e061a72996
Adding hieradata/node/ausyd1nxvm1067.main.unkin.net.yaml ( #211 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/211
2025-01-05 12:51:46 +11:00
eaa15e92dc
Adding hieradata/node/ausyd1nxvm1068.main.unkin.net.yaml ( #210 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/210
2025-01-05 12:51:37 +11:00
a5a193d9eb
feat: update jupyterlab container ( #209 )
...
- change to packer created alma9 instance
- change docker root to use /data volume
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/209
2025-01-04 14:10:44 +11:00
4400456519
feat: add frrouting module ( #208 )
...
- add frrouting module
- enable ospf daemon on nomad agents
- enable docker volumes
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/208
2024-12-27 23:39:03 +11:00
d37fb5d7e1
neoloc/nomad_agent ( #207 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/207
2024-12-26 20:23:27 +11:00
022a564dc0
feat: add nomad agent role ( #206 )
...
- add nomad agent role
- mount cephfs volume nomadfs to /shared/nomad
- manage docker volume path to be /shared/nomad
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/206
2024-12-26 20:20:51 +11:00
48e1fb8e30
Adding hieradata/node/ausyd1nxvm1062.main.unkin.net.yaml ( #204 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/204
2024-12-23 17:28:47 +11:00
561d74e9d9
Adding hieradata/node/ausyd1nxvm1063.main.unkin.net.yaml ( #205 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/205
2024-12-23 17:28:37 +11:00
281fdb33d4
Adding hieradata/node/ausyd1nxvm1064.main.unkin.net.yaml ( #203 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/203
2024-12-23 17:28:09 +11:00
1c04366eec
Adding hieradata/node/ausyd1nxvm1066.main.unkin.net.yaml ( #202 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/202
2024-12-23 17:27:59 +11:00
86d3b61439
Adding hieradata/node/ausyd1nxvm1065.main.unkin.net.yaml ( #201 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/201
2024-12-23 17:27:49 +11:00
6ebf5c03a5
feat: add nomad profile/role ( #200 )
...
- add basic consul manage nomad servers
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/200
2024-12-22 22:35:31 +11:00
c97db0f0aa
Adding hieradata/node/ausyd1nxvm1061.main.unkin.net.yaml ( #198 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/198
2024-12-10 22:15:10 +11:00
afbc15ff40
feat: import crypto-policices earlier ( #195 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/195
2024-12-08 22:50:25 +11:00
c7fb1f0cec
neoloc/crypto_policices_el8 ( #193 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/193
2024-12-08 19:54:15 +11:00
dbccaea24b
feat: add crypto_policies ( #192 )
...
- ensure DEFAULT is used for EL8
- ensure DEFAULT:SHA1 is used for EL9, until issues with crypto are resolved for EL9
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/192
2024-12-08 19:47:59 +11:00
b244327c34
neoloc/alma9 ( #191 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/191
2024-12-08 19:22:58 +11:00
90bcdd1f51
neoloc/alma9 ( #190 )
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/190
2024-12-08 19:16:54 +11:00
c023cfe4dc
Merge pull request 'feat: upgrade puppet agent' ( #186 ) from neoloc/puppet_updates into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/186
2024-12-08 00:11:30 +11:00
cffb6a54fc
feat: upgrade puppet agent
...
- move all almalinux hosts to 7.34
2024-12-08 00:09:40 +11:00
4de772436b
Merge pull request 'feat: update puppet repo' ( #184 ) from neoloc/almalinuxrepo into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/184
2024-12-07 23:32:48 +11:00
75f865c26c
feat: update puppet repo
...
- move puppet repo to packagerepo
2024-12-07 23:31:40 +11:00
2fdc709a17
Merge pull request 'feat: update repos' ( #183 ) from neoloc/almalinuxrepo into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/183
2024-12-01 00:33:10 +11:00
ba3a9e374a
feat: update repos
...
- add unkin
- rename unkin -> unkinben
2024-12-01 00:30:58 +11:00
52fff0ccea
feat: enable root_dir for docker
...
- move docker root_dir to /data/docker for runners
2024-11-30 23:11:24 +11:00
58d31c5c9a
chore: migrate puppet-r10k
...
