On 14 February 2016 at 00:30, Felix Frank <felix.fr...@alumni.tu-berlin.de> wrote: > > Sure, but I feel that this case is especially confusing. > > The user does not remove a resource from their manifest. They change a > parameter of one of their resources, which feels like changing a property > value for a proper resource. The fact that this may not be sync'ed > correctly by the agent can be surprising, and removing firewall rules is a > highly critical operation. > > So, yes, I think you should go ahead and build that module, but please > make sure to plaster its documentation with warnings ;-) >
OK, noted. I have decided that I will create a new Puppet Forge module for this, one for Puppet 3 and a separate one for Puppet 4. This way I can avoid creating a new support burden for the team that manages Puppet Labs firewall and still deliver the features needed. If it proves to be popular, I'll be happy to have it merged into the support Puppet Forge firewall module at any time. It will deliver just a single defined type (and the Puppet 3 version will also deliver a private defined type to workaround the lack of iterator.). As far as the naming is concerned I wish I could call it: firewall::multi That would be nice because it could be moved to the firewall module at a later date and no one using it would need to refactor. However that would result in a module name clash with the Puppet Labs firewall module, which is a dependency. So I think I'll call it: firewall_multi It will basically accept any parameter that firewall accepts and pass it straight through to the firewall resource, unless that parameter is the source or destination, in which case it will of course loop through these arrays, spawing one firewall resource for each. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAF0Ep4VPNKianrc8EVszyLEKAqc%2BRmtifVB59ARYRAyZoe_3iw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
