X-Git-Url: https://review.fuel-infra.org/gitweb?a=blobdiff_plain;f=manifests%2Fsource.pp;h=2386c0a5f3b2eae05fdff5d1864f1e78cc0023a9;hb=refs%2Fheads%2Frelease-prep;hp=b24aa346852dc5435d1d3c4011d32a5b7d290a59;hpb=1192618d075d30a8131f8cfff6af79f42c85d6a3;p=puppet-modules%2Fpuppetlabs-apt.git diff --git a/manifests/source.pp b/manifests/source.pp index b24aa34..2386c0a 100644 --- a/manifests/source.pp +++ b/manifests/source.pp @@ -55,16 +55,22 @@ # @param allow_unsigned # Specifies whether to authenticate packages from this release, even if the Release file is not signed or the signature can't be checked. # +# @param allow_insecure +# Specifies whether to allow downloads from insecure repositories. +# # @param notify_update # Specifies whether to trigger an `apt-get update` run. # -define apt::source( +# @param check_valid_until +# Specifies whether to check if the package release date is valid. Defaults to `True`. +# +define apt::source ( Optional[String] $location = undef, String $comment = $name, String $ensure = present, Optional[String] $release = undef, String $repos = 'main', - Optional[Variant[Hash]] $include = {}, + Variant[Hash] $include = {}, Optional[Variant[String, Hash]] $key = undef, Optional[Stdlib::AbsolutePath] $keyring = undef, Optional[Variant[Hash, Numeric, String]] $pin = undef, @@ -72,9 +78,9 @@ define apt::source( Boolean $allow_unsigned = false, Boolean $allow_insecure = false, Boolean $notify_update = true, + Boolean $check_valid_until = true, ) { - - include ::apt + include apt $_before = Apt::Setting["list-${title}"] @@ -92,7 +98,7 @@ define apt::source( if ! $location { fail('cannot create a source entry without specifying a location') } - elsif ($::apt::proxy['https_acng']) and ($location =~ /(?i:^https:\/\/)/) { + elsif ($apt::proxy['https_acng']) and ($location =~ /(?i:^https:\/\/)/) { $_location = regsubst($location, 'https://','http://HTTPS///') } else { @@ -101,14 +107,14 @@ define apt::source( # Newer oses, do not need the package for HTTPS transport. $_transport_https_releases = ['9'] if (fact('os.release.major') in $_transport_https_releases) and $_location =~ /(?i:^https:\/\/)/ { - ensure_packages('apt-transport-https') + stdlib::ensure_packages('apt-transport-https') Package['apt-transport-https'] -> Class['apt::update'] } } else { $_location = undef } - $includes = merge($::apt::include_defaults, $include) + $includes = $apt::include_defaults + $include if $key and $keyring { fail('parameters key and keyring are mutualy exclusive') @@ -119,7 +125,7 @@ define apt::source( unless $key['id'] { fail('key hash must contain at least an id entry') } - $_key = merge($::apt::source_key_defaults, $key) + $_key = $apt::source_key_defaults + $key } else { $_key = { 'id' => assert_type(String[1], $key) } } @@ -134,18 +140,21 @@ define apt::source( } $sourcelist = epp('apt/source.list.epp', { - 'comment' => $comment, - 'includes' => $includes, - 'options' => delete_undef_values({ - 'arch' => $architecture, - 'trusted' => $allow_unsigned ? {true => 'yes', false => undef}, - 'allow-insecure' => $allow_insecure ? {true => 'yes', false => undef}, - 'signed-by' => $keyring, - }), - 'location' => $_location, - 'release' => $_release, - 'repos' => $repos, - }) + 'comment' => $comment, + 'includes' => $includes, + 'options' => delete_undef_values({ + 'arch' => $_architecture, + 'trusted' => $allow_unsigned ? { true => 'yes', false => undef }, + 'allow-insecure' => $allow_insecure ? { true => 'yes', false => undef }, + 'signed-by' => $keyring, + 'check-valid-until' => $check_valid_until? { true => undef, false => 'false' }, + }, + ), + 'location' => $_location, + 'release' => $_release, + 'repos' => $repos, + } + ) apt::setting { "list-${name}": ensure => $ensure, @@ -155,7 +164,7 @@ define apt::source( if $pin { if $pin =~ Hash { - $_pin = merge($pin, { 'ensure' => $ensure, 'before' => $_before }) + $_pin = $pin + { 'ensure' => $ensure, 'before' => $_before } } elsif ($pin =~ Numeric or $pin =~ String) { $url_split = split($location, '[:\/]+') $host = $url_split[1]