Version information
This version is compatible with:
- Puppet Enterprise 2023.2.x, 2023.1.x, 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x, 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x
- Puppet >= 6.0.0 < 8.0.0
- , , ,
Start using this module
Add this module to your Puppetfile:
mod 'pest-nexus', '3.3.0'
Learn more about managing modules with a PuppetfileDocumentation
Sonatype Nexus Repository Manager 3 Puppet module
Install and configure Sonatype Nexus Repository Manager 3.
This module was forked from hubspot/nexus.
Requirements of this module
- puppet/archive
- puppet/extlib
- puppetlabs/stdlib
Migration from pre 3.x versions of this module
With version 3.0.0 we changed the default installation path from /srv
to /opt/sonatype
.
To migrate your current installation you will have to put something like the following into your role_nexus_server.pp
:
# shutdown the currently running service as we have to modify the operation system user
exec { 'shutdown-running-service':
command => '/usr/bin/systemctl stop nexus.service',
onlyif => [
'/usr/bin/test -d /srv/sonatype-work',
'/usr/bin/test ! -d /opt/sonatype/sonatype-work'
],
before => [
Class['nexus::package'],
Class['nexus::user']
],
}
# nexus::package will extract the archive which contains an empty work directory
exec { 'remove-empty-work-directory':
command => '/usr/bin/rm -rf /opt/sonatype/sonatype-work',
onlyif => [
'/usr/bin/test -d /srv/sonatype-work',
'/usr/bin/test -d /opt/sonatype/sonatype-work'
],
before => [
Exec['move-work-directory-to-new-location']
],
require => [
Class['nexus::package'],
]
}
# move the old working directory to the new location
exec { 'move-work-directory-to-new-location':
command => '/usr/bin/mv /srv/sonatype-work /opt/sonatype/',
onlyif => [
'/usr/bin/test -d /srv/sonatype-work',
'/usr/bin/test ! -d /opt/sonatype/sonatype-work'
],
require => [
Class['nexus::package'],
Exec['remove-empty-work-directory'],
],
before => Class['nexus::service'],
}
Usage
The following is a basic role class for building a nexus host. Adjust accordingly as needed.
NOTE: you must pass version to Class['nexus']
. This is needed for the
download link and determining the name of the nexus directory.
class role_nexus_server {
# puppetlabs-java
# NOTE: Nexus requires
class{ 'java': }
class{ 'nexus':
version => '3.37.3',
revision => '02',
nexus_type => 'unix',
}
Class['java'] ->
Class['nexus']
}
Valid versions and revisions can be picked from the official page
Nginx proxy
The following is setup for using the puppet/puppet-nginx module. Nexus does not adequately support HTTP and HTTPS simultaneously. Below forces all connections to HTTPS. Be sure to login after the app is up and head to Administration -> Server. Change the base URL to "https" and check "Force Base URL". The application will be available at:
https://${::fqdn}/
class{ '::nginx': }
file { '/etc/nginx/conf.d/default.conf':
ensure => absent,
require => Class['::nginx::package'],
notify => Class['::nginx::service']
}
nginx::resource::vhost { 'nexus':
ensure => present,
www_root => '/usr/share/nginx/html',
rewrite_to_https => true,
ssl => true,
ssl_cert => '/etc/pki/tls/certs/server.crt',
ssl_key => '/etc/pki/tls/private/server.key',
}
nginx::resource::location { 'nexus':
ensure => present,
location => '/',
vhost => 'nexus',
proxy => "http://${nexus::host}:${nexus::port}",
ssl => true,
}
Docker
To use nexus repository for docker you need to read the documentation for some additional config settings. Docker Repository Reverse Proxy Strategies
nginx::resource::location { 'nexus':
ensure => present,
location => '/',
locations => {
'docker-v2' => {
location => '/v2/',
proxy => "http://${nexus::host}:${nexus::port}/repository/docker-hosted/v2/",
}
},
vhost => 'nexus',
proxy => "http://${nexus::host}:${nexus::port}",
ssl => true,
}
Keep in mind that pushing to docker group repository is a pro feature of nexus repository manager.
