unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity
924 Commits 18 Branches 0 Tags 3 MiB
d0eb4c078d
Commit Graph

924 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ben Vincent
58d31c5c9a chore: migrate puppet-r10k 
- moved puppet-r10k the unkin organisation
- ensure branch is set to follow origin/master
 2024-11-17 19:26:27 +11:00
Ben Vincent
92d6697175 Merge pull request 'fix: fix release name' (#180) from neoloc/reposync_sydney into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/180
 2024-11-16 22:36:02 +11:00
Ben Vincent
d3f471f3ed fix: fix release name 
- fix release name for postgresql repos
 2024-11-16 22:35:23 +11:00
Ben Vincent
ab1f4300a9 Merge pull request 'fix: ensure reposync directories exist' (#179) from neoloc/reposync_sydney into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/179
 2024-11-16 22:32:47 +11:00
Ben Vincent
845b91b497 fix: ensure reposync directories exist 2024-11-16 22:32:15 +11:00
Ben Vincent
8f0b3e615c Merge pull request 'feat: add el9 puppet/posgresql repos' (#178) from neoloc/reposync_sydney into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/178
 2024-11-16 22:25:48 +11:00
Ben Vincent
8679a0b904 feat: add el9 puppet/posgresql repos 
- will upgrade to el9 soon, so need to store these repos
 2024-11-16 22:25:06 +11:00
Ben Vincent
16ba54ee0a Merge pull request 'feat: update packagerepo' (#176) from neoloc/reposync_sydney into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/176
 2024-11-16 22:02:46 +11:00
Ben Vincent
4b3553b75c Merge pull request 'Adding hieradata/node/ausyd1nxvm1060.main.unkin.net.yaml' (#177) from autonode/ausyd1nxvm1060.main.unkin.net into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/177
 2024-11-16 21:44:57 +11:00
Ben Vincent
abdb3ec8cb feat: update packagerepo 
- remove almalinux/centos/epel repos
- manage consul service `packagerepo`
- manage ssh principals
- update vault alt-names
 2024-11-16 21:43:11 +11:00
Ben Vincent
c0623b64f7 Adding hieradata/node/ausyd1nxvm1060.main.unkin.net.yaml 2024-11-16 21:36:58 +11:00
Ben Vincent
d286e2d816 Merge pull request 'feat: add sudaporn account' (#175) from neoloc/addying into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/175
 2024-11-16 20:24:14 +11:00
Ben Vincent
71b29d5e88 feat: add sudaporn account 
- enable access to media
- enable access to jupyter
 2024-11-16 20:23:01 +11:00
Ben Vincent
6493f392b8 Merge pull request 'neoloc/jupyterhub' (#174) from neoloc/jupyterhub into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/174
 2024-11-16 20:20:16 +11:00
Ben Vincent
8586e9eb32 feat: enable web-sockets 
- change simpleproxy config for jupyter::hub role to use websockets
 2024-11-16 20:15:03 +11:00
Ben Vincent
92a9655a50 feat: jupyterhub updates 
- always pull containers when starting new instance
- enable access to terminal
 2024-11-16 19:54:19 +11:00
Ben Vincent
42ad972697 feat: add ldap configuration 
- add group members to jupyterhub_user
- add svc_jupyterhub user for ldap binding
- paramatarise all ldap fields required
- manage the notebook data directory
 2024-11-16 19:20:20 +11:00
Ben Vincent
61f5f1ce1f feat: add docker settings 
- list docker network and image
- fix ldap_admin setting to be a list of users
 2024-11-10 20:26:18 +11:00
Ben Vincent
926d3d29d0 fix: enable docker for jupyterhub 
- install/manage docker
 2024-11-10 20:21:51 +11:00
Ben Vincent
c6bdae5790 Merge pull request 'feat: add jupyterhub role' (#173) from neoloc/jupyterhub into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/173
 2024-11-10 19:14:49 +11:00
Ben Vincent
159d66af18 feat: add jupyterhub role 
- add nodejs module to use npm package provider
- add jupyterhub role
- add class to configure the jupyterhub instance
- add ldap groups
- add nginx simpleproxy
 2024-11-10 19:09:50 +11:00
Ben Vincent
c728c1a5e0 Merge pull request 'feat: add service data' (#172) from neoloc/jumphost into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/172
 2024-10-27 14:03:28 +11:00
Ben Vincent
4fec931fb1 feat: add service data 
- add pki certificates
- add consul service
- add ssh principals
 2024-10-27 13:26:07 +11:00
Ben Vincent
76b4c8c930 Merge pull request 'feat: add jumphost role' (#171) from neoloc/jumphost into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/171
 2024-10-27 13:18:50 +11:00
Ben Vincent
0455965525 feat: add jumphost role 
