unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
1,129 Commits 17 Branches 0 Tags 2.9 MiB
develop
Commit Graph

46 Commits

Author SHA1 Message Date
Ben Vincent
98b866fce7 feat: migrate puppet-agent to openvox (#408) 
- change from puppet-agent to openvox-agent
- upgrade version from 7.34 to 7.36
- ensure workflow of: Yumrepo -> dnf-makecache -> Package

Reviewed-on: #408
 2025-10-18 19:11:38 +11:00
Ben Vincent
1fb46b5ab6 chore: use packagerepo for epel (#310) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/310
 2025-06-09 10:24:56 +10:00
Ben Vincent
9dcaafb8ba feat: lxc updates (#258) 
- add virtual/lxc.yaml
- add crypto crypto-policies-scripts
- ensure ssh::server is managed

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/258
 2025-04-24 23:03:01 +10:00
Ben Vincent
829b1b05fd feat: cleanup consul from url install (#239) 
- set bind_dir to be /usr/bin for rhel, /usr/local/bin for debian
- remove url-installed consul from rhel

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/239
 2025-03-30 18:40:09 +11:00
Ben Vincent
427fe352b4 feat: debian package for consul not managed (#237) 
- change debian hosts to use the url method to download consul

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/237
 2025-03-30 17:13:54 +11:00
Ben Vincent
45b061a053 feat: change almalinux9 to use packagerepo (#236) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/236
 2025-03-30 17:05:03 +11:00
Ben Vincent
4e47745077 chore: setup unkin repo for el9 and el8 (#227) 
- update the unkin repo definition for el8 and el9

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/227
 2025-03-29 22:50:08 +11:00
Ben Vincent
afbc15ff40 feat: import crypto-policices earlier (#195) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/195
 2024-12-08 22:50:25 +11:00
Ben Vincent
c7fb1f0cec neoloc/crypto_policices_el8 (#193) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/193
 2024-12-08 19:54:15 +11:00
Ben Vincent
dbccaea24b feat: add crypto_policies (#192) 
- ensure DEFAULT is used for EL8
- ensure DEFAULT:SHA1 is used for EL9, until issues with crypto are resolved for EL9

