feat: add host_volumes to nomad (#315)

- add puppet client certs
- add tls-ca-bundle

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/315
This commit was merged in pull request #315.
This commit is contained in:
2025-06-14 19:37:50 +10:00
parent 60834ced00
commit 1cbc1be808
3 changed files with 21 additions and 1 deletions
+13
View File
@@ -25,6 +25,19 @@ profiles::packages::include:
consul-cni: {}
profiles::nomad::node::client: true
profiles::nomad::node::host_volumes:
- name: puppetclient_crt
path: /etc/puppetlabs/puppet/ssl/certs/ausyd1nxvm2040.main.unkin.net.pem
read_only: true
- name: puppetclient_key
path: /etc/puppetlabs/puppet/ssl/private_keys/ausyd1nxvm2040.main.unkin.net.pem
read_only: true
- name: puppetclient_ca
path: /etc/puppetlabs/puppet/ssl/certs/ca.pem
read_only: true
- name: tls-ca-bundle
path: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem
read_only: true
# additional altnames
profiles::pki::vault::alt_names: