unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
1,033 Commits 17 Branches 0 Tags 2.9 MiB
a9faa098ee
Commit Graph

73 Commits

Author SHA1 Message Date
Ben Vincent
a9faa098ee benvin/grafana_postgres (#334) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/334
 2025-07-01 19:07:24 +10:00
Ben Vincent
715e88176b chore: confine incus facts to incus (#326) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/326
 2025-06-28 21:24:08 +10:00
Ben Vincent
1837506b6c feat: add incus facts (#325) 
- incus container counts
- incus profile list
- allocated memory/cpu

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/325
 2025-06-28 21:14:39 +10:00
Ben Vincent
62837bb22d feat: add zone to subnet facts (#320) 
- add common and dmz zone fact information

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/320
 2025-06-21 15:42:37 +10:00
Ben Vincent
66fdd7b615 feat: update incus image host to run on incus (#309) 
- remove zfs
- remove some sysctl values
- remove memlocks from limits
- install iptables, required for creating bridges

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/309
 2025-06-08 22:58:44 +10:00
Ben Vincent
b3347f9226 chore: migrate media applications (#299) 
- migrate media applications to new cephfs pool + incus
- enable exporting haproxy
- move ceph-client-setup to only apply to non-lxc hosts
- ensure unrar is installed for nzbget
- updated jellyfin use of data_dir
- set lxc instances for jellyfin to use /shared/apps/jellyfin

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/299
 2025-05-25 20:27:17 +10:00
Ben Vincent
3079f7d000 feat: enable use of dhcp addresses in networkd (#273) 
- change ipaddress to be optional
- add dhcp option

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/273
 2025-05-03 23:51:17 +10:00
Ben Vincent
2321186ad5 neoloc/mpls_ldp_frr (#255) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/255
 2025-04-24 16:51:31 +10:00
Ben Vincent
c24babe309 feat: add incus image host (#254) 
- add role
- add consul service + checks
- manage the datavol as zfs
- insure the incus fact exists before attempting to read it

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/254
 2025-04-24 01:00:39 +10:00
Ben Vincent
8c76e71dc4 chore: set core.https_address for incus (#249) 
- check the current config and update core.https_address if its wrong

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/249
 2025-04-07 11:04:12 +10:00
Ben Vincent
0e3dd4d7d0 feat: initialise barebones server (#248) 
- manage incus servers init

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/248
 2025-04-06 23:56:50 +10:00
Ben Vincent
83d0b31753 fix: set default for use_networkd (#247) 
- resolving issue where the systemd::manage_networkd is missing for most
  hosts, setting a default

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/247
 2025-04-06 19:24:39 +10:00
Ben Vincent
c225564bdb feat: continue incus implementation (#245) 
- migrate to systemd-networkd
- setup dummy, bridge and static/ethernet interfaces
- manage sshd.service droping to start ssh after networking is online
- enable ip forewarding
- add fastpool/data/incus dataset
- enable ospf and frr
- add loopback0 as ssh listenaddress
- add loopback1/2 for ceph cluster/public traffic

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/245
 2025-04-06 16:38:04 +10:00
Ben Vincent
bdf420973d feat: add incus module (#230) 
- add a basic incus module

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/230
 2025-03-30 01:12:53 +11:00
Ben Vincent
d0eb4c078d feat: add zfs modules (#225) 
- add zfs_core module to puppetfile (provides zfs/zpool provider)
- add module to manage zfs

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/225
 2025-03-29 22:31:02 +11:00
Ben Vincent
adc0cf2c09 neoloc/lxd_hosts (#223) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/223
 2025-03-29 19:40:01 +11:00
Ben Vincent
8eb751e22f feat: change enc_* fact to read direct from cobbler (#219) 
- change enc_role and enc_env to read direct from cobbler
- cleanup profiles::base::facts

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/219
 2025-03-12 23:09:15 +11:00
Ben Vincent
afd3405c98 feat: add etcd module/role (#215) 
- add etcd module
- add etcd role, profile and hieradata

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/215
 2025-01-26 20:00:20 +11:00
Ben Vincent
4400456519 feat: add frrouting module (#208) 
- add frrouting module
- enable ospf daemon on nomad agents
- enable docker volumes