- moved puppet-r10k the unkin organisation
- ensure branch is set to follow origin/master
2024-11-17 19:26:27 +11:00
92d6697175
Merge pull request 'fix: fix release name' ( #180 ) from neoloc/reposync_sydney into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/180
2024-11-16 22:36:02 +11:00
d3f471f3ed
fix: fix release name
...
- fix release name for postgresql repos
2024-11-16 22:35:23 +11:00
8f0b3e615c
Merge pull request 'feat: add el9 puppet/posgresql repos' ( #178 ) from neoloc/reposync_sydney into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/178
2024-11-16 22:25:48 +11:00
8679a0b904
feat: add el9 puppet/posgresql repos
...
- will upgrade to el9 soon, so need to store these repos
2024-11-16 22:25:06 +11:00
16ba54ee0a
Merge pull request 'feat: update packagerepo' ( #176 ) from neoloc/reposync_sydney into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/176
2024-11-16 22:02:46 +11:00
abdb3ec8cb
feat: update packagerepo
...
- remove almalinux/centos/epel repos
- manage consul service `packagerepo`
- manage ssh principals
- update vault alt-names
2024-11-16 21:43:11 +11:00
c0623b64f7
Adding hieradata/node/ausyd1nxvm1060.main.unkin.net.yaml
2024-11-16 21:36:58 +11:00
71b29d5e88
feat: add sudaporn account
...
- enable access to media
- enable access to jupyter
2024-11-16 20:23:01 +11:00
6493f392b8
Merge pull request 'neoloc/jupyterhub' ( #174 ) from neoloc/jupyterhub into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/174
2024-11-16 20:20:16 +11:00
8586e9eb32
feat: enable web-sockets
...
- change simpleproxy config for jupyter::hub role to use websockets
2024-11-16 20:15:03 +11:00
42ad972697
feat: add ldap configuration
...
- add group members to jupyterhub_user
- add svc_jupyterhub user for ldap binding
- paramatarise all ldap fields required
- manage the notebook data directory
2024-11-16 19:20:20 +11:00
926d3d29d0
fix: enable docker for jupyterhub
...
- install/manage docker
2024-11-10 20:21:51 +11:00
c6bdae5790
Merge pull request 'feat: add jupyterhub role' ( #173 ) from neoloc/jupyterhub into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/173
2024-11-10 19:14:49 +11:00
159d66af18
feat: add jupyterhub role
...
- add nodejs module to use npm package provider
- add jupyterhub role
- add class to configure the jupyterhub instance
- add ldap groups
- add nginx simpleproxy
2024-11-10 19:09:50 +11:00
4fec931fb1
feat: add service data
...
- add pki certificates
- add consul service
- add ssh principals
2024-10-27 13:26:07 +11:00
1db8847833
feat: add vault admin group
...
- group will be assigned global admin rights
2024-10-21 19:40:52 +11:00
5549275ecc
chore: add new user
...
- add margol as standard media user
2024-10-20 13:12:36 +11:00
7acfea8547
fix: correct given/sn fields
...
- fix ryadun's given/sn fields
2024-10-20 13:12:02 +11:00
2ef4fb0bf8
feat: update certbot module
...
- update documentation
- add option to notify services
- set haproxy role to notify the haproxy service
2024-10-07 13:40:53 +11:00
4a0760516f
feat: add vault service account
...
- used by vault to bind to ldap
2024-09-23 22:13:48 +10:00
10b57abffc
feat: add terraform service account
...
- add terraform service account
2024-09-23 22:08:52 +10:00
e09819284d
feat: add vault access group
...
- add vault_access group
2024-09-20 23:17:35 +10:00
93b9629c5c
feat: enable larger uploads to gitea
...
- change client body max size to 1GB
2024-09-08 01:43:22 +10:00
0210d849c7
feat: add gitea runner role
...
- ensure docker is configured
- create runner user/group
- deploy config.yaml from hiera hash
- install runner from url
- register the runner with the gitea instance
- manage the act_runner service
2024-09-07 17:59:02 +10:00
69c298e162
Merge pull request 'feat: remove masterauth redis' ( #156 ) from neoloc/redis_masterauth into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/156
2024-09-03 21:29:58 +10:00
1ad2b806b4
feat: remove masterauth redis
...
