unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
186 Commits 18 Branches 0 Tags 3 MiB
8a6b3ef0fb
Commit Graph

66 Commits

Author SHA1 Message Date
Ben Vincent
8a6b3ef0fb feat: add mirrorlist capability to reposyncer 
- add mirrorlist param to reposyncer repos
- update almalinux 8.8 repos to use mirrorlist
- add almalinux 8.9 repos
 2023-12-03 00:16:01 +11:00
Ben Vincent
ae05b870aa fix: wrong scheme for gpgkey 
- change gpg key for puppet7 from http:// to https://
 2023-11-27 23:38:25 +11:00
Ben Vincent
cfec05f3c7 feat: update repositories to sync 
- remove epel modular
- add postgresql 16 for rhel8
- add postgresql common for rhel8
 2023-11-27 23:27:44 +11:00
Ben Vincent
e183ee2b44 feat: add extra repositories 
- mariadb 11.2
- puppet el8
 2023-11-27 18:57:42 +11:00
Ben Vincent
10a6085b84 fix: resolve prometheus issues 
- broken prometheus::server config, resolve conflicts
- move hieradata for role to match role, not profile
 2023-11-21 20:03:26 +11:00
Ben Vincent
663b10e5a5 Merge branch 'develop' into neoloc/prometheus 2023-11-21 19:40:17 +11:00
Ben Vincent
a5207eb717 feat: add prometheus server 
- bump enc, include prometheus server nodes
- add prometheus role and server class
 2023-11-21 19:38:22 +11:00
Ben Vincent
530ffed55a Merge pull request 'feat: add forwarding for 17.18.198.in-addr.arpa' (#72) from neoloc/reversedns_zone_forwarding into develop 
Reviewed-on: unkinben/puppet-prod#72
 2023-11-18 18:52:43 +09:30
Ben Vincent
c34a2b2360 feat: add forwarding for 17.18.198.in-addr.arpa 
- add forward zone for 198.18.17.0/24 reverse dns zone
 2023-11-18 20:21:27 +11:00
Ben Vincent
dd334da2b0 chore: reorganise reposync role 2023-11-18 20:08:16 +11:00
Ben Vincent
ab1b031275 Merge branch 'develop' into neoloc/puppet_cleanup 2023-11-18 20:03:46 +11:00
Ben Vincent
460f9bc7e8 refactor: move puppet::* roles to infra::puppet 
- start creation on apps:: roles
- reorganise hieradata to match role changes
- remove tagging for enc repo
 2023-11-18 20:00:58 +11:00
Ben Vincent
dffc97ad4c chore: reorganise ntp server 
- bump enc to match changes
- change ntp client to find servers through puppetdb query
- changed default ntp servers to publicly available nodes
 2023-11-18 19:18:14 +11:00
Ben Vincent
92269ae94b Merge branch 'develop' into neoloc/node_exporter 2023-11-17 23:20:02 +11:00
Ben Vincent
a21b7ffc96 feat: setup metrics agents 
- set puppet::puppetdb_api class to export puppetdb
- set infra::dns::server class to export bind
- set all to export node and systemd metrics
 2023-11-17 23:12:37 +11:00
Ben Vincent
fdb13b7338 feat: find resolvers by role 
- use puppetdbquery module to query puppetdb for resolvers
- move dns client config to profiles::dns::base
- manage the /etc/resolv.conf file
 2023-11-17 21:54:20 +11:00
Ben Vincent
c996c9b7e3 fix: enable dynamic/tsig updates 
- add eyaml to hiera.yaml
- consolidate all paths into single tree
- change to new profiles::dns::client wrapper
- change to new profiles::dns::record wrapper
- change to use concat method to build zone file
 2023-11-16 21:40:16 +11:00
Ben Vincent
d877fd00f3 chore: bump enc version 
unkinben/puppet-enc#27
 2023-11-13 22:00:19 +11:00
Ben Vincent
49f31edb03 Merge branch 'develop' into neoloc/bind_resolver 2023-11-13 21:55:21 +11:00
Ben Vincent
76b54fc59d feat: add dns resolver/master classes 
- define resolver and master dns server
- export A and PTR records from dns clients
- collect exported resources for master
- create hiera structure for acls, zones and views
 2023-11-13 21:42:57 +11:00
Ben Vincent
cc77cc7ded feat: change to use local mirror 
- change almalinux and epel *.repo files on nodes to use local package mirror
- add option to purge yumrepo resources, default to true
- add versionlocking to yum, enable it for puppet-agent
 2023-11-12 17:17:59 +11:00
Ben Vincent
1b78904588 fix: typo in repo url namne 
- change repo.main.unkin.net to repos.main.unkin.net
 2023-11-12 15:55:19 +11:00
Ben Vincent
fa211925e4 chore: bump enc version 
- add new dns hosts, update dns roles
 2023-11-12 14:42:38 +11:00
Ben Vincent
1999b96d24 Merge branch 'develop' into neoloc/reorganise_hiera 
- added the additional powertools repo
 2023-11-12 14:03:00 +11:00
Ben Vincent
0071f74e60 chore: reorganise hieradata 
- move role specific hieradata into respective roles/* paths
 2023-11-12 13:57:39 +11:00
unkinben
02976779c3 Merge pull request 'feat: add powertools repo to reposync' (#54) from neoloc/powertools_repo into develop 
Reviewed-on: unkinben/puppet-prod#54
 2023-11-11 22:48:57 +09:30
Ben Vincent
2efde81fff feat: add powertools repo to reposync 
- add http://mirror.aarnet.edu.au/pub/almalinux/8.8/PowerTools/x86_64/os/ to
  be synced and mirrored by reposync tools