- add role for ssh proxy/jumphost
 2024-10-27 13:15:28 +11:00
Ben Vincent
4e68900259 Merge pull request 'feat: ensure vault restarts with ssl cert' (#170) from neoloc/vault_reload into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/170
 2024-10-27 13:10:51 +11:00
Ben Vincent
ca87702466 feat: ensure vault restarts with ssl cert 
- ensure the vault service resource subscribes to the ssl crt/key
- update unseal script to retry unseal process until it completes
 2024-10-27 12:59:36 +11:00
Ben Vincent
09a448ea52 Merge pull request 'feat: add vault admin group' (#166) from neoloc/vault_global_admin into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/166
 2024-10-21 19:41:31 +11:00
Ben Vincent
1db8847833 feat: add vault admin group 
- group will be assigned global admin rights
 2024-10-21 19:40:52 +11:00
Ben Vincent
6d919580e1 Merge pull request 'neoloc/adduser' (#165) from neoloc/adduser into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/165
 2024-10-20 13:14:50 +11:00
Ben Vincent
5549275ecc chore: add new user 
- add margol as standard media user
 2024-10-20 13:12:36 +11:00
Ben Vincent
7acfea8547 fix: correct given/sn fields 
- fix ryadun's given/sn fields
 2024-10-20 13:12:02 +11:00
Ben Vincent
318e816568 Merge pull request 'feat: update certbot module' (#164) from neoloc/restart_nginx into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/164
 2024-10-07 13:42:57 +11:00
Ben Vincent
2ef4fb0bf8 feat: update certbot module 
- update documentation
- add option to notify services
- set haproxy role to notify the haproxy service
 2024-10-07 13:40:53 +11:00
Ben Vincent
2013641720 Merge pull request 'feat: restart nginx on ssl change' (#163) from neoloc/restart_nginx into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/163
 2024-09-27 21:51:15 +10:00
Ben Vincent
4bf4b42fdf feat: restart nginx on ssl change 
- manage nginx service from simpleproxy class
- ensure nginx restarts when ssl certificates are changed
 2024-09-27 21:46:46 +10:00
Ben Vincent
933427e861 Merge pull request 'neoloc/terraformsvc' (#162) from neoloc/terraformsvc into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/162
 2024-09-23 22:14:27 +10:00
Ben Vincent
4a0760516f feat: add vault service account 
- used by vault to bind to ldap
 2024-09-23 22:13:48 +10:00
Ben Vincent
10b57abffc feat: add terraform service account 
- add terraform service account
 2024-09-23 22:08:52 +10:00
Ben Vincent
5b4bb95ffe Merge pull request 'feat: add vault access group' (#161) from neoloc/vaultaccess into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/161
 2024-09-20 23:24:44 +10:00
Ben Vincent
e09819284d feat: add vault access group 
- add vault_access group
 2024-09-20 23:17:35 +10:00
Ben Vincent
addfa02e08 Merge pull request 'feat: enable larger uploads to gitea' (#160) from neoloc/gitea_client_send into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/160
 2024-09-08 01:44:04 +10:00
Ben Vincent
93b9629c5c feat: enable larger uploads to gitea 
- change client body max size to 1GB
 2024-09-08 01:43:22 +10:00
Ben Vincent
9dea399377 Merge pull request 'neoloc/gitearunner' (#159) from neoloc/gitearunner into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/159
 2024-09-07 21:38:29 +10:00
Ben Vincent
0210d849c7 feat: add gitea runner role 
- ensure docker is configured
- create runner user/group
- deploy config.yaml from hiera hash
- install runner from url
- register the runner with the gitea instance
- manage the act_runner service
 2024-09-07 17:59:02 +10:00
Ben Vincent
42d8047043 fix: comments in gitea role 
- was copy of puppetboard, missed updating the comment
 2024-09-03 22:34:48 +10:00
Ben Vincent
c0b94c181f Merge pull request 'feat: confine fact to patroni' (#158) from neoloc/patroni_facts into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/158
 2024-09-03 22:19:18 +10:00
Ben Vincent
265400db91 feat: confine fact to patroni 2024-09-03 22:18:53 +10:00
Ben Vincent
ccf4ef27f7 Merge pull request 'feat: psql changes on master only' (#157) from neoloc/patroni_grant_on_master into develop 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/157
 2024-09-03 22:15:47 +10:00
Ben Vincent
afda425fab feat: psql changes on master only 
- add fact to detect if a psql host is a slave
- only import users/db/grants on master
 2024-09-03 22:13:50 +10:00