feat: add host_volumes to nomad

- add puppet client certs
- add tls-ca-bundle
This commit is contained in:
2025-06-14 19:26:28 +10:00
parent 60834ced00
commit 039eb6511c
3 changed files with 21 additions and 1 deletions
+13
View File
@@ -25,6 +25,19 @@ profiles::packages::include:
consul-cni: {}
profiles::nomad::node::client: true
profiles::nomad::node::host_volumes:
- name: puppetclient_crt
path: /etc/puppetlabs/puppet/ssl/certs/ausyd1nxvm2040.main.unkin.net.pem
read_only: true
- name: puppetclient_key
path: /etc/puppetlabs/puppet/ssl/private_keys/ausyd1nxvm2040.main.unkin.net.pem
read_only: true
- name: puppetclient_ca
path: /etc/puppetlabs/puppet/ssl/certs/ca.pem
read_only: true
- name: tls-ca-bundle
path: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem
read_only: true
# additional altnames
profiles::pki::vault::alt_names: