Puppet Class: netbox::config

Defined in:

manifests/config.pp

Summary

Configures Netbox and gunicorn

Overview

Configures Netbox and gunicorn, and load the database schema.

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Date/time formatting. See the following link for supported formats: docs.djangoproject.com/en/stable/ref/templates/builtins/#date

Examples:

include netbox::config

Parameters:

• user (String) —

  The user owning the Netbox installation files, and running the service.

• group (String) —

  The group owning the Netbox installation files, and running the service.

• install_root (Stdlib::Absolutepath) —

  The directory where the netbox installation is unpacked

• allowed_hosts (Array[Stdlib::Host]) —

  Array of valid fully-qualified domain names (FQDNs) for the NetBox server. NetBox will not permit write access to the server via any other hostnames. The first FQDN in the list will be treated as the preferred name.

• database_name (String) —

  Name of the PostgreSQL database. If handle_database is true, then this database gets created as well. If not, then it is only used by the application, and needs to exist.

• database_user (String) —

  Name of the PostgreSQL database user. If handle_database is true, then this database user gets created as well. If not, then it is only used by the application, and needs to exist.

• database_password (String) —

  Name of the PostgreSQL database password. If handle_database is true, then this database password gets created as well. If not, then it is only used by the application, and needs to exist.

• admins (Array) —

  Array of hashes with two keys, ‘name’ and ‘email’. This is where the email goes if something goes wrong This feature (in the Puppet module) is not well tested.

• database_host (Stdlib::Host) —

  Hostname where the PostgreSQL database resides.

• database_port (Integer) —

  PostgreSQL database port. NB! The PostgreSQL database that is made when using handle_database does not support configuring a non-standard port. So change this parameter only if using separate PostgreSQL DB with non-standard port. Defaults to 5432.

• database_conn_max_age (Integer) —

  Database max connection age in seconds. Defaults to 300.

• redis_options (Hash) —

  Options used against redis. Customize to fit your redis installation. Use default values if using the redis bundled with this module.

• email_options (Hash) —

  Options used for sending email.

• secret_key (String) —

  A random string of letters, numbers and symbols that Netbox needs. This needs to be supplied, and should be treated as a secret. Should be at least 50 characters long.

• banner_top (String) —

  Text for top banner on the Netbox webapp

• banner_bottom (String) —

  Text for bottom banner on the Netbox webapp

• banner_login (String) —

  Text for login banner on the Netbox webapp

• base_path (String) —

  Base URL path if accessing NetBox within a directory. For example, if installed at example.com/netbox/, set: BASE_PATH = ‘netbox/’

• debug (Boolean) —

  Set to True to enable server debugging. WARNING: Debugging introduces a substantial performance penalty and may reveal sensitive information about your installation. Only enable debugging while performing testing. Never enable debugging on a production system.

• enforce_global_unique (Boolean) —

  Enforcement of unique IP space can be toggled on a per-VRF basis. To enforce unique IP space within the global table (all prefixes and IP addresses not assigned to a VRF), set ENFORCE_GLOBAL_UNIQUE to True.

• login_required (Boolean) —

  Setting this to True will permit only authenticated users to access any part of NetBox. By default, anonymous users are permitted to access most data in NetBox (excluding secrets) but not make any changes.

• metrics_enabled (Boolean) —

  Setting this to true exposes Prometheus metrics at /metrics. See the Promethues Metrics documentation for more details: netbox.readthedocs.io/en/stable/additional-features/prometheus-metrics/)

• prefer_ipv4 (Boolean) —

  When determining the primary IP address for a device, IPv6 is preferred over IPv4 by default. Set this to True to prefer IPv4 instead.

• exempt_view_permissions (Array) —

  Exempt certain models from the enforcement of view permissions. Models listed here will be viewable by all users and by anonymous users. List models in the form ‘<app>.<model>`. Add ’*‘ to this list to exempt all models.

• napalm_username (String) —

  Username that NetBox will uses to authenticate to devices when connecting via NAPALM.

• napalm_password (String) —

  Password that NetBox will uses to authenticate to devices when connecting via NAPALM.

• napalm_timeout (Integer) —

  NAPALM timeout (in seconds).