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/192
 2024-12-08 19:47:59 +11:00
Ben Vincent
b244327c34 neoloc/alma9 (#191) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/191
 2024-12-08 19:22:58 +11:00
Ben Vincent
90bcdd1f51 neoloc/alma9 (#190) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/190
 2024-12-08 19:16:54 +11:00
Ben Vincent
c023cfe4dc Merge pull request 'feat: upgrade puppet agent' (#186) from neoloc/puppet_updates into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/186
 2024-12-08 00:11:30 +11:00
Ben Vincent
cffb6a54fc feat: upgrade puppet agent 
- move all almalinux hosts to 7.34
 2024-12-08 00:09:40 +11:00
Ben Vincent
75f865c26c feat: update puppet repo 
- move puppet repo to packagerepo
 2024-12-07 23:31:40 +11:00
Ben Vincent
ba3a9e374a feat: update repos 
- add unkin
- rename unkin -> unkinben
 2024-12-01 00:30:58 +11:00
Ben Vincent
d3daac3b71 fix: change debian repos to http 
- until https issues are resolved with https
 2024-07-31 21:51:04 +10:00
Ben Vincent
cc01259a64 feat: change packages to Hash 
- change from multiple arrays for managing packages to a hash
- change to ensure_packages to prevent duplicate resource conflicts
 2024-07-27 13:01:06 +10:00
Ben Vincent
47333237ee chore: disable gpgcheck for unkin repo 2024-07-09 21:18:02 +10:00
Ben Vincent
548076728a feat: swap networkmanager for network service 2024-06-22 16:31:03 +10:00
Ben Vincent
2d3f4414b7 fix: unar package not available on debian 2024-06-22 00:47:36 +10:00
Ben Vincent
67f831edaf fix: yumrepo purging 2024-06-14 23:55:31 +10:00
Ben Vincent
51eeb13793 feat: add networking module 
- manage interfaces and routes
- set default params for hosts
- add params class to networking module
- set defaults for debian
 2024-06-08 17:07:51 +10:00
Ben Vincent
e3f34a7cc4 chore: update apt mirror url 
- change apt mirror url to use edgecache service
 2024-06-03 20:19:12 +10:00
Ben Vincent
de39515862 ferat: change to gitea hosted package repo 2024-06-01 14:05:14 +10:00
Ben Vincent
65bd2ae8d5 fix: repo target changes 
- use per-repo target files
 2024-05-19 22:46:27 +10:00
Ben Vincent
fd466fcccc feat: cleanup old repo management 
- change profiles::puppet::agent to require Yumrepo['puppet']
- remove managed repos hieradata
- remove profiles:😋:* classes that are not required
- remove missed rebase comment
 2024-05-19 20:27:56 +10:00
Ben Vincent
5f9480f186 feat: direct yumrepo config 
- deep merge yumrepo resources
- convert repos to direct yumrepo in hieradata
- change from repos.main.unkin.net to edgecache.query.consul
- create all yumrepo resources from $profiles:😋:global::repos
 2024-05-19 20:27:47 +10:00
Ben Vincent
6633f07d8b feat: install policycoreutils 
- install policycoreutils on all almalinux releases
 2024-05-11 15:30:01 +10:00
Ben Vincent
19c8749d9e feat: split lm-sensors for debian/rhel 2024-04-14 23:17:38 +10:00
Ben Vincent
d0d67e316a feat: prepare puppet for debian 
- set yum::versionlock to be only for redhat family
- set puppet-agent require statement to use apt or yum
- remove requirement of downloading puppet7-release-$dist.deb
- create all paths in $base_path for vault certificate
- set correct $PATH for update-ca-certificates
- dynamically set debian release name
- split packages to install from common.yaml to os-specific
- create groups profile to manage local groups
- change sysadmin to be a member of admins group
- setup admins sudo rules
 2024-04-13 22:34:28 +10:00
Ben Vincent
e02921be75 feat: deep merge yum repos to manage 
- fixed merging of yum repos
- changed puppet7 to use local copy of repo
 2024-03-28 21:41:15 +11:00
Ben Vincent
8f5e9e40a1 feat: add ovirt roles 
- add repositories for ovirt
- add role/profile for ovirt/engine and ovirt/node
- add deep-merge for managed_repos
- change repos to allow filesource (URL or file://)
- change reposync to use curl instead of wget
 2024-03-16 16:43:12 +11:00
Ben Vincent
51d0ca16ec feat: update yumrepos to use https:// 
- require vaultca on all repos on repos.main.unkin.net
 2024-03-03 16:44:16 +11:00
Ben Vincent
8cb6b68b53 feat: add consul server profile 
- install/configure consul
- install/configure dnsmasq as dns proxy for consul
- add unkin yumrepo definition as source for consul
- update datavol to ensure the /data volume is mounted
 2024-02-11 17:12:35 +11:00
Ben Vincent
08c14c2329 feat: split agent service/package from config 
- split package/service from config so puppetservers agents can be
  managed in the same was as clients
 2023-12-03 16:49:38 +11:00
Ben Vincent
cc77cc7ded feat: change to use local mirror 
- change almalinux and epel *.repo files on nodes to use local package mirror
- add option to purge yumrepo resources, default to true
- add versionlocking to yum, enable it for puppet-agent
 2023-11-12 17:17:59 +11:00
Ben Vincent
a89a68bc61 fix: debian puppet_version different to EL 
- change puppet_version to be set per-os in hieradata
 2023-11-02 22:14:38 +11:00
Ben Vincent
75a66a3339 fix: digitalpacific epel repodata broken 
- change epel to read from aarnet
 2023-11-02 22:08:00 +11:00
Ben Vincent
6bb52f2a15 feat: add firewalld management profile 
- basic profile to enable/disable, and install/remove
- defaulting to enabled and installed, but set to disabled and removed
  in hiera
 2023-10-22 19:54:10 +11:00
Ben Vincent
080cdd8884 Setup PuppetDB/Puppetboard 
- install modules required
    - puppetdb
    - postgresql
    - puppetboard
    - python
  - create new profiles to manage each item (puppetdb/puppetboard)
  - added puppetdb role
  - include the puppetdb::master::config in puppetmaster role
  - re-organised the puppetfile
  - moved python to be managed by the python module
  - added postgresql to list of managed repos
 2023-10-21 23:11:40 +11:00
Ben Vincent
87f174df33 Added Debian components 
* added debian components for Debian12 and Debian11
  * added apt module to puppetfile
  * removed /etc/apt/sources.list management, done by apt module
  * added profiles::apt::puppet7
 2023-07-01 22:38:25 +10:00
Ben Vincent
4e30d9b6d9 Added boilerplate for debian host management 
* added apt repo management
  * added switcher based on OS to base.pp
 2023-06-26 19:20:05 +10:00
Ben Vincent
87c38eadf2 Renamed role/profile directories 
* renamed role to roles
  * renamed profile to profiles
  * cleaned up all profiles/roles/hieradata to match new paths
 2023-06-25 13:24:07 +10:00
Ben Vincent
93c4689d8d Setup puppet7 repo for el distros 
* create that puppet7.repo file
  * install the puppet-release rpm
 2023-06-24 22:33:47 +10:00
Ben Vincent
87d9d920e8 Added classes to manage repositories for yum 
* manage all base repositories
  * manage epel if required
  * cleanup /etc/yum.repos.d directory
 2023-06-24 21:58:00 +10:00