Ben Vincent
7fcd8bfe7f
- add 30+ repository definitions to AlmaLinux/all_releases.yaml with `ensure: absent` defaults - update all role-specific hieradata files to use `ensure: present` pattern - remove duplicated repository URL/GPG key configurations from individual roles - maintains existing functionality while improving maintainability"
268 lines
11 KiB
YAML
268 lines
11 KiB
YAML
# hieradata/os/almalinux/all_releases.yaml
|
|
---
|
|
profiles::firewall::firewalld::ensure_package: 'absent'
|
|
profiles::firewall::firewalld::ensure_service: 'stopped'
|
|
profiles::firewall::firewalld::enable_service: false
|
|
profiles::puppet::agent::version: '7.37.2'
|
|
profiles::puppet::agent::openvox_enable: true
|
|
|
|
hiera_include:
|
|
- profiles::almalinux::base
|
|
|
|
profiles::packages::include:
|
|
crypto-policies-scripts: {}
|
|
lzo: {}
|
|
policycoreutils: {}
|
|
unar: {}
|
|
xz: {}
|
|
|
|
lm-sensors::package: lm_sensors
|
|
|
|
profiles::yum::global::repos:
|
|
baseos:
|
|
name: baseos
|
|
descr: baseos repository
|
|
target: /etc/yum.repos.d/baseos.repo
|
|
baseurl: https://edgecache.query.consul/almalinux/%{facts.os.release.full}/BaseOS/%{facts.os.architecture}/os
|
|
gpgkey: http://edgecache.query.consul/almalinux/RPM-GPG-KEY-AlmaLinux-%{facts.os.release.major}
|
|
mirrorlist: absent
|
|
extras:
|
|
name: extras
|
|
descr: extras repository
|
|
target: /etc/yum.repos.d/extras.repo
|
|
baseurl: https://edgecache.query.consul/almalinux/%{facts.os.release.full}/extras/%{facts.os.architecture}/os
|
|
gpgkey: http://edgecache.query.consul/almalinux/RPM-GPG-KEY-AlmaLinux-%{facts.os.release.major}
|
|
mirrorlist: absent
|
|
appstream:
|
|
name: appstream
|
|
descr: appstream repository
|
|
target: /etc/yum.repos.d/appstream.repo
|
|
baseurl: https://edgecache.query.consul/almalinux/%{facts.os.release.full}/AppStream/%{facts.os.architecture}/os
|
|
gpgkey: http://edgecache.query.consul/almalinux/RPM-GPG-KEY-AlmaLinux-%{facts.os.release.major}
|
|
mirrorlist: absent
|
|
highavailability:
|
|
name: highavailability
|
|
descr: highavailability repository
|
|
target: /etc/yum.repos.d/highavailability.repo
|
|
baseurl: https://edgecache.query.consul/almalinux/%{facts.os.release.full}/HighAvailability/%{facts.os.architecture}/os
|
|
gpgkey: http://edgecache.query.consul/almalinux/RPM-GPG-KEY-AlmaLinux-%{facts.os.release.major}
|
|
mirrorlist: absent
|
|
epel:
|
|
name: epel
|
|
descr: epel repository
|
|
target: /etc/yum.repos.d/epel.repo
|
|
baseurl: https://packagerepo.service.consul/epel/%{facts.os.release.major}/everything-daily/%{facts.os.architecture}/os/
|
|
gpgkey: https://packagerepo.service.consul/epel/%{facts.os.release.major}/everything-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-EPEL-%{facts.os.release.major}
|
|
mirrorlist: absent
|
|
unkinben:
|
|
name: unkinben
|
|
descr: unkinben repository
|
|
target: /etc/yum.repos.d/unkin.repo
|
|
baseurl: https://git.query.consul/api/packages/unkinben/rpm/el%{facts.os.release.major}
|
|
gpgkey: https://git.query.consul/api/packages/unkinben/rpm/repository.key
|
|
gpgcheck: false
|
|
mirrorlist: absent
|
|
|
|
# Additional repositories - default to absent, roles can override with ensure: present
|
|
# FRRouting repositories
|
|
frr-extras:
|
|
ensure: absent
|
|
name: frr-extras
|
|
descr: frr-extras repository
|
|
target: /etc/yum.repos.d/frr-extras.repo
|
|
baseurl: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR
|
|
mirrorlist: absent
|
|
frr-stable:
|
|
ensure: absent
|
|
name: frr-stable
|
|
descr: frr-stable repository
|
|
target: /etc/yum.repos.d/frr-stable.repo
|
|
baseurl: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR
|
|
