Add support for hook literals in pillar

salt-formulas · Dec 7, 2017 · abd66d8 · abd66d8
1 parent 5fed2b1
commit abd66d8
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 0 deletions.
diff --git a/README.rst b/README.rst
@@ -206,6 +206,12 @@ don't run as root, to move certs somewhere they can access:
             - salt://path/to/deployhook1.sh
           post:
             - salt://path/to/posthook1.sh
+        # You can define hooks literally in pillar too
+        pillarhooks:
+          deploy:
+            deployhook1.sh: |
+              #!/bin/bash
+              echo "Triggered deploy hook"
 
 Legacy configuration
 --------------------

diff --git a/letsencrypt/client/init.sls b/letsencrypt/client/init.sls
@@ -120,7 +120,18 @@ certbot_renewal_{{ hookset }}_hook_{{ loop.index }}:
     - mode: 700
     - require:
       - cmd: certbot_installed
+{%- endfor %}
+{%- endfor %}
 
+{%- for hookset, hooks in client.get("pillarhooks", {}).items() %}
+{%- for basename, script in hooks.items() %}
+certbot_renewal_{{ hookset }}_phook_{{ loop.index }}:
+  file.managed:
+    - name: /etc/letsencrypt/renewal-hooks/{{ hookset }}/{{ basename }}
+    - contents_pillar: {{ script }}
+    - mode: 700
+    - require:
+      - cmd: certbot_installed
 {%- endfor %}
 {%- endfor %}