cleanup README

* Make a hypothetical puppet-lint run happy * Remove redundant parameters from resource declarations (e.g. 'ensure') * Unquote a boolean which would fail with the recently added validations * Simplify Puppet w/ Passenger example by removing SSL cipher/cache settings * Add syntax highlighting where it was missing * Provide complete vhost example for "Nginx with precompiled Passenger"
2014-01-09 16:37:47 -05:00 · 2014-01-09 16:37:47 -05:00 · dd7df92ea2
--- a/README.markdown
+++ b/README.markdown
@ -18,7 +18,6 @@ class { 'nginx': }

 ```puppet
 nginx::resource::vhost { 'www.puppetlabs.com':
-  ensure   => present,
  www_root => '/var/www/www.puppetlabs.com',
 }
 ```
@ -27,39 +26,35 @@ nginx::resource::vhost { 'www.puppetlabs.com':

 ```puppet
 nginx::resource::upstream { 'puppet_rack_app':
- ensure  => present,
- members => [
-   'localhost:3000',
-   'localhost:3001',
-   'localhost:3002',
- ],
+  members => [
+    'localhost:3000',
+    'localhost:3001',
+    'localhost:3002',
+  ],
 }

 nginx::resource::vhost { 'rack.puppetlabs.com':
-  ensure => present,
-  proxy  => 'http://puppet_rack_app',
+  proxy => 'http://puppet_rack_app',
 }
 ```

 ### Add a smtp proxy

 ```puppet
-
 class { 'nginx':
- mail => true,
+  mail => true,
 }

 nginx::resource::mailhost { 'domain1.example':
- ensure      => present,
- auth_http   => 'server2.example/cgi-bin/auth',
- protocol    => 'smtp',
- listen_port => 587,
- ssl_port    => 465,
- starttls    => 'only',
- xclient     => 'off',
- ssl         => 'true',
- ssl_cert    => '/tmp/server.crt',
- ssl_key     => '/tmp/server.pem',
+  auth_http   => 'server2.example/cgi-bin/auth',
+  protocol    => 'smtp',
+  listen_port => 587,
+  ssl_port    => 465,
+  starttls    => 'only',
+  xclient     => 'off',
+  ssl         => true,
+  ssl_cert    => '/tmp/server.crt',
+  ssl_key     => '/tmp/server.pem',
 }
 ```

@ -102,7 +97,6 @@ nginx::nginx_vhosts:
  'www.puppetlabs.com':
    www_root: '/var/www/www.puppetlabs.com'
  'rack.puppetlabs.com':
-    ensure: present
    proxy: 'http://puppet_rack_app'
 nginx::nginx_locations:
  'static':
@ -118,50 +112,56 @@ nginx::nginx_locations:

 Currently this works only for Debian family.

-    class { 'nginx':
-      package_source => 'passenger',
-      http_cfg_append => {
-       'passenger_root' => '/usr/lib/ruby/vendor_ruby/phusion_passenger/locations.ini',
-      }
-    }
+```puppet
+class { 'nginx':
+  package_source  => 'passenger',
+  http_cfg_append => {
+    'passenger_root' => '/usr/lib/ruby/vendor_ruby/phusion_passenger/locations.ini',
+  }
+}
+```

 Package source `passenger` will add [Phusion Passenger repository](https://oss-binaries.phusionpassenger.com/apt/passenger) to APT sources.
 For each virtual host you should specify which ruby should be used.

-    vhost_cfg_append => {
-      'passenger_enabled'         => 'on',
-      'passenger_ruby'            => '/usr/bin/ruby'
-    }
+```puppet
+nginx::resource::vhost { 'www.puppetlabs.com':
+  www_root         => '/var/www/www.puppetlabs.com',
+  vhost_cfg_append => {
+    'passenger_enabled' => 'on',
+    'passenger_ruby'    => '/usr/bin/ruby',
+  }
+}
+```

 ### Puppet master served by Nginx and Passenger

 Virtual host config for serving puppet master:

-    nginx::resource::vhost { 'puppet':
-      ensure      => present,
-      server_name => ['puppet'],
-      listen_port => 8140,
-      ssl         => true,
-      ssl_cert    => '/var/lib/puppet/ssl/certs/example.com.pem',
-      ssl_key     => '/var/lib/puppet/ssl/private_keys/example.com.pem',
-      ssl_port    => 8140,
-      ssl_cache   => 'shared:SSL:128m',
-      ssl_ciphers => 'SSLv2:-LOW:-EXPORT:RC4+RSA',
-      vhost_cfg_append => {
-        'passenger_enabled'         => 'on',
-        'passenger_ruby'            => '/usr/bin/ruby',
-        'ssl_crl'                   => '/var/lib/puppet/ssl/ca/ca_crl.pem',
-        'ssl_client_certificate'    => '/var/lib/puppet/ssl/certs/ca.pem',
-        'ssl_verify_client'         => 'optional',
-        'ssl_verify_depth'          => 1,
-      },
-      www_root    => '/etc/puppet/rack/public',
-      use_default_location => false,
-      access_log  => '/var/log/nginx/puppet_access.log',
-      error_log   => '/var/log/nginx/puppet_error.log',
-      passenger_cgi_param => {
-        'HTTP_X_CLIENT_DN'     => '$ssl_client_s_dn',
-        'HTTP_X_CLIENT_VERIFY' => '$ssl_client_verify',
-      },
-    }
-
+```puppet
+nginx::resource::vhost { 'puppet':
+  ensure               => present,
+  server_name          => ['puppet'],
+  listen_port          => 8140,
+  ssl                  => true,
+  ssl_cert             => '/var/lib/puppet/ssl/certs/example.com.pem',
+  ssl_key              => '/var/lib/puppet/ssl/private_keys/example.com.pem',
+  ssl_port             => 8140,
+  vhost_cfg_append     => {
+    'passenger_enabled'      => 'on',
+    'passenger_ruby'         => '/usr/bin/ruby',
+    'ssl_crl'                => '/var/lib/puppet/ssl/ca/ca_crl.pem',
+    'ssl_client_certificate' => '/var/lib/puppet/ssl/certs/ca.pem',
+    'ssl_verify_client'      => 'optional',
+    'ssl_verify_depth'       => 1,
+  },
+  www_root             => '/etc/puppet/rack/public',
+  use_default_location => false,
+  access_log           => '/var/log/nginx/puppet_access.log',
+  error_log            => '/var/log/nginx/puppet_error.log',
+  passenger_cgi_param  => {
+    'HTTP_X_CLIENT_DN'     => '$ssl_client_s_dn',
+    'HTTP_X_CLIENT_VERIFY' => '$ssl_client_verify',
+  },
+}
+```