mirrorlist: absent
|
|
|
|
# PostgreSQL repositories
|
|
postgresql-15:
|
|
ensure: absent
|
|
name: postgresql-15
|
|
descr: postgresql-15 repository
|
|
target: /etc/yum.repos.d/postgresql.repo
|
|
baseurl: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/15-daily/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/15-daily/%{facts.os.architecture}/os/PGDG-RPM-GPG-KEY-RHEL
|
|
postgresql-17:
|
|
ensure: absent
|
|
name: postgresql-17
|
|
descr: postgresql-17 repository
|
|
target: /etc/yum.repos.d/postgresql.repo
|
|
baseurl: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/17-daily/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/17-daily/%{facts.os.architecture}/os/PGDG-RPM-GPG-KEY-RHEL
|
|
postgresql-common:
|
|
ensure: absent
|
|
name: postgresql-common
|
|
descr: postgresql-common repository
|
|
target: /etc/yum.repos.d/postgresql.repo
|
|
baseurl: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/common-daily/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/postgresql/rhel%{facts.os.release.major}/common-daily/%{facts.os.architecture}/os/PGDG-RPM-GPG-KEY-RHEL
|
|
|
|
# Ceph repositories
|
|
ceph:
|
|
ensure: absent
|
|
name: ceph
|
|
descr: ceph repository
|
|
target: /etc/yum.repos.d/ceph.repo
|
|
baseurl: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/x86_64/
|
|
gpgkey: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/x86_64/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
ceph-noarch:
|
|
ensure: absent
|
|
name: ceph-noarch
|
|
descr: ceph noarch repository
|
|
target: /etc/yum.repos.d/ceph.repo
|
|
baseurl: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/noarch/
|
|
gpgkey: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/x86_64/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
ceph-reef:
|
|
ensure: absent
|
|
name: ceph-reef
|
|
descr: ceph reef repository
|
|
target: /etc/yum.repos.d/ceph.repo
|
|
baseurl: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/%{facts.os.architecture}/
|
|
gpgkey: https://packagerepo.service.consul/ceph/reef/rhel%{facts.os.release.major}/%{facts.os.architecture}/repodata/repomd.xml.key
|
|
gpgcheck: 0
|
|
mirrorlist: absent
|
|
|
|
# Rancher RKE2 repositories
|
|
rancher-rke2-common-latest:
|
|
ensure: absent
|
|
name: rancher-rke2-common
|
|
descr: rancher-rke2-common repository
|
|
target: /etc/yum.repos.d/rancher-rke2-common.repo
|
|
baseurl: https://packagerepo.service.consul/rancher/rke2-common/latest/common/centos/8/noarch
|
|
gpgkey: https://packagerepo.service.consul/rancher/rke2-common/latest/common/centos/8/noarch/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
rancher-rke2-1-33-latest:
|
|
ensure: absent
|
|
name: rancher-rke2-1.33-latest
|
|
descr: rancher-rke2-1.33-latest repository
|
|
target: /etc/yum.repos.d/rancher-rke2.repo
|
|
baseurl: https://packagerepo.service.consul/rancher/rke2/v1.33.0%2Brke2r1/centos/8/%{facts.os.architecture}
|
|
gpgkey: https://packagerepo.service.consul/rancher/rke2/v1.33.0%2Brke2r1/centos/8/%{facts.os.architecture}/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
|
|
# CentOS repositories for legacy systems
|
|
centos_8_advanced_virtualization:
|
|
ensure: absent
|
|
name: centos_8_advanced_virtualization
|
|
descr: centos_8_advanced_virtualization repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/virt/x86_64/advanced-virtualization
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Virtualization
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_ceph_pacific:
|
|
ensure: absent
|
|
name: centos_8_ceph_pacific
|
|
descr: centos_8_ceph_pacific repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/storage/x86_64/ceph-pacific