- removed requirepass previously, also need to remove masterauth
2024-09-03 21:29:18 +10:00
938db9880b
Adding hieradata/node/ausyd1nxvm1059.main.unkin.net.yaml
2024-09-01 00:17:59 +10:00
bcb9beae5f
fix: updated client secret
2024-08-31 23:00:58 +10:00
0bed8ba4f4
Merge branch 'develop' into neoloc/runner
2024-08-27 22:01:24 +10:00
5471adae32
Merge pull request 'feat: add droneadmin' ( #152 ) from neoloc/droneadmin into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/152
2024-08-25 15:03:15 +10:00
91d9a073d6
feat: add droneadmin
...
- add environment variable to assign primary admin
2024-08-25 14:58:56 +10:00
ec7814e2a9
Merge pull request 'Adding hieradata/node/ausyd1nxvm1058.main.unkin.net.yaml' ( #151 ) from autonode/ausyd1nxvm1058.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/151
2024-08-25 14:28:20 +10:00
71c134dc1a
Merge pull request 'Adding hieradata/node/ausyd1nxvm1057.main.unkin.net.yaml' ( #150 ) from autonode/ausyd1nxvm1057.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/150
2024-08-25 14:28:06 +10:00
90eabac007
feat: droneci for organisation
...
- change from personal account to organisation
2024-08-25 14:24:45 +10:00
d79a5de17b
feat: add droneci runner
...
- ensure /data and docker are available
- add droneci runner configuration
2024-08-25 02:14:35 +10:00
0f755b231f
Merge pull request 'neoloc/droneci' ( #148 ) from neoloc/droneci into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/148
2024-08-25 00:01:27 +10:00
3d1ba79325
Adding hieradata/node/ausyd1nxvm1058.main.unkin.net.yaml
2024-08-24 23:36:52 +10:00
c33b58ead6
Adding hieradata/node/ausyd1nxvm1057.main.unkin.net.yaml
2024-08-24 23:30:37 +10:00
9f937b2869
Merge pull request 'Adding hieradata/node/ausyd1nxvm1056.main.unkin.net.yaml' ( #147 ) from autonode/ausyd1nxvm1056.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/147
2024-08-24 12:37:44 +10:00
8660bec810
Merge pull request 'Adding hieradata/node/ausyd1nxvm1055.main.unkin.net.yaml' ( #146 ) from autonode/ausyd1nxvm1055.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/146
2024-08-24 12:37:34 +10:00
f30325b3e9
Merge pull request 'Adding hieradata/node/ausyd1nxvm1054.main.unkin.net.yaml' ( #145 ) from autonode/ausyd1nxvm1054.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/145
2024-08-24 12:37:25 +10:00
76c1c93c02
Merge pull request 'Adding hieradata/node/ausyd1nxvm1053.main.unkin.net.yaml' ( #144 ) from autonode/ausyd1nxvm1053.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/144
2024-08-24 12:37:16 +10:00
4577997506
Merge pull request 'Adding hieradata/node/ausyd1nxvm1052.main.unkin.net.yaml' ( #143 ) from autonode/ausyd1nxvm1052.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/143
2024-08-24 12:36:50 +10:00
6326e820a9
Merge pull request 'chore: add new user' ( #142 ) from neoloc/ryadun into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/142
2024-08-24 12:36:09 +10:00
757f3042ed
chore: add new user
...
- add ryadun
2024-08-24 12:35:34 +10:00
5d36a4053b
feat: add droneci module
...
- add droneci module for server
- add droneci/server role
- add consul query for droneci service
- manage certificates, ssh principals, consul services/checks
2024-08-24 00:34:15 +10:00
8a8cc0ae1b
feat: remove requirepass
...
- required for droneci
2024-08-23 23:18:02 +10:00
70a9edd118
Adding hieradata/node/ausyd1nxvm1056.main.unkin.net.yaml
2024-08-16 22:13:16 +10:00
348d8889ed
Adding hieradata/node/ausyd1nxvm1055.main.unkin.net.yaml
2024-08-16 22:11:47 +10:00
1a2023f4ff
Merge pull request 'feat: add patroni/psql cluster' ( #140 ) from neoloc/patroni into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/140
2024-08-10 23:40:29 +10:00
35834f8f5a
feat: add patroni/psql cluster
...
