|
|
22bd213509
|
feat: moved puppetdb profiles
- move puppetdb profiles to profiles::puppetdb namespace
- add profile to manage puppetdb api ssl certificates
|
2024-06-01 14:58:18 +10:00 |
|
|
|
6a9580b199
|
Merge pull request 'feat: bump git client_max_body_size' (#4) from neoloc/nginx_clientsize into develop
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/4
|
2024-06-01 13:32:02 +10:00 |
|
|
|
6c2328e8ba
|
feat: bump git client_max_body_size
- change from 100m to 250m
|
2024-06-01 13:31:35 +10:00 |
|
|
|
7e0df436e2
|
Merge pull request 'feat: increase client_max_body_size for git' (#3) from neoloc/nginx_clientsize into develop
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/3
|
2024-06-01 13:19:21 +10:00 |
|
|
|
e7ddbfa035
|
feat: increase client_max_body_size for git
- update hieradata with client_max_body_size for git role
|
2024-06-01 12:51:06 +10:00 |
|
|
|
810ba9ddb7
|
Merge pull request 'neoloc/nodelookup_consul' (#2) from neoloc/nodelookup_consul into develop
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/2
|
2024-06-01 12:11:48 +10:00 |
|
|
|
7cf2e78cea
|
feat: add sort and count to node_lookup
- add -C option to count number of identical records
- sort responses from node_lookup
|
2024-06-01 12:09:53 +10:00 |
|
|
|
91e3f2d427
|
chore: change node_lookup to use consul
- remove https, use http backend as no authentication is required
|
2024-06-01 12:04:57 +10:00 |
|
|
|
f28ebd2dd8
|
Merge pull request 'feat: update git sources' (#1) from neoloc/update_git_source into develop
Reviewed-on: https://git.service.au-syd1.consul/unkinben/puppet-prod/pulls/1
|
2024-05-28 23:53:20 +10:00 |
|
|
|
f029b04427
|
feat: update git sources
- update r10k source
- update enc source
- update source for puppet-bind module
|
2024-05-28 23:51:19 +10:00 |
|
|
|
99c4d8717c
|
Merge pull request 'neoloc/gitea' (#230) from neoloc/gitea into develop
Reviewed-on: unkinben/puppet-prod#230
|
2024-05-28 22:58:49 +09:30 |
|
|
|
fab4ea5998
|
feat: add gitea classes
- add basic gitea class
|
2024-05-28 23:14:36 +10:00 |
|
|
|
ffd574e8f0
|
feat: add gitea modules
- add gitea module
- add dependency extlib
|
2024-05-28 21:14:42 +10:00 |
|
|
|
7dacd4a403
|
Merge pull request 'neoloc/puppetca' (#229) from neoloc/puppetca into develop
Reviewed-on: unkinben/puppet-prod#229
|
2024-05-28 20:37:02 +09:30 |
|
|
|
263d41fe9e
|
chore: remove prodinf01n01 as puppetca
|
2024-05-28 21:06:04 +10:00 |
|
|
|
df371a6b09
|
feat: syd1 puppetca provisioning
- move puppetca to ausyd1nxvm1036
|
2024-05-28 20:13:08 +10:00 |
|
|
|
3fce5ae5bf
|
Merge pull request 'fix: change drw1 puppetmasters to use syd1 approle' (#228) from neoloc/certmanager_syd1_approle into develop
Reviewed-on: unkinben/puppet-prod#228
|
2024-05-26 00:59:13 +09:30 |
|
|
|
d2d08bc479
|
fix: change drw1 puppetmasters to use syd1 approle
- changing vault url to vault.query.consul forced puppetmasters in drw1
to connect to syd1 vault hosts
- set drw1 puppetmasters to use syd1 approle_id
|
2024-05-26 01:27:45 +10:00 |
|
|
|
413bf78827
|
Merge pull request 'feat: change vault url to vaul.query.consul' (#227) from neoloc/certmanager into develop
Reviewed-on: unkinben/puppet-prod#227
|
2024-05-26 00:53:39 +09:30 |
|
|
|
b00781b604
|
feat: change vault url to vaul.query.consul
- support access to vault from multiple datacentres for certmanager
|
2024-05-26 01:23:16 +10:00 |
|
|
|
ad268e8977
|
Merge pull request 'feat: vault use vault' (#226) from neoloc/vault_use_vault into develop
Reviewed-on: unkinben/puppet-prod#226
|
2024-05-26 00:38:55 +09:30 |
|
|
|
ad4f9b81f4
|
Merge pull request 'neoloc/syd1_certmanager_approle' (#224) from neoloc/syd1_certmanager_approle into develop
Reviewed-on: unkinben/puppet-prod#224
|
2024-05-26 00:38:16 +09:30 |
|
|
|
7c0bf4a398
|
feat: vault use vault
- change vault to use vault ephemeral certificates
- remove nginx frontend to vault
|
2024-05-26 01:06:48 +10:00 |
|
|
|
b9c327799f
|
feat: add vault service/query altnames
- add nginx aliases for vault services
- add additional vault certificates
- change certmanager script to use vault.service.consul
|
2024-05-25 15:51:09 +10:00 |
|
|
|
2c3aa2bbdc
|
feat: vault certmanager tokens
- move vault certmanager tokens to drw1/syd1 specific eyaml
