unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
903 Commits 18 Branches 0 Tags 3 MiB
561d74e9d9
Commit Graph

903 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ben Vincent
f30325b3e9 Merge pull request 'Adding hieradata/node/ausyd1nxvm1054.main.unkin.net.yaml' (#145) from autonode/ausyd1nxvm1054.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/145
 2024-08-24 12:37:25 +10:00
Ben Vincent
76c1c93c02 Merge pull request 'Adding hieradata/node/ausyd1nxvm1053.main.unkin.net.yaml' (#144) from autonode/ausyd1nxvm1053.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/144
 2024-08-24 12:37:16 +10:00
Ben Vincent
4577997506 Merge pull request 'Adding hieradata/node/ausyd1nxvm1052.main.unkin.net.yaml' (#143) from autonode/ausyd1nxvm1052.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/143
 2024-08-24 12:36:50 +10:00
Ben Vincent
6326e820a9 Merge pull request 'chore: add new user' (#142) from neoloc/ryadun into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/142
 2024-08-24 12:36:09 +10:00
Ben Vincent
757f3042ed chore: add new user 
- add ryadun
 2024-08-24 12:35:34 +10:00
Ben Vincent
5d36a4053b feat: add droneci module 
- add droneci module for server
- add droneci/server role
- add consul query for droneci service
- manage certificates, ssh principals, consul services/checks
 2024-08-24 00:34:15 +10:00
Ben Vincent
8fad79f2bc feat: manage database/user/grants for patroni 
- add defines for exporting/collecting psql objects for patroni
- add generic profile for managing patroni psql databases for an app
 2024-08-24 00:33:18 +10:00
Ben Vincent
68c569b282 feat: add docker module 
- update puppet file with docker module
 2024-08-24 00:28:39 +10:00
Ben Vincent
975adc31d7 Merge pull request 'feat: remove requirepass' (#141) from neoloc/remove_requirepass into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/141
 2024-08-23 23:28:30 +10:00
Ben Vincent
8a8cc0ae1b feat: remove requirepass 
- required for droneci
 2024-08-23 23:18:02 +10:00
Ben Vincent
70a9edd118 Adding hieradata/node/ausyd1nxvm1056.main.unkin.net.yaml 2024-08-16 22:13:16 +10:00
Ben Vincent
348d8889ed Adding hieradata/node/ausyd1nxvm1055.main.unkin.net.yaml 2024-08-16 22:11:47 +10:00
Ben Vincent
1a2023f4ff Merge pull request 'feat: add patroni/psql cluster' (#140) from neoloc/patroni into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/140
 2024-08-10 23:40:29 +10:00
Ben Vincent
35834f8f5a feat: add patroni/psql cluster 
- add patroni puppet module
- add patroni role and hieradata
- add sql/patroni class that utilised consul
 2024-08-10 22:34:43 +10:00
Ben Vincent
4347faf153 Merge pull request 'neoloc/redis' (#139) from neoloc/redis into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/139
 2024-08-10 18:47:17 +10:00
Ben Vincent
5c731fef34 feat: deploy redisha cluster 
- manage pki and ssh principals
- manage redis/sentinel with redisha module
- add consul checks to manage redis-replica/redis-master services
- manage sudo rules for consul checks
 2024-08-10 17:39:30 +10:00
Ben Vincent
b7fc6a1993 feat: create redisha module 
- manage redis/sentinel clusters
- ensure ulimit_managed is false
- dynamically find servers in role to identify master
- add redisadm and sentineladm commands
- add script to check if the current host in the master
 2024-08-10 17:39:24 +10:00
Ben Vincent
afe2a2afb7 Adding hieradata/node/ausyd1nxvm1054.main.unkin.net.yaml 2024-08-10 14:13:59 +10:00
Ben Vincent
c76ce3bf10 Adding hieradata/node/ausyd1nxvm1053.main.unkin.net.yaml 2024-08-10 14:13:51 +10:00
Ben Vincent
af989a19c3 Adding hieradata/node/ausyd1nxvm1052.main.unkin.net.yaml 2024-08-10 14:11:47 +10:00
Ben Vincent
4d08e30733 Merge pull request 'fix: also fix repodata' (#138) from neoloc/cephreef into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/138
 2024-08-10 13:36:30 +10:00
Ben Vincent
e2873a492a fix: also fix repodata 2024-08-10 13:36:04 +10:00
Ben Vincent
90af895a34 Merge pull request 'fix: ceph-reef 18.2.4 not on el8' (#137) from neoloc/cephreef into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/137
 2024-08-10 13:30:54 +10:00
Ben Vincent
52e3d5b20b fix: ceph-reef 18.2.4 not on el8 
- force repo to use 18.2.2
 2024-08-10 13:30:16 +10:00
Ben Vincent
aadd0275ac feat: add puppet-redis module 2024-08-08 19:28:50 +10:00
Ben Vincent