TODO
- Find a way to not require a version to be passed to Class['nexus']
Authors
- Tom McLaughlin tmclaughlin@hubspot.com
Copyright
Hubspot, Inc.
Reference
Table of Contents
Classes
Public Classes
nexus
: Install and configure Sonatype Nexus Repository Manager 3.nexus::config::admin
: Manage the nexus repository manager administrator accountnexus::config::anonymous
: Manage if anonymous user have access to nexus repository managernexus::config::default_repositories
: Removes the default repositories for maven and nugetnexus::config::device
: Create puppet device config used to connect to the rest apinexus::config::email
: Manage the nexus repository manager email settingsnexus::config::properties
: A short summary of the purpose of this classnexus::plugin::composer
: Install the composer repository format plugin
Private Classes
nexus::config
: Configure nexus repository managernexus::package
: Install the Nexus Repository Manager packagenexus::plugin
: Base class used by plugin classesnexus::service
: Maintains the Nexus servicenexus::user
: Manages the operation system user account which is used to start up the service
Defined types
nexus::resource::blobstore::file
: Resource to manage (local) file blobstorenexus::resource::repository::apt::proxy
: Resource to manage apt proxy repositorynexus::resource::repository::docker::group
: Resource to manage docker group repositorynexus::resource::repository::docker::hosted
: Resource to manage docker hosted repositorynexus::resource::repository::docker::proxy
: Resource to manage docker proxy repositorynexus::resource::repository::npm::group
: Resource to manage npm group repositorynexus::resource::repository::npm::hosted
: Resource to manage npm hosted repositorynexus::resource::repository::npm::proxy
: Resource to manage npm proxy repository
Resource types
nexus_blobstore
: Raw provider to configure blobstore over the nexus repository manager rest api. Please use the defined types instead of this one directly.nexus_repository
: Raw provider to configure repository over the nexus repository manager rest api. Please use the defined types instead of this one directly.nexus_setting
: Raw provider to set settings over the nexus repository manager rest api. Please use nexus::config::* classes instead of this one directly.nexus_user
: Manage nexus repository users
Classes
nexus
Install and configure Sonatype Nexus Repository Manager 3.
Examples
class{ 'nexus':
version => '3.37.3-02',
}
Parameters
The following parameters are available in the nexus
class:
version
download_folder
download_site
download_proxy
install_root
work_dir
user
group
host
port
manage_api_resources
manage_config
manage_user
manage_work_dir
purge_installations
purge_default_repositories
version
Data type: Pattern[/3.\d+.\d+-\d+/]
The version to download, install and manage.
download_folder
Data type: Stdlib::Absolutepath
Destination folder of the downloaded archive.
download_site
Data type: Stdlib::HTTPUrl
Download uri which will be appended with filename of the archive to download.
download_proxy
Data type: Optional[Stdlib::HTTPUrl]
Proxyserver address which will be used to download the archive file.
install_root
Data type: Stdlib::Absolutepath
The root filesystem path where the downloaded archive will be extracted to.
work_dir
Data type: Stdlib::Absolutepath
The nexus repository manager working directory which contains the embedded database and local blobstores.
user
Data type: String[1]
The operation system user used to start the nexus repository manager service.
group
Data type: String[1]
The operation system group used to start the nexus repository manager service.
host
Data type: Stdlib::Host
The bind address where the nexus repository manager service should bind to.
port
Data type: Stdlib::Port
The port which the nexus repository manager service should use.
manage_api_resources
Data type: Boolean
Set if this module should manage resources which require to be set over the nexus repository manager rest api.
manage_config
Data type: Boolean
Set if this module should manage the config file of nexus repository manager.
manage_user
Data type: Boolean
Set if this module should manage the creation of the operation system user.
manage_work_dir
Data type: Boolean
Set if this module should manage the work directory of the nexus repository manager.
purge_installations
Data type: Boolean
Set this option if you want old installations of nexus repository manager to get automatically deleted.
purge_default_repositories
Data type: Boolean
Set this option if you want to remove the default created maven and nuget repositories.
nexus::config::admin
Manage the nexus repository manager administrator account
Examples
include nexus::config::admin
Parameters
The following parameters are available in the nexus::config::admin
class:
username
Data type: String[1]
The username of the administrator.
Default value: 'admin'
first_name
Data type: String[1]
The first name of the administrator.
Default value: 'Administrator'
last_name
Data type: String[1]
The last name of the administrator.
Default value: 'User'
email_address
Data type: String[1]
The email address of the administrator.
Default value: 'admin@example.org'
roles
Data type: Array[String[1]]
The assigned roles of the administrator. It should include 'nx-admin'.
Default value: ['nx-admin']
password
Data type: Optional[Sensitive[String[1]]]
The password of the administrator. If not given there will be generated a random password.
Default value: undef
nexus::config::anonymous
Manage if anonymous user have access to nexus repository manager
Examples
include nexus::config::anonymous
Parameters
The following parameters are available in the nexus::config::anonymous
class:
enabled
Data type: Boolean
Enable if anonymous/not logged in user have access to nexus repository manager.
Default value: false
user_id
Data type: String[1]
The nexus repository manager user id/name used to determine access.
Default value: 'anonymous'
realm_name
Data type: String[1]
Realm name used for anonymous user.
Default value: 'NexusAuthorizingRealm'
nexus::config::default_repositories
Removes the default repositories for maven and nuget
Examples
include nexus::config::default_repositories
nexus::config::device
Create puppet device config used to connect to the rest api
nexus::config::email
Manage the nexus repository manager email settings
Examples
include nexus::config::email
Parameters
The following parameters are available in the nexus::config::email
class:
enabled
host
port
username
password
from_address
subject_prefix
start_tls_enabled
start_tls_required
ssl_on_connect_enabled
ssl_server_identity_check_enabled
nexus_trust_store_enabled
enabled
Data type: Boolean
Enable to let nexus repository manager send emails.
Default value: false
host
Data type: Stdlib::Host
The smtp host to connect to.
Default value: 'localhost'
port
Data type: Stdlib::Port
The port to connect to send emails.
Default value: 25
username
Data type: String
The username to connect to the smtp server.
Default value: ''
password
Data type: Optional[String]
The password to connect to the smtp server.
Default value: undef
from_address
Data type: String[1]
The email address used to set as From-Header.
Default value: 'nexus@example.org'
subject_prefix
Data type: String
Prefix which will be added to all emails.
Default value: ''
start_tls_enabled
Data type: Boolean
Enable STARTTLS support for insecure connections.
Default value: false
start_tls_required
Data type: Boolean
Require STARTTLS support.
Default value: false
ssl_on_connect_enabled
Data type: Boolean
Enable SSL/TLS encryption upon connection.
Default value: false
ssl_server_identity_check_enabled
Data type: Boolean
Enable server identity check.
Default value: false
nexus_trust_store_enabled
Data type: Boolean
Use certificates stored in the Nexus truststore to connect to external systems.
Default value: false
nexus::config::properties
A description of what this class does
Examples
include nexus::config::properties
nexus::plugin::composer
Install the composer repository format plugin
Examples
class { 'nexus':
version => '3.34.3-02',
}
class { 'nexus::plugin::composer':
version => '0.0.18',
}
Parameters
The following parameters are available in the nexus::plugin::composer
class:
version
Data type: Pattern[/\d+.\d+.\d+/]
The composer repository format plugin version.
