+  notifies :restart, "service[gdnsd]"
 end
 
-template "/etc/powerdns/zones.d/tile.conf" do
-  source "tile.conf.erb"
-  owner "root"
-  group "root"
-  mode "0644"
-  notifies :reload, resources(:service => "pdns")
+service "gdnsd" do
+  action [:enable, :start]
+  supports :status => true, :restart => true, :reload => true
 end
 
-template "/etc/cron.weekly/geodns-update" do
-  source "cron.erb"
-  owner "root"
-  group "root"
-  mode "0755"
+systemd_service "gdnsd-reload" do
+  description "Reload gdnsd configuration"
+  type "simple"
+  user "root"
+  exec_start "/bin/systemctl reload-or-restart gdnsd"
+  standard_output "null"
+  private_tmp true
+  private_devices true
+  protect_system "full"
+  protect_home true
+  no_new_privileges true
 end
 
-execute "geodns-sync-countries" do
-  command "rsync -z rsync://countries-ns.mdc.dk/zone/zz.countries.nerd.dk.rbldnsd /etc/powerdns/countries.conf"
-  user "root"
-  group "root"
-  not_if { File.exist?("/etc/powerdns/countries.conf") }
+systemd_path "gdnsd-reload" do
+  description "Reload gdnsd configuration"
+  path_changed "/etc/gdnsd/config.d"
+end
+
+service "gdnsd-reload.path" do
+  action [:enable, :start]
+  subscribes :restart, "systemd_path[gdnsd-reload]"
 end
 
 firewall_rule "accept-dns-udp" do