TLS support in sdc-fe

[sdc.git] / catalog-fe / sdc-frontend / chef-repo / cookbooks / sdc-catalog-fe / recipes / FE_7_create_jetty_modules.rb

#
#Set the http module option
if node['disableHttp']
  http_option = "#--module=http"
else
  http_option = "--module=http"
end

execute "create-jetty-modules" do
  command "java -jar #{ENV['JETTY_HOME']}/start.jar --add-to-start=deploy && java -jar #{ENV['JETTY_HOME']}/start.jar --create-startd --add-to-start=http,https,setuid,rewrite"
  cwd "#{ENV['JETTY_BASE']}"
  action :run
end

template "http-ini" do
   path "#{ENV['JETTY_BASE']}/start.d/http.ini"
   source "http-ini.erb"
   owner "#{ENV['JETTY_USER']}"
   group "#{ENV['JETTY_GROUP']}"
   mode "0755"
   variables({
     :http_option => http_option ,
     :http_port => "#{node['FE'][:http_port]}"
    })
end

template "https-ini" do
   path "#{ENV['JETTY_BASE']}/start.d/https.ini"
   source "https-ini.erb"
   owner "#{ENV['JETTY_USER']}"
   group "#{ENV['JETTY_GROUP']}"
   mode "0755"
   variables :https_port => "#{node['FE'][:https_port]}"
end

template "jetty-rewrite" do
  path "#{ENV['JETTY_BASE']}/etc/rewrite-root-to-sdc1.xml"
  source "FE-jetty-rewrite.yaml.erb"
  owner "#{ENV['JETTY_USER']}"
  group "#{ENV['JETTY_GROUP']}"
  mode "0644"
end

template "ssl-ini" do
   path "#{ENV['JETTY_BASE']}/start.d/ssl.ini"
   source "ssl-ini.erb"
   owner "#{ENV['JETTY_USER']}"
   group "#{ENV['JETTY_GROUP']}"
   mode "0755"
   variables({
     :https_port => "#{node['FE'][:https_port]}" ,
     :keystore_path => "#{node['FE'][:keystore_path]}" ,
     :keystore_password => "#{node['FE'][:keystore_password]}" ,
     :truststore_path => "#{node['FE'][:truststore_path]}" ,
     :truststore_password => "#{node['FE'][:truststore_password]}"
   })
end