Ben Vincent
a3ef535bfc
- add permissions to write ceph-* services to consul - change from `script` to `args` array
36 lines
858 B
YAML
36 lines
858 B
YAML
---
|
|
sudo::configs:
|
|
ceph-smartctl:
|
|
priority: 20
|
|
content: |
|
|
ceph ALL=NOPASSWD: /usr/sbin/smartctl -x --json=o /dev/*
|
|
ceph ALL=NOPASSWD: /usr/sbin/nvme * smart-log-add --json /dev/*
|
|
|
|
hiera_exclude:
|
|
- networking
|
|
|
|
# proxmox tools use root to authenticate against each other
|
|
ssh::server::options:
|
|
PermitRootLogin: yes
|
|
AcceptEnv:
|
|
- LANG LC_*
|
|
- LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
|
|
- LC_IDENTIFICATION LC_ALL LANGUAGE
|
|
- XMODIFIERS
|
|
ListenAddress:
|
|
- "%{facts.networking.interfaces.vmbr1.ip}"
|
|
|
|
profiles::consul::client::node_rules:
|
|
- resource: service
|
|
segment: ceph-mon
|
|
disposition: write
|
|
- resource: service
|
|
segment: ceph-mds
|
|
disposition: write
|
|
- resource: service
|
|
segment: ceph-mgr
|
|
disposition: write
|
|
- resource: service
|
|
segment: ceph-osd
|
|
disposition: write
|