summaryrefslogtreecommitdiff
path: root/security/vault/files/vault.in
blob: 3385fa23f67e4ae726ea2fe71c259546d490e3e4 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
#!/bin/sh

# PROVIDE: vault
# REQUIRE: DAEMON
# KEYWORD: shutdown
#
# Add the following lines to /etc/rc.conf.local or /etc/rc.conf
# to enable this service:
#
# vault_enable (bool):	Set it to YES to enable vault.
#			Default is "NO".
# vault_user (user):	Set user to run vault.
#			Default is "vault".
# vault_group (group):	Set group to run vault.
#			Default is "vault".
# vault_config (file):	Set vault config file.
#			Default is "%%PREFIX%%/etc/vault.hcl".
# vault_syslog_output_enable (bool):	Set to enable syslog output.
#					Default is "NO". See daemon(8).
# vault_syslog_output_priority (str):	Set syslog priority if syslog enabled.
#					Default is "info". See daemon(8).
# vault_syslog_output_facility (str):	Set syslog facility if syslog enabled.
#					Default is "daemon". See daemon(8).

. /etc/rc.subr

name=vault
rcvar=vault_enable

load_rc_config $name

: ${vault_enable:="NO"}
: ${vault_user:="vault"}
: ${vault_group:="vault"}
: ${vault_config:="%%PREFIX%%/etc/vault.hcl"}

DAEMON=$(/usr/sbin/daemon 2>&1 | grep -q syslog ; echo $?)
if [ ${DAEMON} -eq 0 ]; then
        : ${vault_syslog_output_enable:="NO"}
        : ${vault_syslog_output_priority:="info"}
        : ${vault_syslog_output_facility:="daemon"}
        if checkyesno vault_syslog_output_enable; then
                vault_syslog_output_flags="-T ${name}"

                if [ -n "${vault_syslog_output_priority}" ]; then
                        vault_syslog_output_flags="${vault_syslog_output_flags} -s ${vault_syslog_output_priority}"
                fi

                if [ -n "${vault_syslog_output_facility}" ]; then
                        vault_syslog_output_flags="${vault_syslog_output_flags} -l ${vault_syslog_output_facility}"
                fi
        fi
else
        vault_syslog_output_enable="NO"
        vault_syslog_output_flags=""
fi

pidfile=/var/run/vault.pid
procname="%%PREFIX%%/bin/vault"
command="/usr/sbin/daemon"
command_args="-f -t ${name} ${vault_syslog_output_flags} -p ${pidfile} /usr/bin/env ${vault_env} ${procname} server -config=${vault_config}"

extra_commands="reload monitor"
monitor_cmd=vault_monitor
start_precmd=vault_startprecmd
required_files="$vault_config"

vault_monitor()
{
	sig_reload=USR1
	run_rc_command "reload"
}

vault_startprecmd()
{
        if [ ! -e ${pidfile} ]; then
                install -o ${vault_user} -g ${vault_group} /dev/null ${pidfile};
        fi

        if [ ! -d ${vault_dir} ]; then
                install -d -o ${vault_user} -g ${vault_group} ${vault_dir}
        fi
}

run_rc_command "$1"