unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases Wiki Activity

chore: add ssh principals #31

Merged
unkinben merged 1 commits from neoloc/puppetca_ssh_principal into develop 2024-06-11 20:31:31 +10:00
Conversation 0 Commits 1 Files Changed 3 +15
3 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
hieradata/nodes/ausyd1nxvm1036.main.unkin.net.yaml
View File

@ -5,6 +5,12 @@ profiles::puppet::server::dns_alt_names:
- puppetca.query.consul - puppetca.query.consul
- puppetca - puppetca
profiles::ssh::sign::principals:
- puppetca.main.unkin.net
- puppetca.service.consul
- puppetca.query.consul
- puppetca
profiles::puppet::puppetca::is_puppetca: true profiles::puppet::puppetca::is_puppetca: true
profiles::puppet::puppetca::allow_subject_alt_names: true profiles::puppet::puppetca::allow_subject_alt_names: true
networking::interfaces: networking::interfaces:

5
hieradata/roles/infra/git/gitea.yaml
View File

@ -6,6 +6,11 @@ profiles::pki::vault::alt_names:
- git.query.consul - git.query.consul
- "git.service.%{facts.country}-%{facts.region}.consul" - "git.service.%{facts.country}-%{facts.region}.consul"
profiles::ssh::sign::principals:
- git.main.unkin.net
- git.service.consul
- git.query.consul
consul::services: consul::services:
git: git:
service_name: 'git' service_name: 'git'

4
hieradata/roles/infra/puppet/master.yaml
View File

@ -58,6 +58,10 @@ profiles::puppet::server::dns_alt_names:
- puppetmaster - puppetmaster
- puppet - puppet
profiles::ssh::sign::principals:
- puppet.service.consul
- puppet.query.consul
consul::services: consul::services:
puppet: puppet:
service_name: 'puppet' service_name: 'puppet'