 2023-11-12 00:17:28 +11:00
unkinben
c3b8044e1c Merge pull request 'chore: bump puppet-enc' (#52) from neoloc/bump_enc_ntpservers into develop 
Reviewed-on: unkinben/puppet-prod#52
 2023-11-10 22:53:03 +09:30
Ben Vincent
aef3311fce chore: bump puppet-enc 
- includes ntpservers in ntpserver role
- unkinben/puppet-enc#25
 2023-11-11 00:21:56 +11:00
Ben Vincent
9cb730d116 feat: add ntp server/client 
- add ntp client and server class
- add ntp server role
- update hiera.yaml to work with enc_role
- cleanup base profile
 2023-11-10 23:59:10 +11:00
Ben Vincent
a913e44176 Merge branch 'develop' into neoloc/packagerepo 2023-11-09 22:09:24 +11:00
Ben Vincent
19836e2069 feat: adding reposync wrapper and tooling 
- add autosyncer/autopromoter scripts
- add timer and service to initial sync process
- add timer/service for daily/weekly/monthly autopromote
- add define to manage each repo
- add nginx webserver to share repos
- add favion.ico if enabled
- add selinux management, and packages for selinux
- cleanup package management, sorting package groups into package classes
 2023-11-08 23:16:56 +11:00
Ben Vincent
058cc25008 feat: add bash completion 
- quality of life addition to all hosts
 2023-11-08 22:03:21 +11:00
Ben Vincent
36142a3565 fix: bump enc 
unkinben/puppet-enc#24
 2023-11-05 17:54:36 +11:00
Ben Vincent
1d1541419a feat: adding base packagerepo role 
- create roles::infra::packagerepo
- bump enc version
 2023-11-05 17:45:13 +11:00
Ben Vincent
56518f1fcb feat: change enc repo to be tagged 
- enc repository will download a specific tag
- defaults to master
- hiera set to release tag '0.1'
 2023-11-04 20:36:08 +11:00
Ben Vincent
a89a68bc61 fix: debian puppet_version different to EL 
- change puppet_version to be set per-os in hieradata
 2023-11-02 22:14:38 +11:00
Ben Vincent
75a66a3339 fix: digitalpacific epel repodata broken 
- change epel to read from aarnet
 2023-11-02 22:08:00 +11:00
Ben Vincent
89653912cb Merge pull request 'feat: manage puppet clients' (#35) from neoloc/puppetclient into develop 
Reviewed-on: unkinben/puppet-prod#35
 2023-10-29 18:59:52 +09:30
Ben Vincent
130669a130 feat: manage puppet clients 
- manage the service
- manage the package, version lock it
- deploy the /etc/puppetlabs/puppet/puppet.conf from template for puppet
  clients only
 2023-10-29 20:26:39 +11:00
Ben Vincent
46c3eb9597 feat: add puppetboard role 
- add nginx module to manage reverse proxy on host level
- add puppetboard venv
- add gunicorn instance
- add script to start the gunicorn instance
- add nginx vhost
 2023-10-29 19:33:11 +11:00
unkinben
ef0d865845 Merge pull request 'feat: split puppetdb role into api and sql' (#32) from neoloc/puppetdb2 into develop 
Reviewed-on: unkinben/puppet-prod#32
 2023-10-22 20:30:43 +09:30
Ben Vincent
e682462917 feat: split puppetdb role into api and sql 
- add puppetdb_api and puppetdb_sql role
- add puppetdb_api and puppetdb_sql profile
- add prodinf01n05 to /etc/hosts file
- set listen_address for all services to be hosts ip
- set storeconfigs and storeconfigs_backend to be managed by puppetmaster profile
 2023-10-22 21:55:50 +11:00
Ben Vincent
6bb52f2a15 feat: add firewalld management profile 
- basic profile to enable/disable, and install/remove
- defaulting to enabled and installed, but set to disabled and removed
  in hiera
 2023-10-22 19:54:10 +11:00
Ben Vincent
95434214a9 feat: add management of /etc/hosts 
- add class to manage the /etc/hosts file
- add static hosts to /etc/hosts file via hiera array/hash
 2023-10-22 00:34:22 +11:00
Ben Vincent
e847954e03 Merge branch 'develop' into neoloc/puppet_wrapper 2023-10-22 00:00:52 +11:00
Ben Vincent
ac27a9ce0b Merge branch 'develop' into neoloc/puppetdb 2023-10-21 23:30:40 +11:00
Ben Vincent
080cdd8884 Setup PuppetDB/Puppetboard 
- install modules required
    - puppetdb
    - postgresql
    - puppetboard
    - python
  - create new profiles to manage each item (puppetdb/puppetboard)
  - added puppetdb role
  - include the puppetdb::master::config in puppetmaster role
  - re-organised the puppetfile
  - moved python to be managed by the python module
  - added postgresql to list of managed repos
 2023-10-21 23:11:40 +11:00
Ben Vincent
2b11a9417c Account/Sudo management 
- imported account and sudo puppet modules
  - created account management wrapper
  - defined sysadmin account, set to be created on all nodes
  - removed sudo from base packages as its managed by sudo module now
 2023-08-29 23:25:10 +10:00
Ben Vincent
116342bdaa Added class to manage a default set of scripts 
- included scripts into profiles::base
  - updated hiera with list of scripts to create and their template name
  - created template for a puppet wrapper
 2023-08-26 16:11:53 +10:00