Merge pull request #582 from wazuh/4.3-merge-4-4

Merge 4.3 into 4.4

Author: teddytpc1

CHANGELOG.md

@@ -7,6 +7,36 @@ All notable changes to this project will be documented in this file.
 
 - Support to 4.4.0 Wazuh release.
 
+## Wazuh Puppet v4.3.8
+
+### Added
+
+- Support to 4.3.8 Wazuh release.
+
+## Wazuh Puppet v4.3.7
+
+### Added
+
+- Support to 4.3.7 Wazuh release.
+
+## Wazuh Puppet v4.3.6
+
+### Added
+
+- Support to 4.3.6 Wazuh release.
+
+## Wazuh Puppet v4.3.5
+
+### Added
+
+- Support to 4.3.5 Wazuh release.
+
+## Wazuh Puppet v4.3.4
+
+### Added
+
+- Support to 4.3.4 Wazuh release.
+
 ## Wazuh Puppet v4.3.3
 
 ### Added

manifests/activeresponse.pp

@@ -13,7 +13,7 @@
   $active_response_timeout            = undef,
   $active_response_repeated_offenders = [],
   $target_arg                         = 'manager_ossec.conf',
-  $order_arg                          = undef,
+  $order_arg                          = 80,
   $before_arg                         = undef,
   $content_arg                        = 'wazuh/fragments/_activeresponse.erb'
 ) {

manifests/agent.pp

@@ -320,7 +320,9 @@
     case $::operatingsystem {
       'RedHat', 'OracleLinux':{
         $apply_template_os = 'rhel'
-        if ( $::operatingsystemrelease     =~ /^7.*/ ){
+        if ( $::operatingsystemrelease     =~ /^8.*/ ){
+          $rhel_version = '8'
+        }elsif ( $::operatingsystemrelease  =~ /^7.*/ ){
           $rhel_version = '7'
         }elsif ( $::operatingsystemrelease =~ /^6.*/ ){
           $rhel_version = '6'
@@ -657,7 +659,7 @@
       owner   => 'root',
       group   => 'wazuh',
       mode    => '0640',
-      content => $wazuh::params_agent::wazuh_enrollment_auth_pass,
+      content => $wazuh_enrollment_auth_pass,
       require => Package[$wazuh::params_agent::agent_package_name],
     }
   }

manifests/certificates.pp

@@ -4,28 +4,29 @@
   $wazuh_repository = 'packages.wazuh.com',
   $wazuh_version = '4.4',
 ) {
+  file { 'Configure Wazuh Certificates config.yml':
+    owner   => 'root',
+    path    => '/tmp/config.yml',
+    group   => 'root',
+    mode    => '0640',
+    content => template('wazuh/wazuh_config_yml.erb'),
+  }
 
-  $certs_path = '/tmp/wazuh-certificates'
-
-  $path_exists = find_file($certs_path)
-
-  unless $path_exists {
-    file { 'Configure config.yml':
-        owner   => 'root',
-        path    => '/tmp/config.yml',
-        group   => 'root',
-        mode    => '0644',
-        content => template('wazuh/wazuh_config_yml.erb'),
-    }
-
-    exec { 'Create Wazuh Certificates':
-        path    => '/usr/bin:/bin',
-        command => "curl -so /tmp/wazuh-certs-tool.sh 'https://${wazuh_repository}/${wazuh_version}/wazuh-certs-tool.sh'\
-                && chmod 744 /tmp/wazuh-certs-tool.sh\
-                && bash /tmp/wazuh-certs-tool.sh --all",
-
-    }
+  file { '/tmp/wazuh-certs-tool.sh':
+    ensure => file,
+    source => "https://${wazuh_repository}/${wazuh_version}/wazuh-certs-tool.sh",
+    owner  => 'root',
+    group  => 'root',
+    mode   => '0740',
   }
 
+  exec { 'Create Wazuh Certificates':
+    path    => '/usr/bin:/bin',
+    command => 'bash /tmp/wazuh-certs-tool.sh --all',
+    creates => '/tmp/wazuh-certificates',
+    require => [
+      File['/tmp/wazuh-certs-tool.sh'],
+      File['/tmp/config.yml'],
+    ],
+  }
 }
-

manifests/dashboard.pp

@@ -9,61 +9,100 @@
   $indexer_server_ip = 'localhost',
   $indexer_server_port = '9200',
   $dashboard_path_certs = '/etc/wazuh-dashboard/certs',
+  $dashboard_fileuser = 'wazuh-dashboard',
+  $dashboard_filegroup = 'wazuh-dashboard',
 