• time_zone (String)
• date_format (String)
• short_date_format (String)
• time_format (String)
• short_time_format (String)
• datetime_format (String)
• short_datetime_format (String)

# File 'manifests/config.pp', line 137

class netbox::config (
  String $user,
  String $group,
  Stdlib::Absolutepath $install_root,
  Array[Stdlib::Host] $allowed_hosts,
  String $database_name,
  String $database_user,
  String $database_password,
  Stdlib::Host $database_host,
  Integer $database_port,
  Integer $database_conn_max_age,
  Hash $redis_options,
  Hash $email_options,
  String $secret_key,
  Array $admins,
  String $banner_top,
  String $banner_bottom,
  String $banner_login,
  String $base_path,
  Boolean $debug,
  Boolean $enforce_global_unique,
  Boolean $login_required,
  Boolean $metrics_enabled,
  Boolean $prefer_ipv4,
  Array $exempt_view_permissions,
  String $napalm_username,
  String $napalm_password,
  Integer $napalm_timeout,
  String $time_zone,
  String $date_format,
  String $short_date_format,
  String $time_format,
  String $short_time_format,
  String $datetime_format,
  String $short_datetime_format,
) {
  $should_create_superuser = false;
  $software_directory = "${install_root}/netbox"
  $venv_dir = "${software_directory}/venv"
  $gunicorn_file = "${software_directory}/gunicorn.py"

  $gunicorn_settings = {
    port                => 8001,
    workers             => 5,
    threads             => 3,
    timeout             => 120,
    max_requests        => 5000,
    max_requests_jitter => 500,
  }

  file { $gunicorn_file:
    content => epp('netbox/gunicorn.py.epp', $gunicorn_settings),
    owner   => $user,
    group   => $group,
    mode    => '0644',
  }

  $config_file = "${software_directory}/netbox/netbox/configuration.py"

  file { $config_file:
    content      => epp('netbox/configuration.py.epp', {
      'allowed_hosts'           => $allowed_hosts,
      'database_name'           => $database_name,
      'database_user'           => $database_user,
      'database_password'       => $database_password,
      'database_host'           => $database_host,
      'database_port'           => $database_port,
      'database_conn_max_age'   => $database_conn_max_age,
      'redis_options'           => $redis_options,
      'email_options'           => $email_options,
      'secret_key'              => $secret_key,
      'admins'                  => $admins,
      'banner_top'              => $banner_top,
      'banner_bottom'           => $banner_bottom,
      'banner_login'            => $banner_login,
      'base_path'               => $base_path,
      'debug'                   => $debug,
      'enforce_global_unique'   => $enforce_global_unique,
      'exempt_view_permissions' => $exempt_view_permissions,
      'login_required'          => $login_required,
      'metrics_enabled'         => $metrics_enabled,
      'prefer_ipv4'             => $prefer_ipv4,
      'napalm_username'         => $napalm_username,
      'napalm_password'         => $napalm_password,
      'napalm_timeout'          => $napalm_timeout,
      'time_zone'               => $time_zone,
      'date_format'             => $date_format,
      'short_date_format'       => $short_date_format,
      'time_format'             => $time_format,
      'short_time_format'       => $short_time_format,
      'datetime_format'         => $datetime_format,
      'short_datetime_format'   => $short_datetime_format,
    }),
    owner        => $user,
    group        => $group,
    mode         => '0644',
    validate_cmd => "${venv_dir}/bin/python -m py_compile %",
    notify       => Exec['collect static files'],
  }

  Exec {
    cwd         => $software_directory,
    path        => [ "${venv_dir}/bin", '/usr/bin', '/usr/sbin' ],
    environment => ["VIRTUAL_ENV=${venv_dir}"],
    provider    => shell,
    user        => $user,
  }

  exec { 'database migration':
    onlyif  => "${venv_dir}/bin/python3 netbox/manage.py showmigrations | grep '\[ \]'",
    command => "${venv_dir}/bin/python3 netbox/manage.py migrate --no-input",
    require => File[$config_file],
    notify  => Exec['collect static files'],
  }
  exec { 'collect static files':
    command     => "${venv_dir}/bin/python3 netbox/manage.py collectstatic --no-input",
    require     => File[$config_file],
    refreshonly => true,
  }
}