Defined types
nexus::resource::blobstore::file
Resource to manage (local) file blobstore
Examples
nexus::blobstore::file { 'apt-hosted': }
Parameters
The following parameters are available in the nexus::resource::blobstore::file
defined type:
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent
Default value: 'present'
path
Data type: Variant[Stdlib::Absolutepath, String[1]]
The (local) path of the disk where the content of the blobstore should be stored. Non absolute paths will use the working directory as base path. The nexus (service) user needs write access to this path.
Default value: $title
nexus::resource::repository::apt::proxy
Resource to manage apt proxy repository
Examples
nexus::repository::apt::proxy { 'apt-debian':
apt_distribution => $facts['os']['distro']['codename'],
proxy_remote_url => 'https://deb.debian.org/debian/',
}
Parameters
The following parameters are available in the nexus::resource::repository::apt::proxy
defined type:
apt_distribution
proxy_remote_url
apt_flat
ensure
http_client_auto_block
http_client_blocked
negative_cache_enabled
negative_cache_time_to_live
online
proxy_content_max_age
proxy_metadata_max_age
storage_blob_store_name
storage_strict_content_type_validation
storage_write_policy
apt_distribution
Data type: String[1]
APT distribution like buster, bullseye used by nexus repository manager to query the upstream repository.
proxy_remote_url
Data type: Stdlib::HTTPSUrl
APT repository url like https://deb.debian.org/debian/.
apt_flat
Data type: Boolean
Is the upstream repository flat format?
Default value: false
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
http_client_auto_block
Data type: Boolean
Auto-block outbound connections on the repository if remote peer is detected as unreachable/unresponsive.
Default value: true
http_client_blocked
Data type: Boolean
Block outbound connections on the repository.
Default value: false
negative_cache_enabled
Data type: Boolean
Cache responses for content not present in the proxied repository.
Default value: true
negative_cache_time_to_live
Data type: Integer
How long to cache the fact that a file was not found in the repository (in minutes).
Default value: 1440
online
Data type: Boolean
Enable this repository in nexus repository manager that it can be used.
Default value: true
proxy_content_max_age
Data type: Integer
Max age of content (packages)
Default value: 1440
proxy_metadata_max_age
Data type: Integer
Max age of the repository metadata
Default value: 1440
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
storage_write_policy
Data type: Enum['ALLOW']
Controls if deployments of and updates to artifacts are allowed.
Default value: 'ALLOW'
nexus::resource::repository::docker::group
Resource to manage docker group repository
Examples
nexus::repository::docker::group { 'docker-group':
group_member_names => [
'docker-hosted',
'docker-docker.io',
],
}
Parameters
The following parameters are available in the nexus::resource::repository::docker::group
defined type:
ensure
online
storage_blob_store_name
storage_strict_content_type_validation
group_member_names
docker_v1_enabled
docker_force_basic_auth
docker_http_port
docker_https_port
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
online
Data type: Boolean
Allow incoming requests to this repository.
Default value: true
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
group_member_names
Data type: Array[String[1]]
Ordered array of the (docker) member to be grouped into this repository.
Default value: []
docker_v1_enabled
Data type: Boolean
Allow clients to use the V1 API to interact with this repository.
Default value: false
docker_force_basic_auth
Data type: Boolean
Allow anonymous docker pull ( Docker Bearer Token Realm required ).
Default value: true
docker_http_port
Data type: Optional[Stdlib::Port]
Create an HTTP connector at specified port. Normally used if the server is behind a secure proxy.
Default value: undef
docker_https_port
Data type: Optional[Stdlib::Port]
Create an HTTPS connector at specified port. Normally used if the server is configured for https.
Default value: undef
nexus::resource::repository::docker::hosted
Resource to manage docker hosted repository
Examples
nexus::repository::docker::hosted { 'docker-hosted':
}
Parameters
The following parameters are available in the nexus::resource::repository::docker::hosted
defined type:
ensure
online
storage_blob_store_name
storage_strict_content_type_validation
storage_write_policy
docker_v1_enabled
docker_force_basic_auth
docker_http_port
docker_https_port
component_proprietary_components
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
online
Data type: Boolean
Allow incoming requests to this repository.