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Storage
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_rabbitmq_38:
|
|
ensure: absent
|
|
name: centos_8_rabbitmq_38
|
|
descr: centos_8_rabbitmq_38 repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/messaging/x86_64/rabbitmq-38
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Messaging
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_nfv_openvswitch:
|
|
ensure: absent
|
|
name: centos_8_nfv_openvswitch
|
|
descr: centos_8_nfv_openvswitch repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/nfv/x86_64/openvswitch-2
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-NFV
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_openstack_xena:
|
|
ensure: absent
|
|
name: centos_8_openstack_xena
|
|
descr: centos_8_openstack_xena repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/cloud/x86_64/openstack-xena
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Cloud
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_opstools:
|
|
ensure: absent
|
|
name: centos_8_opstools
|
|
descr: centos_8_opstools repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/opstools/x86_64/collectd-5
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-OpsTools
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_ovirt45:
|
|
ensure: absent
|
|
name: centos_8_ovirt45
|
|
descr: centos_8_ovirt45 repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8/virt/x86_64/ovirt-45
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Virtualization
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
centos_8_stream_gluster10:
|
|
ensure: absent
|
|
name: centos_8_stream_gluster10
|
|
descr: centos_8_stream_gluster10 repository
|
|
target: /etc/yum.repos.d/centos.repo
|
|
baseurl: https://edgecache.query.consul/centos/8-stream/storage/x86_64/gluster-10
|
|
gpgkey: http://edgecache.query.consul/centos/RPM-GPG-KEY-CentOS-SIG-Storage
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
|
|
# Additional repositories
|
|
zfs-kmod:
|
|
ensure: absent
|
|
name: zfs-kmod
|
|
descr: zfs-kmod repository
|
|
target: /etc/yum.repos.d/zfs.repo
|
|
baseurl: https://packagerepo.service.consul/zfs/zfs/el%{facts.os.release.major}/x86_64/
|
|
gpgkey: https://packagerepo.service.consul/zfs/zfs/el%{facts.os.release.major}/x86_64/RPM-GPG-KEY-openzfs
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
rpmfusion-free:
|
|
ensure: absent
|
|
name: rpmfusion-free
|
|
descr: rpmfusion-free repository
|
|
target: /etc/yum.repos.d/rpmfusion-free.repo
|
|
baseurl: https://packagerepo.service.consul/rpmfusion-free-el%{facts.os.release.major}-%{facts.os.architecture}/
|
|
gpgkey: https://packagerepo.service.consul/rpmfusion-free-el%{facts.os.release.major}-%{facts.os.architecture}/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
rpmfusion-nonfree:
|
|
ensure: absent
|
|
name: rpmfusion-nonfree
|
|
descr: rpmfusion-nonfree repository
|
|
target: /etc/yum.repos.d/rpmfusion-nonfree.repo
|
|
baseurl: https://packagerepo.service.consul/rpmfusion-nonfree-el%{facts.os.release.major}-%{facts.os.architecture}/
|
|
gpgkey: https://packagerepo.service.consul/rpmfusion-nonfree-el%{facts.os.release.major}-%{facts.os.architecture}/repodata/repomd.xml.key
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|
|
unkin:
|
|
ensure: absent
|
|
name: unkin
|
|
descr: unkin repository
|
|
target: /etc/yum.repos.d/unkin.repo
|
|
baseurl: https://packagerepo.service.consul/unkin/el%{facts.os.release.major}/%{facts.os.architecture}/os
|
|
gpgkey: https://packagerepo.service.consul/unkin/el%{facts.os.release.major}/%{facts.os.architecture}/os/RPM-GPG-KEY-unkin
|
|
gpgcheck: 1
|
|
mirrorlist: absent
|