-  $dashboard_server_port = '5601',
+  $dashboard_server_port = '443',
   $dashboard_server_host = '0.0.0.0',
-  $dashboard_server_hosts ="https://${indexer_server_ip}:$indexer_server_port}",
-  $dashboard_wazuh_api_credentials = [ {
-                                      'id'       => 'default',
-                                      'url'      => 'http://localhost',
-                                      'port'     => '55000',
-                                      'user'     => 'foo',
-                                      'password' => 'bar',
-                                    },
-                                  ]
+  $dashboard_server_hosts = "https://${indexer_server_ip}:${indexer_server_port}",
+  $dashboard_wazuh_api_credentials = [
+    {
+      'id'       => 'default',
+      'url'      => 'https://localhost',
+      'port'     => '55000',
+      'user'     => 'foo',
+      'password' => 'bar',
+    },
+  ],
+
+  $manage_repos = false, # Change to true when manager is not present.
 ) {
+  if $manage_repos {
+    include wazuh::repo
+
+    if $::osfamily == 'Debian' {
+      Class['wazuh::repo'] -> Class['apt::update'] -> Package['wazuh-dashboard']
+    } else {
+      Class['wazuh::repo'] -> Package['wazuh-dashboard']
+    }
+  }
 
   # assign version according to the package manager
-  case $::osfamily {
-    'Debian' : {
+  case $facts['os']['family'] {
+    'Debian': {
       $dashboard_version_install = "${dashboard_version}-*"
     }
-    'Linux', 'RedHat' : {
-      $dashboard_version_install = "${dashboard_version}"
+    'Linux', 'RedHat', default: {
+      $dashboard_version_install = $dashboard_version
     }
   }
 
   # install package
-  package { 'Installing Wazuh Dashboard...':
+  package { 'wazuh-dashboard':
     ensure => $dashboard_version_install,
     name   => $dashboard_package,
   }
 
-  include wazuh::certificates
+  require wazuh::certificates
 
-  exec { 'Copy Dashboard Certificates':
+  exec { "ensure full path of ${dashboard_path_certs}":
     path    => '/usr/bin:/bin',
-    command => "mkdir $dashboard_path_certs \
-             && cp /tmp/wazuh-certificates/dashboard.pem  $dashboard_path_certs\
-             && cp /tmp/wazuh-certificates/dashboard-key.pem  $dashboard_path_certs\
-             && cp /tmp/wazuh-certificates/root-ca.pem  $dashboard_path_certs\
-             && chown wazuh-dashboard:wazuh-dashboard -R $dashboard_path_certs\
-             && chmod 500 $dashboard_path_certs\
-             && chmod 400 $dashboard_path_certs/*",
+    command => "mkdir -p ${dashboard_path_certs}",
+    creates => $dashboard_path_certs,
+    require => Package['wazuh-dashboard'],
+  }
+  -> file { $dashboard_path_certs:
+    ensure => directory,
+    owner  => $dashboard_fileuser,
+    group  => $dashboard_filegroup,
+    mode   => '0500',
+  }
 
+  [
+    'dashboard.pem',
+    'dashboard-key.pem',
+    'root-ca.pem',
+  ].each |String $certfile| {
+    file { "${dashboard_path_certs}/${certfile}":
+      ensure  => file,
+      owner   => $dashboard_fileuser,
+      group   => $dashboard_filegroup,
+      mode    => '0400',
+      replace => false,  # only copy content when file not exist
+      source  => "/tmp/wazuh-certificates/${certfile}",
+    }
+  }
+
+  # TODO: Fully manage the opensearch_dashboards.yml and a template file resource
+  file_line { 'Setting host for wazuh-dashboard':
+    path    => '/etc/wazuh-dashboard/opensearch_dashboards.yml',
+    line    => "server.host: ${dashboard_server_host}",
+    match   => "^server.host:\s",
+    require => Package['wazuh-dashboard'],
+    notify  => Service['wazuh-dashboard'],
+  }
+  file_line { 'Setting port for wazuh-dashboard':
+    path    => '/etc/wazuh-dashboard/opensearch_dashboards.yml',
+    line    => "server.port: ${dashboard_server_port}",
+    match   => "^server.port:\s",
+    require => Package['wazuh-dashboard'],
+    notify  => Service['wazuh-dashboard'],
   }
 
   service { 'wazuh-dashboard':
     ensure     => running,
     enable     => true,
     hasrestart => true,
+    name       => $dashboard_service,
   }
-
-  exec {'Waiting for Wazuh indexer...':
-    path      => '/usr/bin',
-    command   => "curl -u ${dashboard_user}:${dashboard_password} -k -s -XGET https://${indexer_server_ip}:${indexer_server_port}",
-    tries     => 100,
-    try_sleep => 3,
-  }
-
 }