From 4f9af8deb6f5487b1e36d16c7c2a20a049eef526 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Wed, 25 Nov 2015 17:03:36 +0200
Subject: [PATCH] denyhosts: Add support for whitelisting hosts.

---
 denyhosts/manifests/init.pp | 20 +++++++++++++++++++-
 1 file changed, 19 insertions(+), 1 deletion(-)

diff --git a/denyhosts/manifests/init.pp b/denyhosts/manifests/init.pp
index 4639990..1ffd9f0 100644
--- a/denyhosts/manifests/init.pp
+++ b/denyhosts/manifests/init.pp
@@ -1,12 +1,30 @@
 
 # Install DenyHosts
 #
-class denyhosts {
+# === Parameters
+#
+#   $whitelist:
+#       Source to file containing whitelisted IP addresses. See
+#       http://denyhosts.sourceforge.net/faq.html#allowed
+#
+class denyhosts($whitelist = undef) {
 
     package { "denyhosts":
         ensure => installed,
     }
 
+    if $whitelist {
+        file { "/var/lib/denyhosts/allowed-hosts":
+            ensure  => present,
+            source  => $whitelist,
+            mode    => "0644",
+            owner   => "root",
+            group   => "root",
+            require => Package["denyhosts"],
+            notify  => Service["denyhosts"],
+        }
+    }
+
     service { "denyhosts":
         ensure  => running,
         enable  => true,