# Kernel parameters:
remote_file '/etc/sysctl.d/90-nomad.conf' do
  owner 'root'
  group 'root'
  mode '0644'
end

# nomad configuration files:
file '/etc/nomad.d/nomad.hcl' do
  action :delete
end

remote_file '/etc/nomad.d/datadir.hcl' do
  owner 'nomad'
  group 'nomad'
  mode '664'

  notifies :restart, 'service[nomad]'
end

if node['nomad']['manager']
  remote_file '/etc/nomad.d/server.hcl' do
    owner 'nomad'
    group 'nomad'
    mode '664'

    notifies :restart, 'service[nomad]'
  end
end

if node['nomad']['client']
  %w( /etc/nomad.d/client.hcl /etc/nomad.d/docker-registry.hcl ).each do |conf|
    remote_file conf do
      owner 'nomad'
      group 'nomad'
      mode '664'

      notifies :restart, 'service[nomad]'
    end
  end
end

# Create directory:
directory '/opt/nomad/data/' do
  owner 'nomad'
  group 'nomad'
  mode '0755'
end

# iptables settings here:
%w( 80/tcp 4646/tcp 4647/tcp 4648/tcp 8081/tcp 20000:32000/tcp ).each do |port|
  execute "ufw allow #{port}" do
    user 'root'

    not_if "LANG=c ufw status | grep #{port}"

    notifies :run, 'execute[ufw reload-or-enable]'
  end
end

# Enable and start nomad:
service 'nomad' do
  action [:enable, :start]
end