Default value: true
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
storage_write_policy
Data type: Enum['ALLOW','ALLOW_ONCE','DENY']
Controls if deployments of and updates to artifacts are allowed.
Default value: 'ALLOW_ONCE'
docker_v1_enabled
Data type: Boolean
Allow clients to use the V1 API to interact with this repository.
Default value: false
docker_force_basic_auth
Data type: Boolean
Allow anonymous docker pull ( Docker Bearer Token Realm required ).
Default value: true
docker_http_port
Data type: Optional[Stdlib::Port]
Create an HTTP connector at specified port. Normally used if the server is behind a secure proxy.
Default value: undef
docker_https_port
Data type: Optional[Stdlib::Port]
Create an HTTPS connector at specified port. Normally used if the server is configured for https.
Default value: undef
component_proprietary_components
Data type: Boolean
Default value: true
nexus::resource::repository::docker::proxy
Resource to manage docker proxy repository
Examples
nexus::repository::docker::proxy { 'docker-docker.io':
proxy_remote_url => 'https://registry-1.docker.io',
}
Parameters
The following parameters are available in the nexus::resource::repository::docker::proxy
defined type:
proxy_remote_url
ensure
http_client_auto_block
http_client_blocked
negative_cache_enabled
negative_cache_time_to_live
online
proxy_content_max_age
proxy_metadata_max_age
storage_blob_store_name
storage_strict_content_type_validation
storage_write_policy
docker_v1_enabled
docker_force_basic_auth
docker_http_port
docker_https_port
docker_proxy_index_type
docker_proxy_index_url
npm_remove_non_cataloged
npm_remove_quarantined
proxy_remote_url
Data type: Stdlib::HTTPSUrl
Docker repository url like https://registry-1.docker.io.
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
http_client_auto_block
Data type: Boolean
Auto-block outbound connections on the repository if remote peer is detected as unreachable/unresponsive.
Default value: true
http_client_blocked
Data type: Boolean
Block outbound connections on the repository.
Default value: false
negative_cache_enabled
Data type: Boolean
Cache responses for content not present in the proxied repository.
Default value: true
negative_cache_time_to_live
Data type: Integer
How long to cache the fact that a file was not found in the repository (in minutes).
Default value: 1440
online
Data type: Boolean
Enable this repository in nexus repository manager that it can be used.
Default value: true
proxy_content_max_age
Data type: Integer
Max age of content (packages).
Default value: 1440
proxy_metadata_max_age
Data type: Integer
Max age of the repository metadata.
Default value: 1440
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
storage_write_policy
Data type: Enum['ALLOW','ALLOW_ONCE','DENY']
Controls if deployments of and updates to artifacts are allowed.
Default value: 'ALLOW'
docker_v1_enabled
Data type: Boolean
Allow clients to use the V1 API to interact with this repository.
Default value: false
docker_force_basic_auth
Data type: Boolean
Allow anonymous docker pull ( Docker Bearer Token Realm required ).
Default value: true
docker_http_port
Data type: Optional[Stdlib::Port]
Create an HTTP connector at specified port. Normally used if the server is behind a secure proxy.
Default value: undef
docker_https_port
Data type: Optional[Stdlib::Port]
Create an HTTPS connector at specified port. Normally used if the server is configured for https.
Default value: undef
docker_proxy_index_type
Data type: Enum['REGISTRY','HUB','CUSTOM']
Docker index type. See https://help.sonatype.com/repomanager3/nexus-repository-administration/formats/docker-registry/proxy-repository-for-docker#ProxyRepositoryforDocker-ConfiguringaCorrectRemoteStorageandDockerIndexURLPair
Default value: 'HUB'
docker_proxy_index_url
Data type: Optional[Stdlib::HTTPSUrl]
If docker_proxy_index_type is CUSTOM you have to set the uri of the index api.
