X-Git-Url: https://git.openstreetmap.org/chef.git/blobdiff_plain/3e69ae9ebf0e363576b7da51f40f51a1d192712c..e6d942db67fd560cb11df049bd355bbd664784f6:/cookbooks/ftp/recipes/default.rb

diff --git a/cookbooks/ftp/recipes/default.rb b/cookbooks/ftp/recipes/default.rb
new file mode 100644
index 000000000..58fc9c80b
--- /dev/null
+++ b/cookbooks/ftp/recipes/default.rb
@@ -0,0 +1,42 @@
+#
+# Cookbook Name:: FTP
+# Recipe:: default
+#
+# Copyright 2018, OpenStreetMap Foundation
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+package "vsftpd"
+
+template "/etc/vsftpd.conf" do
+  source "vsftpd.conf.erb"
+  owner "root"
+  group "root"
+  mode 0o644
+end
+
+service "vsftpd" do
+  action [:enable] # Do not start the service as config may be broken from failed chef run
+  supports :status => true, :restart => true, :reload => true
+  subscribes :restart, "template[/etc/vsftpd.conf]"
+end
+
+firewall_rule "accept-ftp-tcp" do
+  action :helper
+  source "net"
+  dest "fw"
+  proto "tcp"
+  dest_ports "ftp"
+  source_ports "-"
+end