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/208
 2024-12-27 23:39:03 +11:00
Ben Vincent
2ef4fb0bf8 feat: update certbot module 
- update documentation
- add option to notify services
- set haproxy role to notify the haproxy service
 2024-10-07 13:40:53 +11:00
Ben Vincent
265400db91 feat: confine fact to patroni 2024-09-03 22:18:53 +10:00
Ben Vincent
afda425fab feat: psql changes on master only 
- add fact to detect if a psql host is a slave
- only import users/db/grants on master
 2024-09-03 22:13:50 +10:00
Ben Vincent
d79a5de17b feat: add droneci runner 
- ensure /data and docker are available
- add droneci runner configuration
 2024-08-25 02:14:35 +10:00
Ben Vincent
5d36a4053b feat: add droneci module 
- add droneci module for server
- add droneci/server role
- add consul query for droneci service
- manage certificates, ssh principals, consul services/checks
 2024-08-24 00:34:15 +10:00
Ben Vincent
4347faf153 Merge pull request 'neoloc/redis' (#139) from neoloc/redis into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/139
 2024-08-10 18:47:17 +10:00
Ben Vincent
b7fc6a1993 feat: create redisha module 
- manage redis/sentinel clusters
- ensure ulimit_managed is false
- dynamically find servers in role to identify master
- add redisadm and sentineladm commands
- add script to check if the current host in the master
 2024-08-10 17:39:24 +10:00
Ben Vincent
0cad88cdad chore: prevent empty lines 
- prevent empty lines when user features are not enabled
- change epp to erb template for user objects
 2024-08-07 22:51:13 +10:00
Ben Vincent
3ed692cc77 Merge pull request 'feat: manage the nzbget service' (#112) from neoloc/nzbget_group_media into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/112
 2024-07-11 22:27:44 +10:00
Ben Vincent
ec92a6d3df feat: manage the nzbget service 2024-07-11 21:39:34 +10:00
Ben Vincent
95a0b543fd feat: add othergroups support for services 
- extend glauth::obj::service to allow othergroups
 2024-07-11 19:59:26 +10:00
Ben Vincent
0c1fd63b7d fix: change nzbget::manage_group to boolean 2024-07-09 23:22:49 +10:00
Ben Vincent
fd5163d6e6 Merge branch 'develop' into neoloc/nzbget 2024-07-09 22:25:28 +10:00
Ben Vincent
d67eba5860 feat: add nzbget module/role 
- add nzbget module
- add nzbget ldap user/group
 2024-07-09 22:23:58 +10:00
Ben Vincent
d9a2966ffd fix: certbot selinux and rsync 
- fix rsync to use 755 permissions
- add rsync selinux booleans
 2024-07-08 23:17:38 +10:00
Ben Vincent
bd5164fed3 feat: certbot reorg 
- moved certbot into its own module
- added fact to list available certificates
- created systemd timer to rsync data to $data_dir/pub
- ensure the $data_dir/pub exists
- manage selinux for nginx
 2024-07-08 22:33:11 +10:00
Ben Vincent
658af2b6b6 Merge pull request 'feat: manage jellyfin data migration_flag' (#90) from neoloc/jellyfin into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/90
 2024-07-04 00:09:22 +10:00
Ben Vincent
f3046f8fbb feat: manage jellyfin data migration_flag 2024-07-03 22:49:54 +10:00
Ben Vincent
b0934caf23 feat: restart networking on network changes 
- restart network on RedHat
- restart networking on debian
 2024-07-03 20:35:58 +10:00
Ben Vincent
8e1622a158 Merge pull request 'neoloc/glauth' (#87) from neoloc/glauth into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/87
 2024-07-02 18:12:54 +10:00
Ben Vincent
fe35baacfd chore: cleanup glauth 
- remove datavol, not required
- remove commented out systemd socket
 2024-07-02 18:12:08 +10:00
Ben Vincent
c69e8c487e feat: create glauth module 
- manage config directories, config file
- manage systemd service and socket
- manage users, service accounts and groups
- manage defaults for users, services and groups
- manage packages for role
 2024-07-01 22:42:12 +10:00
Ben Vincent
e437629e12 feat: add jellyfin module 2024-06-30 00:01:38 +10:00
Ben Vincent
2b1ea45e4e feat: add manage_group param to *arr stack 
- change hieradata/role/apps/media/* to use correct namespaces
- add manage_group boolean to all *arr stack modules
 2024-06-27 23:15:08 +10:00
Ben Vincent
5f5a9f5f65 Merge pull request 'feat: add prowlarr module' (#69) from neoloc/prowlarr into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/69
 2024-06-27 21:34:30 +10:00
Ben Vincent
3c63d8e797 Merge pull request 'feat: add readarr module' (#68) from neoloc/readarr into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/68
 2024-06-27 21:34:17 +10:00
Ben Vincent
ab617a9de1 Merge pull request 'feat: add lidarr module' (#67) from neoloc/lidarr into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/67
 2024-06-27 21:33:59 +10:00
Ben Vincent
f2046efebe feat: add prowlarr module 
- add media::prowlarr role
 2024-06-27 21:32:13 +10:00
Ben Vincent
0b7f07692c feat: add readarr module 
- add media::readarr role
 2024-06-27 21:21:18 +10:00
Ben Vincent
bbf9944ef5 feat: add lidarr module 2024-06-27 21:14:27 +10:00
Ben Vincent
17c16bfc33 feat: add radarr module 2024-06-26 22:57:27 +10:00