Default value: undef
npm_remove_non_cataloged
Data type: Boolean
Default value: false
npm_remove_quarantined
Data type: Boolean
Default value: false
nexus::resource::repository::npm::group
Resource to manage npm group repository
Examples
nexus::repository::npm::group { 'npm-group':
group_member_names => [
'npm-hosted',
'npm-npmjs.org',
],
}
Parameters
The following parameters are available in the nexus::resource::repository::npm::group
defined type:
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
online
Data type: Boolean
Enable this repository in nexus repository manager that it can be used.
Default value: true
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
group_member_names
Data type: Array[String[1]]
Ordered array of the (npm) member to be grouped into this repository.
Default value: []
nexus::resource::repository::npm::hosted
Resource to manage npm hosted repository
Examples
nexus::repository::npm::hosted { 'npm-hosted': }
Parameters
The following parameters are available in the nexus::resource::repository::npm::hosted
defined type:
ensure
online
storage_blob_store_name
storage_strict_content_type_validation
storage_write_policy
component_proprietary_components
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
online
Data type: Boolean
Enable this repository in nexus repository manager that it can be used.
Default value: true
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
storage_write_policy
Data type: Enum['allow_once']
Controls if deployments of and updates to artifacts are allowed.
Default value: 'allow_once'
component_proprietary_components
Data type: Boolean
Components in this repository count as proprietary for namespace conflict attacks (requires Sonatype Nexus Firewall).
Default value: true
nexus::resource::repository::npm::proxy
Resource to manage npm proxy repository
Examples
nexus::repository::npm::proxy { 'npm-npmjs.org':
proxy_remote_url => 'https://registry.npmjs.org',
}
Parameters
The following parameters are available in the nexus::resource::repository::npm::proxy
defined type:
proxy_remote_url
ensure
npm_remove_non_cataloged
npm_remove_quarantined
http_client_auto_block
http_client_blocked
negative_cache_enabled
negative_cache_time_to_live
online
proxy_content_max_age
proxy_metadata_max_age
storage_blob_store_name
storage_strict_content_type_validation
storage_write_policy
proxy_remote_url
Data type: Stdlib::HTTPSUrl
NPM repository url like https://registry.npmjs.org.
ensure
Data type: Enum['present', 'absent']
Define if the resource should be created/present or deleted/absent.
Default value: 'present'
npm_remove_non_cataloged
Data type: Boolean
Remove non-cataloged versions from the npm package metadata. (Requires IQ: Audit and Quarantine)
Default value: false
npm_remove_quarantined
Data type: Boolean
Remove quarantined versions from the npm package metadata. (Requires IQ: Audit and Quarantine)
Default value: false
http_client_auto_block
Data type: Boolean
Auto-block outbound connections on the repository if remote peer is detected as unreachable/unresponsive.
Default value: true
http_client_blocked
Data type: Boolean
Block outbound connections on the repository.
Default value: false
negative_cache_enabled
Data type: Boolean
Cache responses for content not present in the proxied repository.
Default value: true
negative_cache_time_to_live
Data type: Integer
How long to cache the fact that a file was not found in the repository (in minutes).
Default value: 1440
online
Data type: Boolean
Enable this repository in nexus repository manager that it can be used.
Default value: true
proxy_content_max_age
Data type: Integer
Max age of content (packages).
Default value: 1440
proxy_metadata_max_age
Data type: Integer
Max age of the repository metadata.
Default value: 1440
storage_blob_store_name
Data type: String[1]
The name of the blobstore inside of nexus repository manager to be used. We suggest to use a own blobstore for each defined repository.
Default value: $title
storage_strict_content_type_validation
Data type: Boolean
Validate that all content uploaded to this repository is of a MIME type appropriate for the repository format.
Default value: true
storage_write_policy
Data type: Enum['ALLOW','ALLOW_ONCE','DENY']
Controls if deployments of and updates to artifacts are allowed.
