1 {%- from "influxdb/map.jinja" import server with context %}
3 {%- if server.enabled %}
5 {%- if not server.container_mode %}
8 - names: {{ server.pkgs }}
12 {{ server.prefix_dir }}/etc/influxdb:
21 - name: {{ server.prefix_dir }}/etc/influxdb/influxdb.conf
22 - source: salt://influxdb/files/influxdb.conf
24 {%- if not server.container_mode %}
26 - pkg: influxdb_packages
29 {%- if not server.container_mode %}
32 - name: /etc/default/influxdb
33 - source: salt://influxdb/files/default
36 - pkg: influxdb_packages
43 - user: {{ server.service_user }}
44 - group: {{ server.service_group }}
46 {{server.data.wal_dir}}:
50 - user: {{ server.service_user }}
51 - group: {{ server.service_group }}
57 - user: {{ server.service_user }}
58 - group: {{ server.service_group }}
63 - name: {{ server.service }}
64 # This delay is needed before being able to send data to server to create
65 # users and databases.
67 {%- if grains.get('noservices') or server.container_mode %}
71 - file: influxdb_config
72 {%- if not server.container_mode %}
73 - file: influxdb_default
76 {% set url_for_query = "http://{}:{}/query".format(server.http.bind.address, server.http.bind.port) %}
77 {% set admin_created = false %}
79 {%- if not server.container_mode and server.admin.get('user', {}).get('enabled', False) %}
80 {% set query_create_admin = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}' WITH ALL PRIVILEGES\"".format(server.admin.user.name, server.admin.user.password) %}
81 {% set admin_url = "http://{}:{}/query?u={}&p={}".format(server.http.bind.address, server.http.bind.port, server.admin.user.name, server.admin.user.password) %}
82 influxdb_create_admin:
84 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_admin }} || curl -f -S -POST "{{ admin_url }}" {{ query_create_admin }}
86 - service: influxdb_service
87 {% set url_for_query = admin_url %}
88 {% set admin_created = true %}
91 # An admin must exist before creating others users
92 {%- if admin_created %}
93 {%- for user_name, user in server.get('user', {}).iteritems() %}
94 {%- if user.get('enabled', False) %}
95 {%- if user.get('admin', False) %}
96 {% set query_create_user = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}' WITH ALL PRIVILEGES\"".format(user.name, user.password) %}
98 {% set query_create_user = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}'\"".format(user.name, user.password) %}
100 influxdb_create_user_{{user.name}}:
102 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_user }}
104 - cmd: influxdb_create_admin
105 # TODO: manage user deletion
110 {%- for db_name, db in server.get('database', {}).iteritems() %}
111 {%- if db.get('enabled', False) %}
112 {% set query_create_db = "--data-urlencode \"q=CREATE DATABASE {}\"".format(db.name) %}
113 influxdb_create_db_{{db.name}}:
115 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_db }}
116 {%- if admin_created %}
118 - cmd: influxdb_create_admin
120 # TODO: manage database deletion
122 {% for rp in db.get('retention_policy', []) %}
123 {% set rp_name = rp.get('name', 'autogen') %}
124 {% if rp.get('is_default') %}
125 {% set is_default = 'DEFAULT' %}
127 {% set is_default = '' %}
129 {% set duration = rp.get('duration', 'INF') %}
130 {% set replication = rp.get('replication', '1') %}
131 {% if rp.get('shard_duration') %}
132 {% set shard_duration = 'SHARD DURATION {}'.format(rp.shard_duration) %}
134 {% set shard_duration = '' %}
136 {% set query_retention_policy = 'RETENTION POLICY {} ON {} DURATION {} REPLICATION {} {} {}'.format(
137 rp_name, db.name, duration, replication, shard_duration, is_default)
139 influxdb_retention_policy_{{db.name}}_{{ rp_name }}:
142 - name: curl -s -S -POST "{{ url_for_query }}" --data-urlencode "q=CREATE {{ query_retention_policy }}"|grep -v "policy already exists" || curl -s -S -POST "{{ url_for_query }}" --data-urlencode "q=ALTER {{ query_retention_policy }}"
144 - cmd: influxdb_create_db_{{db.name}}
149 # An admin must exist to manage grants, otherwise there is no user.
150 {%- if admin_created %}
151 {%- for grant_name, grant in server.get('grant', {}).iteritems() %}
152 {%- if grant.get('enabled', False) %}
153 {% set query_grant_user_access = "--data-urlencode \"q=GRANT {} ON {} TO {}\"".format(grant.privilege, grant.database, grant.user) %}
154 influxdb_grant_{{grant_name}}:
156 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_grant_user_access }}
158 - cmd: influxdb_create_db_{{grant.database}}
159 - cmd: influxdb_create_user_{{grant.user}}
160 - cmd: influxdb_create_admin
161 # TODO: manage grant deletion (if needed)