1 {%- from "influxdb/map.jinja" import server with context %}
3 {%- if server.enabled %}
7 - names: {{ server.pkgs }}
11 - name: /etc/influxdb/influxdb.conf
12 - source: salt://influxdb/files/influxdb.conf
15 - pkg: influxdb_packages
19 - name: /etc/default/influxdb
20 - source: salt://influxdb/files/default
23 - pkg: influxdb_packages
28 - name: {{ server.service }}
29 # This delay is needed before being able to send data to server to create
30 # users and databases.
32 {%- if grains.get('noservices') %}
36 - file: influxdb_config
37 - file: influxdb_default
39 {% set url_for_query = "http://{}:{}/query".format(server.http.bind.address, server.http.bind.port) %}
40 {% set admin_created = false %}
42 {%- if server.admin.get('user', {}).get('enabled', False) %}
43 {% set query_create_admin = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}' WITH ALL PRIVILEGES\"".format(server.admin.user.name, server.admin.user.password) %}
44 {% set admin_url = "http://{}:{}/query?u={}&p={}".format(server.http.bind.address, server.http.bind.port, server.admin.user.name, server.admin.user.password) %}
45 influxdb_create_admin:
47 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_admin }} || curl -f -S -POST "{{ admin_url }}" {{ query_create_admin }}
49 - service: influxdb_service
50 {% set url_for_query = admin_url %}
51 {% set admin_created = true %}
54 # An admin must exist before creating others users
55 {%- if admin_created %}
56 {%- for user_name, user in server.get('user', {}).iteritems() %}
57 {%- if user.get('enabled', False) %}
58 {%- if user.get('admin', False) %}
59 {% set query_create_user = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}' WITH ALL PRIVILEGES\"".format(user.name, user.password) %}
61 {% set query_create_user = "--data-urlencode \"q=CREATE USER {} WITH PASSWORD '{}'\"".format(user.name, user.password) %}
63 influxdb_create_user_{{user.name}}:
65 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_user }}
67 - cmd: influxdb_create_admin
68 # TODO: manage user deletion
73 {%- for db_name, db in server.get('database', {}).iteritems() %}
74 {%- if db.get('enabled', False) %}
75 {% set query_create_db = "--data-urlencode \"q=CREATE DATABASE {}\"".format(db.name) %}
76 influxdb_create_db_{{db.name}}:
78 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_create_db }}
79 {%- if admin_created %}
81 - cmd: influxdb_create_admin
83 # TODO: manage database deletion
85 {% for rp in db.get('retention_policy', []) %}
86 {% set rp_name = rp.get('name', 'autogen') %}
87 {% if rp.get('is_default') %}
88 {% set is_default = 'DEFAULT' %}
90 {% set is_default = '' %}
92 {% set duration = rp.get('duration', 'INF') %}
93 {% set replication = rp.get('replication', '1') %}
94 {% if rp.get('shard_duration') %}
95 {% set shard_duration = 'SHARD DURATION {}'.format(rp.shard_duration) %}
97 {% set shard_duration = '' %}
99 {% set query_retention_policy = 'RETENTION POLICY {} ON {} DURATION {} REPLICATION {} {} {}'.format(
100 rp_name, db.name, duration, replication, shard_duration, is_default)
102 influxdb_retention_policy_{{db.name}}_{{ rp_name }}:
105 - name: curl -s -S -POST "{{ url_for_query }}" --data-urlencode "q=CREATE {{ query_retention_policy }}"|grep -v "policy already exists" || curl -s -S -POST "{{ url_for_query }}" --data-urlencode "q=ALTER {{ query_retention_policy }}"
107 - cmd: influxdb_create_db_{{db.name}}
112 # An admin must exist to manage grants, otherwise there is no user.
113 {%- if admin_created %}
114 {%- for grant_name, grant in server.get('grant', {}).iteritems() %}
115 {%- if grant.get('enabled', False) %}
116 {% set query_grant_user_access = "--data-urlencode \"q=GRANT {} ON {} TO {}\"".format(grant.privilege, grant.database, grant.user) %}
117 influxdb_grant_{{grant_name}}:
119 - name: curl -f -S -POST "{{ url_for_query }}" {{ query_grant_user_access }}
121 - cmd: influxdb_create_db_{{grant.database}}
122 - cmd: influxdb_create_user_{{grant.user}}
123 - cmd: influxdb_create_admin
124 # TODO: manage grant deletion (if needed)