390a5a58c7 Merge pull request 'chore: add account' (#136) from neoloc/kelly into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/136
 2024-08-08 19:01:44 +10:00
Ben Vincent
403e3eeb1b chore: add account 2024-08-08 19:01:18 +10:00
Ben Vincent
352878e27c Merge pull request 'chore: prevent empty lines' (#135) from neoloc/glauth_templates into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/135
 2024-08-07 22:53:10 +10:00
Ben Vincent
0cad88cdad chore: prevent empty lines 
- prevent empty lines when user features are not enabled
- change epp to erb template for user objects
 2024-08-07 22:51:13 +10:00
Ben Vincent
859fc0d909 Merge pull request 'chore: add two new users' (#134) from neoloc/more_users into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/134
 2024-08-07 22:19:41 +10:00
Ben Vincent
a5baed8cd9 chore: add two new users 
- add marbal and seablo
 2024-08-07 22:19:08 +10:00
Ben Vincent
44707910aa Merge pull request 'fix: require vault-unseal.service' (#133) from neoloc/vault_unseal_fix into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/133
 2024-08-07 22:12:12 +10:00
Ben Vincent
dafac3d5ab fix: require vault-unseal.service 
- wrong service name specified
 2024-08-07 22:05:50 +10:00
Ben Vincent
3ce2ec3754 Merge pull request 'feat: auto-unseal vault every hour' (#132) from neoloc/vault_unseal_check into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/132
 2024-08-06 22:51:54 +10:00
Ben Vincent
7863d54275 feat: auto-unseal vault every hour 
- add cron job to run vault unsealing service hourly
 2024-08-06 22:51:16 +10:00
Ben Vincent
988e7c2a32 Merge pull request 'feat: auto restart puppetdb' (#131) from neoloc/puppetdb_restart into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/131
 2024-08-06 22:47:02 +10:00
Ben Vincent
0c44654a47 feat: auto restart puppetdb 
- found several times the puppetdb service locks up after a week of active time
- restart the puppetdb nightly to prevent lock ups
 2024-08-06 22:43:07 +10:00
Ben Vincent
20ee6fa19e Merge pull request 'feat: add rundeck runner user' (#130) from neoloc/rundeck_user into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/130
 2024-08-06 22:36:54 +10:00
Ben Vincent
c846cc4e21 feat: add rundeck runner user 
- add rundeck account on all hosts except rundeck
- add rundeck ssh private/public key to rundeck server
 2024-08-06 22:33:32 +10:00
Ben Vincent
8e0f26e726 Merge pull request 'Adding hieradata/node/ausyd1nxvm1050.main.unkin.net.yaml' (#124) from autonode/ausyd1nxvm1050.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/124
 2024-08-01 22:41:27 +10:00
Ben Vincent
4579e268f0 Merge pull request 'feat: add gonic role' (#125) from neoloc/gonic into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/125
 2024-08-01 22:41:20 +10:00
Ben Vincent
f1e1828a4a Merge pull request 'Adding hieradata/node/ausyd1nxvm1051.main.unkin.net.yaml' (#123) from autonode/ausyd1nxvm1051.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/123
 2024-08-01 22:40:59 +10:00
Ben Vincent
2ae8dbc0ac feat: add gonic role 
- basic role only
 2024-08-01 22:38:32 +10:00
Ben Vincent
4338dfe27f Adding hieradata/node/ausyd1nxvm1051.main.unkin.net.yaml 2024-08-01 22:35:03 +10:00
Ben Vincent
66cb1e356d Adding hieradata/node/ausyd1nxvm1050.main.unkin.net.yaml 2024-08-01 22:33:26 +10:00
Ben Vincent
2bda41712a Merge pull request 'fix: change debian repos to http' (#122) from neoloc/http_debian_apt into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/122
 2024-07-31 21:51:44 +10:00
Ben Vincent
d3daac3b71 fix: change debian repos to http 
- until https issues are resolved with https
 2024-07-31 21:51:04 +10:00
Ben Vincent
eb32a216f5 Merge pull request 'neoloc/rundeck' (#121) from neoloc/rundeck into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/121
 2024-07-28 02:05:20 +10:00
Ben Vincent
5354c99b1e feat: add rundeck profile 
- export mysql user for each rundeck server
- ensure the jdbc driver for mariadb is available
- exclude jq from default packages (managed by rundeck)
- add groups for admin/user for each project in rundeck
- add consul service
- add vault certificates
- add ssh principals
- add nginx simpleproxy
 2024-07-28 01:51:41 +10:00
Ben Vincent
6a3123e12e Merge pull request 'feat: change packages to Hash' (#120) from neoloc/packages_hash into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/120
 2024-07-27 16:29:48 +10:00