puppet-prod

Author	SHA1	Message	Date
Ben Vincent	ad268e8977	Merge pull request 'feat: vault use vault' (#226 ) from neoloc/vault_use_vault into develop Reviewed-on: unkinben/puppet-prod#226	2024-05-26 00:38:55 +09:30
Ben Vincent	7c0bf4a398	feat: vault use vault - change vault to use vault ephemeral certificates - remove nginx frontend to vault	2024-05-26 01:06:48 +10:00
Ben Vincent	b9c327799f	feat: add vault service/query altnames - add nginx aliases for vault services - add additional vault certificates - change certmanager script to use vault.service.consul	2024-05-25 15:51:09 +10:00
Ben Vincent	6020143f76	feat: consul multi-datacentre joining - add method to join multiple consul datacentres - set syd1 as the primary datacentre - use default token from au-syd1 cluster in all locations - add replication token	2024-05-04 00:39:18 +10:00
Ben Vincent	8df927de18	feat: add node_token to agent config - move policy rules to hiera array[hash] - add node_token to agent as the default token	2024-04-28 17:06:06 +10:00
Ben Vincent	43afc23535	feat: deploy consul services - add vault.service.consul	2024-04-28 14:06:49 +10:00
Ben Vincent	3001bc32f2	feat: add sydney vault cluster - separate yaml between multiple regions - add nginx frontend to vault	2024-04-27 22:35:16 +10:00
Ben Vincent	f536d19034	feat: generate consul policy/tokens - generate policy/token to add nodes - generate policy/token for all nodes - add base::root profile to manage aspects of the root user	2024-04-27 20:21:57 +10:00
Ben Vincent	a7e9f1590e	fix: move primary_datacenter to region/role - set syd1 as primary consul datacentre - add consul.service.consul zone - add nginx reverse proxy for consul webui - set dns zones/acls/views/keys to be deep merged from hiera - update default token - add consul/consul.service.consul/consul.main.unkin.net to vault cert	2024-04-26 23:11:38 +10:00
Ben Vincent	89fcfe38ea	feat: add syd1 consul cluster	2024-04-24 19:31:18 +10:00

10 Commits