cookbook 'squid', '= 0.5.3'
squid
(49) Versions
0.5.3
-
Follow36
Installs/configures squid as a simple caching proxy
cookbook 'squid', '= 0.5.3', :supermarket
knife supermarket install squid
knife supermarket download squid
squid Cookbook
Configures squid as a caching proxy.
Recipes
default
The default recipe installs squid and sets up simple proxy caching. As of now, the options you may change are the port (node['squid']['port']
) and the network the caching proxy is available on the subnet from node.ipaddress
(ie. "192.168.1.0/24") but may be overridden with node['squid']['network']
. The size of objects allowed to be stored has been bumped up to allow for caching of installation files.
An optional (node['squid']['cache_peer']
), if set, will be written verbatim to the template.
Usage
Include the squid recipe on the server. Other nodes may search for this node as their caching proxy and use the node.ipaddress
and node['squid']['port']
to point at it.
Databags are able to be used for storing host & url acls and also which hosts/nets are able to access which hosts/url
LDAP Authentication
- Set (
node['squid']['enable_ldap']
) to true. - Modify the ldap attributes for your environment.
- If you use anonymous bindings, two attributes are optional, ['squid']['ldap_binddn'] and ['squid']['ldap_bindpassword'].
- All other attributes are required.
- See http://wiki.squid-cache.org/ConfigExamples/Authenticate/Ldap for further help.
- To create the ldap acls in squid.conf, you also need the two ldap_auth databag items as shown in the LDAP Databags below.
Example Databags
squid_urls - yubikey item
{ "urls": [ "^https://api.yubico.com/wsapi/2.0/verify" ], "id": "yubikey" }
squid_hosts - bastion item
{ "type": "src", "id": "bastion", "net": [ "192.168.0.2/32" ] }
squid_acls - bastion item
{ "id": "bastion", "acl": [ [ "yubikey", "allow" ], [ "all", "deny" ] ] }
LDAP Databags
The following two data bags are only required if you are using LDAP Authentication.
squid_hosts - ldap_auth item
{ "type": "proxy_auth", "id": "ldap_auth", "net": [ "REQUIRED" ] }
squid_acls - ldap_auth item
{ "id": "ldap_auth", "acl": [ [ "", "allow" ] ] }
License & Authors
- Author:: Matt Ray (matt@chef.io)
- Author:: Sean OMeara (someara@chef.io)
Copyright 2012-2015 Chef Software, Inc. Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Dependent cookbooks
This cookbook has no specified dependencies.
Contingent cookbooks
There are no cookbooks that are contingent upon this one.
squid Cookbook CHANGELOG
This file is used to list changes made in each version of the squid cookbook.
v0.5.3 (2015-02-04)
- [#37] Fix errors on RHEL7, Fedora
- [#36] Fix warning when squid >= 3.2
- [#33] Miscellaneous cleanup
- [#31] Remove
node['ipaddress']
as the only way to get the ipaddress. - [#30] Add metadata for default recipe
v0.5.2 (2014-10-14)
- Support LDAP. (@MattMencel)
- Support multiple listen ports. (@MattMencel)
- Support use of other ACL types other than url_regex. (@thoutenbos)
- Fix test harness on Ubuntu. (@juliandunn)
v0.5.1 (2014-09-02)
- Support Ubuntu 14.04. (@maciejmajewski)
v0.5.0 (2014-07-25)
- Don't assume default interface is 'eth0' (@juliandunn)
- Fix breakage on Fedora (@juliandunn)
- Enable a simple way to add arbitrary directives to the bottom of the squid.conf (@dansweeting)
- Add enable_cache_dir attribute to allow disabling the cache_dir (@phutchins)
- Permit configuration of cache size (@dschlenk)
- Fix all test harnesses, Rubocop violations
v0.4.2 (2014-03-27)
- [COOK-4320] - Add support for ubuntu 13 to the squid cookbook
v0.4.0 (2014-02-27)
- [COOK-4373] Add conditional output of optional attribute for cache_peer to template
- [COOK-4376] remove duplicated attributes
- [COOK-4377] Generate a sysconfig on Fedora
v0.3.0 (2014-02-18)
[COOK-4066] - squid attributes should be default and not set/normal
v0.2.10
Bug
- COOK-3936 - configure squid cache size on disk
- updating style and test harness
v0.2.8
Bug
- COOK-3590 - Fix hard-coded daemon listen port
v0.2.6
Cleanup in 5fc5df4 (v0.2.4) was a bit overzealous:
Ubuntu needs upstart provider specified for the service or reload
failures may occur.
v0.2.4
Bug
- [COOK-2979]: squid cookbook has foodcritic failures
- [COOK-3042]: squid acl incorrect for centos 5
v0.1.0-v0.2.2
Initial public release and migration from @mattray's repository. Changelog was not created/updated at this time.
Foodcritic Metric
0.5.3 failed this metric
FC031: Cookbook without metadata file: /tmp/cook/45668cadc3cf3abce8489a5c/squid/metadata.rb:1
FC045: Consider setting cookbook name in metadata: /tmp/cook/45668cadc3cf3abce8489a5c/squid/metadata.rb:1
0.5.3 failed this metric
FC045: Consider setting cookbook name in metadata: /tmp/cook/45668cadc3cf3abce8489a5c/squid/metadata.rb:1