diff options
| author | mail_redacted_for_web | 2015-11-24 11:16:51 -0800 |
|---|---|---|
| committer | mail_redacted_for_web | 2015-11-24 11:16:51 -0800 |
| commit | afc9a358f30c51029d7a37122d4adfcc2add88a6 (patch) | |
| tree | 655439e13d1cee28e254d6d92da6f13c4c5aa670 /site/profile/manifests/puppetmaster.pp | |
| parent | 869a5c3aa974b53e2f7f4c8fd8ab01fab0420f6d (diff) | |
| parent | 7e40513c531d98015101367baf5d480d7ea6d2e3 (diff) | |
| download | control-repo-template-afc9a358f30c51029d7a37122d4adfcc2add88a6.tar.bz2 | |
Merge branch 'production' of https://github.com/npwalker/control-repo into merge_npwalker_control_repo
Diffstat (limited to 'site/profile/manifests/puppetmaster.pp')
| -rw-r--r-- | site/profile/manifests/puppetmaster.pp | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/site/profile/manifests/puppetmaster.pp b/site/profile/manifests/puppetmaster.pp new file mode 100644 index 0000000..0954807 --- /dev/null +++ b/site/profile/manifests/puppetmaster.pp @@ -0,0 +1,73 @@ +class profile::puppetmaster ( + $webhook_username, + $webhook_password +) { + + class { 'hiera': + hierarchy => [ + 'virtual/%{::virtual}', + 'nodes/%{::trusted.certname}', + 'common', + ], + hiera_yaml => '/etc/puppetlabs/code/hiera.yaml', + datadir => '/etc/puppetlabs/code/environments/%{environment}/hieradata', + owner => 'pe-puppet', + group => 'pe-puppet', + notify => Service['pe-puppetserver'], + } + + #BEGIN - Generate an SSH key for r10k to connect to git + $r10k_ssh_key_file = '/root/.ssh/r10k_rsa' + exec { 'create r10k ssh key' : + command => "/usr/bin/ssh-keygen -t rsa -b 2048 -C 'r10k' -f ${r10k_ssh_key_file} -q -N ''", + creates => $r10k_ssh_key_file, + } + #END - Generate an SSH key for r10k to connect to git + + #BEGIN - Add deploy key and webook to git management system + $git_management_system = hiera('git_management_system', '') + + if $git_management_system in ['gitlab', 'github'] { + + git_deploy_key { "add_deploy_key_to_puppet_control-${::fqdn}": + ensure => present, + name => $::fqdn, + path => "${r10k_ssh_key_file}.pub", + token => hiera('gms_api_token'), + project_name => 'puppet/control-repo', + server_url => hiera('gms_server_url'), + provider => $git_management_system, + } + + git_webhook { "web_post_receive_webhook-${::fqdn}" : + ensure => present, + webhook_url => "https://${webhook_username}:${webhook_password}@${::fqdn}:8088/payload", + token => hiera('gms_api_token'), + project_name => 'puppet/control-repo', + server_url => hiera('gms_server_url'), + provider => $git_management_system, + disable_ssl_verify => true, + } + + } + #END - Add deploy key and webhook to git management system + + #Lay down update-classes.sh for use in r10k postrun_command + #This is configured via the pe_r10k::postrun key in hiera + file { '/usr/local/bin/update-classes.sh' : + ensure => file, + source => 'puppet:///modules/profile/puppetmaster/update-classes.sh', + mode => '0755', + } + + #https://docs.puppetlabs.com/puppet/latest/reference/config_file_environment.html#environmenttimeout + ini_setting { 'environment_timeout = unlimited': + ensure => present, + path => '/etc/puppetlabs/puppet/puppet.conf', + section => 'main', + setting => 'environment_timeout', + value => 'unlimited', + notify => Service['pe-puppetserver'], + } + +} |