The yum-duosecurity cookbook takes over management of the default repositoryids used with the official duosecurity repositories. It allows attribute manipulation of the duosecurity
yum channel.
- Chef 11+
- yum version 3.2.0 or higher
- Fedora and RHEL based distributions (RHEL, CentOS, and Scientific Linux) are supported
The following attributes are set by default
default['yum']['duosecurity']['description'] = 'Duo Security Repository'
default['yum']['duosecurity']['baseurl'] = "http://pkg.duosecurity.com/CentOS/#{node['platform_version'].to_i}/$basearch"
default['yum']['duosecurity']['gpgkey'] = 'https://www.duosecurity.com/RPM-GPG-KEY-DUO'
default['yum']['duosecurity']['gpgcheck'] = true
default['yum']['duosecurity']['enabled'] = true
default['yum']['duosecurity']['managed'] = true
- default - Walks through node attributes and feeds a yum_resource
- parameters. The following is an example a resource generated by the
- recipe during compilation.
yum_repository 'duosecurity' do
baseurl "http://pkg.duosecurity.com/CentOS/#{node['platform_version'].to_i}/$basearch"
description 'Duo Security Repository'
enabled true
gpgcheck true
gpgkey 'http://www.duosecurity.com/downloads/RPM-GPG-KEY-duosecurity'
end
To disable the duosecurity repository through a Role or Environment definition
default_attributes(
:yum => {
:duosecurity => {
:enabled => {
false
}
}
}
)
To enable the duosecurity repository with a wrapper cookbook, place the following in a recipe:
node.default['yum']['duosecurity']['enabled'] = true
include_recipe 'yum-duosecurity'
Point the base and updates repositories at an internally hosted server.
node.default['yum']['duosecurity']['enabled'] = true
node.default['yum']['duosecurity']['mirrorlist'] = nil
node.default['yum']['duosecurity']['baseurl'] = 'https://internal.example.com/duosecurity/6/os/x86_64'
node.default['yum']['duosecurity']['sslverify'] = false
include_recipe 'yum-duosecurity'
- Chase Bolt (chase.bolt@gmail.com)
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.