- add syd1 certmanger token for syd1 vault
|
2024-05-25 15:50:59 +10:00 |
|
|
|
0a49092f52
|
chore: add syd1 vault ca/int certs
- deploy syd1 vault ca certificates
|
2024-05-25 14:18:56 +10:00 |
|
|
|
0b549325a1
|
Merge pull request 'feat: added country-region altnames' (#223) from neoloc/puppetboard_altnames into develop
Reviewed-on: unkinben/puppet-prod#223
|
2024-05-24 23:01:37 +09:30 |
|
|
|
c883bc8c91
|
feat: added country-region altnames
- add puppetboard.service.au-{syd1|drw1}.consul to:
- vault pki cert
- nginx server aliases
|
2024-05-24 23:27:07 +10:00 |
|
|
|
880752c302
|
Merge pull request 'feat: change drw1 puppetdb -> syd1' (#222) from neoloc/puppetdb_to_consul into develop
Reviewed-on: unkinben/puppet-prod#222
|
2024-05-24 22:37:57 +09:30 |
|
|
|
cbf3f0e694
|
feat: change drw1 puppetdb -> syd1
|
2024-05-24 23:06:18 +10:00 |
|
|
|
22af602510
|
Merge pull request 'feat: puppet::client multiple altnames' (#221) from neoloc/puppetdbapi_certs into develop
Reviewed-on: unkinben/puppet-prod#221
|
2024-05-22 22:42:59 +09:30 |
|
|
|
0901595de9
|
feat: puppet::client multiple altnames
- puppet clients can not request multiple dns alt_names
- set puppetdbapi hosts to request multiple certificates
|
2024-05-22 23:05:34 +10:00 |
|
|
|
e19c84b33e
|
Merge pull request 'feat: puppetboard on consul' (#220) from neoloc/puppetboard_consul into develop
Reviewed-on: unkinben/puppet-prod#220
|
2024-05-22 22:26:44 +09:30 |
|
|
|
349547c4bc
|
feat: puppetboard on consul
- updated nginx param types
- add nginx aliases, merge with vhost, use as server_names
- add additional vault alt-names
- add prepared query for puppetboard
|
2024-05-22 22:54:54 +10:00 |
|
|
|
6bd66724dc
|
Merge pull request 'neoloc/syd1_puppetdb' (#219) from neoloc/syd1_puppetdb into develop
Reviewed-on: unkinben/puppet-prod#219
|
2024-05-22 22:00:35 +09:30 |
|
|
|
8fb4c59f88
|
Merge branch 'develop' into neoloc/syd1_puppetdb
|
2024-05-22 22:30:10 +10:00 |
|
|
|
d2235610af
|
Merge pull request 'feat: set syd1 puppetdb hosts' (#218) from neoloc/puppetboard into develop
Reviewed-on: unkinben/puppet-prod#218
|
2024-05-22 21:58:52 +09:30 |
|
|
|
25cbff4656
|
feat: set syd1 puppetdb hosts
- change syd1 puppetdb hosts to use consul serivce/query addresses
|
2024-05-22 22:23:07 +10:00 |
|
|
|
770c8cc159
|
feat: update hiera key for puppetdb api/sql
- changed to use puppetdbapi and puppetdbsql hiera keys
- updated all classes that referenced old values
|
2024-05-22 22:18:32 +10:00 |
|
|
|
9e3b680b0b
|
feat: add prepared query for puppetdbapi
- merge to develop
- add prepared query for puppetdbapi
|
2024-05-22 22:11:51 +10:00 |
|
|
|
f6bf504416
|
Merge branch 'develop' into neoloc/syd1_puppetdb
|
2024-05-22 22:11:04 +10:00 |
|
|
|
9d3a57dfc9
|
Merge pull request 'feat: increase puppetdb api Xmx' (#217) from neoloc/puppetdbmemory into develop
Reviewed-on: unkinben/puppet-prod#217
|
2024-05-22 21:07:46 +09:30 |
|
|
|
6035af37a1
|
feat: increase puppetdb api Xmx
- change java args to use 2048mb of memory
|
2024-05-22 21:37:00 +10:00 |
|
|
|
4b0ff2deee
|
Merge pull request 'feat: firstrun optimisations' (#216) from neoloc/yumrepos into develop
Reviewed-on: unkinben/puppet-prod#216
|
2024-05-19 22:46:19 +09:30 |
|
|
|
598a8c0f52
|
feat: firstrun optimisations
- download gpg keys if gpgkey is defined
- ensure the profiles::defaults is called first
|
2024-05-19 23:11:11 +10:00 |
|
|
|
adf27a3090
|
Merge pull request 'fix: repo target changes' (#215) from neoloc/yumrepos into develop
Reviewed-on: unkinben/puppet-prod#215
|
2024-05-19 22:17:04 +09:30 |
|
|
|
65bd2ae8d5
|
fix: repo target changes
- use per-repo target files
|
2024-05-19 22:46:27 +10:00 |
|
|
|
ad38a276f3
|
Merge pull request 'feat: update all roles for firstrun' (#214) from neoloc/firstrun into develop
Reviewed-on: unkinben/puppet-prod#214
|
2024-05-19 21:53:19 +09:30 |
|
|
|
2abbfe8feb
|
feat: update all roles for firstrun
- ensure the firstrun is processed before role specific class profiles
|
2024-05-19 22:11:01 +10:00 |
|
|
|
29745d07f3
|
Merge pull request 'feat: firstrun improvements' (#213) from neoloc/firstrun into develop
Reviewed-on: unkinben/puppet-prod#213
|
2024-05-19 21:06:06 +09:30 |
|