- add patroni puppet module
- add patroni role and hieradata
- add sql/patroni class that utilised consul
2024-08-10 22:34:43 +10:00
4347faf153
Merge pull request 'neoloc/redis' ( #139 ) from neoloc/redis into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/139
2024-08-10 18:47:17 +10:00
5c731fef34
feat: deploy redisha cluster
...
- manage pki and ssh principals
- manage redis/sentinel with redisha module
- add consul checks to manage redis-replica/redis-master services
- manage sudo rules for consul checks
2024-08-10 17:39:30 +10:00
afe2a2afb7
Adding hieradata/node/ausyd1nxvm1054.main.unkin.net.yaml
2024-08-10 14:13:59 +10:00
c76ce3bf10
Adding hieradata/node/ausyd1nxvm1053.main.unkin.net.yaml
2024-08-10 14:13:51 +10:00
af989a19c3
Adding hieradata/node/ausyd1nxvm1052.main.unkin.net.yaml
2024-08-10 14:11:47 +10:00
4d08e30733
Merge pull request 'fix: also fix repodata' ( #138 ) from neoloc/cephreef into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/138
2024-08-10 13:36:30 +10:00
e2873a492a
fix: also fix repodata
2024-08-10 13:36:04 +10:00
90af895a34
Merge pull request 'fix: ceph-reef 18.2.4 not on el8' ( #137 ) from neoloc/cephreef into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/137
2024-08-10 13:30:54 +10:00
52e3d5b20b
fix: ceph-reef 18.2.4 not on el8
...
- force repo to use 18.2.2
2024-08-10 13:30:16 +10:00
403e3eeb1b
chore: add account
2024-08-08 19:01:18 +10:00
a5baed8cd9
chore: add two new users
...
- add marbal and seablo
2024-08-07 22:19:08 +10:00
20ee6fa19e
Merge pull request 'feat: add rundeck runner user' ( #130 ) from neoloc/rundeck_user into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/130
2024-08-06 22:36:54 +10:00
c846cc4e21
feat: add rundeck runner user
...
- add rundeck account on all hosts except rundeck
- add rundeck ssh private/public key to rundeck server
2024-08-06 22:33:32 +10:00
8e0f26e726
Merge pull request 'Adding hieradata/node/ausyd1nxvm1050.main.unkin.net.yaml' ( #124 ) from autonode/ausyd1nxvm1050.main.unkin.net into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/124
2024-08-01 22:41:27 +10:00
4338dfe27f
Adding hieradata/node/ausyd1nxvm1051.main.unkin.net.yaml
2024-08-01 22:35:03 +10:00
66cb1e356d
Adding hieradata/node/ausyd1nxvm1050.main.unkin.net.yaml
2024-08-01 22:33:26 +10:00
d3daac3b71
fix: change debian repos to http
...
- until https issues are resolved with https
2024-07-31 21:51:04 +10:00
eb32a216f5
Merge pull request 'neoloc/rundeck' ( #121 ) from neoloc/rundeck into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/121
2024-07-28 02:05:20 +10:00
5354c99b1e
feat: add rundeck profile
...
- export mysql user for each rundeck server
- ensure the jdbc driver for mariadb is available
- exclude jq from default packages (managed by rundeck)
- add groups for admin/user for each project in rundeck
- add consul service
- add vault certificates
- add ssh principals
- add nginx simpleproxy
2024-07-28 01:51:41 +10:00
6a3123e12e
Merge pull request 'feat: change packages to Hash' ( #120 ) from neoloc/packages_hash into develop
...
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/120
2024-07-27 16:29:48 +10:00
26ffe17ee1
feat: add database
...
- add database for rundeck
2024-07-27 13:06:14 +10:00
cb5bb0798f
feat: add rundeck to ldap
...
- add service account for rundeck
- add rundeck_access group
2024-07-27 13:06:14 +10:00
08241692ee
feat: add rundeck
...
- add puppet-rundeck module
- add rundeck role
2024-07-27 13:06:14 +10:00