Default value: 'ALLOW'
Resource types
nexus_blobstore
Raw provider to configure blobstore over the nexus repository manager rest api.
Please use the defined types instead of this one directly.
Properties
The following properties are available in the nexus_blobstore
type.
attributes
Data type: Hash
The config settings of this blobstore definition.
ensure
Data type: Enum[present, absent]
Whether this resource should be present or absent on the target system.
Default value: present
type
Data type: Enum[azure, file, s3]
Blobstore type.
Parameters
The following parameters are available in the nexus_blobstore
type.
name
namevar
Data type: String
The name of the resource you want to manage.
nexus_repository
Raw provider to configure repository over the nexus repository manager rest api.
Please use the defined types instead of this one directly.
Properties
The following properties are available in the nexus_repository
type.
attributes
Data type: Hash
The config settings of this repository definition.
ensure
Data type: Enum[present, absent]
Whether this resource should be present or absent on the target system.
Default value: present
format
Data type: String
The format of the resource you want to manage
type
Data type: Enum[group, hosted, proxy]
Repository type.
Parameters
The following parameters are available in the nexus_repository
type.
name
namevar
Data type: String
The name of the resource you want to manage.
nexus_setting
Raw provider to set settings over the nexus repository manager rest api.
Please use nexus::config::* classes instead of this one directly.
Properties
The following properties are available in the nexus_setting
type.
attributes
Data type: Hash
The config settings returned from the given api endpoint.
ensure
Data type: Enum[present, absent]
Whether this resource should be present or absent on the target system.
Default value: present
Parameters
The following parameters are available in the nexus_setting
type.
name
namevar
Data type: String
The api endpoint of simple nexus config settings.
nexus_user
nexus_user { 'user.name':
ensure => 'present',
user_id => 'user.name',
password => 'hunter2',
first_name => 'Foo',
last_name => 'Bar',
email_address => 'foo.bar@example.org',
status => 'active',
roles => ['nx-admin'],
}
Properties
The following properties are available in the nexus_user
type.
email_address
Data type: String
The email address of the user.
ensure
Data type: Enum[present, absent]
Whether this resource should be present or absent on the target system.
Default value: present
external_roles
Data type: Optional[Array[String]]
The external assigned roles to the user.
first_name
Data type: String
The first name of the user.
last_name
Data type: String
The last name of the user.
password
Data type: Optional[String]
The password of the user.
read_only
Data type: Boolean
The status of the user if it is read only.
roles
Data type: Array[String]
The roles assigned to the user.
Default value: ["nx-anonymous"]
source
Data type: String
The datasource of the user. e.g. local or ldap source name.
Default value: default
status
Data type: Enum[active,disabled,changepassword]
The user status.
Default value: active
Parameters
The following parameters are available in the nexus_user
type.
user_id
namevar
Data type: String
The login name of the user.
Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
[3.3.0]
Added
- Invalidate cache on changes of repository types
group
andproxy
- Rebuild index on changes of repository types
hosted
andproxy
nexus::resource::repository::docker::group
to manage docker group repositoriesnexus::resource::repository::docker::hosted
to manage docker hosted repositoriesnexus::resource::repository::docker::proxy
to manage docker proxy repositories
[3.2.0]
Added
nexus::manage_api_resources
to setup configuration to connect to nexus repository manager rest apinexus::purge_default_repositories
to remove default maven and nuget repositoriesnexus::config::email
to configure email settingsnexus::config::anonymous
to configure an anonymous accessnexus::config::admin
to configure administrator accountnexus::resource::blobstore::file
to manage blobstores of type filenexus::resource::repository::apt::proxy
to manage apt proxy repositoriesnexus::resource::repository::npm::group
to manage npm group repositoriesnexus::resource::repository::npm::hosted
to manage npm hosted repositoriesnexus::resource::repository::npm::proxy
to manage npm proxy repositories
Changed
nexus::config
moved tonexus::config::properties
- systemd service file adjusted to wait until nexus repository manager finished startup
[3.1.0]
Added
nexus::plugin::composer
to install composer (php) repository plugin
[3.0.0]
Added
REFERENCE.md
generated bypuppet strings generate --format markdown --out REFERENCE.md
purge_old_installation
to delete old Nexus Repository Manager installations~/.java/.userPrefs
creation to preventCouldn't flush user prefs
-error
Changed
- Variable names in
init.pp
no longer containnexus
as it's already the module name. - User and group creation moved to
user.pp
- Default installation path changed from
/srv
to/opt/sonatype
- Default bind address changed from
0.0.0.0
to127.0.0.1
Removed
- Support for Nexus Repository Manager 2
[2.0.0]
Added
- Add proper data types for module parameter
Changed
- Http download urls to https
params.pp
pattern to hiera lookup- Change nexus_port from data type string to integer (Stdlib::Port)
Removed
version
parameter fromnexus::service
class as it is not usedmd5sum
parameter fromnexus
class as it is not used (checksum source depends on download url)- Nexus Repository Manager 2 example - next major version will drop support for that version
- Support for end of life puppet versions
[1.9.2]
Added
- Allow proxy use to download the archive
[1.9.1]
Added
- Set file recurse variable for nexus_home_real
[1.9.0]
Added
- Updated README.md
- Dropped end of life distributions
- Updated module dependencies
- Extended test suite to puppet 7
- Fix too wide match strings - issue #8
- Changes by
pdk update
[1.8.0]
Changed
- Replaced obsolete
puppet/wget
module by puppet/archive - Nexus artifact downloads get always validated against published md5 sum - md5sum parameter is currently getting ignored
[1.7.5]
Added
.sync.yml
forpdk update
Changed
- Extended test suite to puppet 5 and puppet 6
- Fix test suite
- Updated README.md and metadata.json
[1.7.4]
Changed
- Replaced obsolete
maestrodev/wget
module by puppet/wget - Initial
pdk convert
changes - Adjust module requirements in metadata.json
[1.7.1]
Added
- Support for validating the md5 checksum of the Nexus package file. https://github.com/hubspotdevops/puppet-nexus/pull/80
[1.7.0]
Added
- Support for CentOS and RedHat versions using systemd: https://github.com/hubspotdevops/puppet-nexus/pull/76
[1.6.1]
Added
- Support for older versions of Ubuntu: https://github.com/hubspotdevops/puppet-nexus/pull/70
[1.6.0]
Added
- Support for Ubuntu https://github.com/hubspotdevops/puppet-nexus/pull/67
[1.5.0]
Added
- Support for Puppet 4.5.2 https://github.com/hubspotdevops/puppet-nexus/pull/65
[1.4.0]
Added
- Support for Nexus 3
- Support for Debian 8
[1.3.1]
Changed
- Fix the location of the Nexus work directory if $nexus_work_dir is not passed in.
[1.3.0]
Added
- Make $nexus_work_dir configurable instead of using "${nexus_root}/${nexus::params::nexus_work_dir}" (/srv/sonatype-work)
- Make managing owner and perms of $nexus_work_dir configurable.
- installations with large repos can turn this off to prevent overconsumption of resources.
- This has been requested for ages.
- Add rudimentary spec tests
Changed
- Updated download location of package.
- Set 'run_as_user' for service status to $nexus_user. A bug from 2.7 days appears to be gone.
Dependencies
- puppetlabs/device_manager (>=3.0.0 < 4.0.0)
- puppetlabs/stdlib (>=4.0.0 < 9.0.0)
- puppet/archive (>=3.2.1 < 7.0.0)
- puppet/extlib (>=2.1.0 < 6.0.0)
The MIT License (MIT) Copyright (c) 2013 HubSpot, Inc. Copyright (c) 2020 Puppets Epic Show Theatre Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.