git.lirion.de

Of git, get, and gud

summaryrefslogtreecommitdiffstats
path: root/site
Commit message (Collapse)AuthorAgeFilesLines
* Move gitlab profile out to its own 'profile' moduleNick Walker 2016-03-242-29/+0
| | | | | | | | | | | | Prior to this commit, there was a gitlab profile in the site dir of this control-repo. After this commit, the profile has been moved to it's own repo where it can be used more generally and not tightly coupled to this repository. As a result, the gitlab role has been removed from this repository as well.
* Move puppetmaster profile to rampup_profile_puppetmaster moduleNick Walker 2016-03-233-64/+1
| | | | | | | | Prior to this commit, the puppetmaster profile was embedded in this control-repo. After this commit, the puppetmaster profile is moved out into its own module.
* Clean up some stale filesNick Walker 2016-03-232-19/+0
| | | | | | | | | | Prior to this commit, these two files were laying around but not used. The code manager template was missed when the code was moved into a module and the function was added a while ago but then never put to use. After this commit, the codebase is a little lighter without these stale files.
* Move profile::git_webhook into seperate module pe_code_manager_webhookNick Walker 2016-03-178-282/+1
| | | | | | | | | | | | | | | | | | | | | Prior to this commit the functionality to setup the either code manager or zack/r10k was tightly coupled to this control-repo. In an effort to make that functionality useful to more people we're splitting it into a dedicated module. After this commit, the pe_code_manager_webhook module will contain all logic around setting up the webhook while this control-repo will still gloss over the details needed to get everything in PE setup correctly to use that module. This commit removes the files associated with the profile including some custom functions that were only there to make it work. This commit removes the all_in_one_pe_2015_2 role as it was exactly the same as the all_in_one_pe role. This commit modifies all_in_one_pe to use the pe_code_manager_webhook module instead of the profile.
* Merge pull request #18 from stjeanp/productionNate McCurdy 2016-03-151-9/+0
|\ | | | | Fixed code so hunner/hiera can be pulled from forge
| * Fixed code so hunner/hiera can be pulled from forgePatrick St. Jean 2016-02-041-9/+0
| |
* | Update all_in_one_pe_2015_2.ppPhilip Morrison 2016-02-141-1/+1
|/ | | | Shouldn't this be profile::git_webhook as in all_in_one_pe.pp since the abstraction logic is located there? Either that or the profile::zack_r10k_webook is missing from the location specified?
* Fix hostname on role creation curl commandNick Walker 2016-01-121-1/+1
| | | | | | | | | | | Prior to the this commit, if you were using the code_manager profile on a split install it would incorrectly try to curl the NC api on the master node. After this commit, it should correctly curl the hostname of the NC This has no impact on the functionality of the code on a monolithic PE installation.
* Move hiera_config to main section of puppet.confNick Walker 2016-01-061-1/+10
| | | | | If it is in master instead of main then puppet apply will give a warning.
* Add an exec to create the Deploy Environments RBAC RoleNick Walker 2015-12-281-1/+23
| | | | | | | | | Prior to this commit there was a requirement for the user of this repo to create a RBAC role in order for code manager to work. After this commit an exec statement will curl the RBAC API to create the role one time and hopefully it works otherwise the exec will not run again.
* Add functionality to disable the zack/r10k webhookNick Walker 2015-12-212-0/+15
| | | | | | | | | | | Prior to this commit, if you upgraded from a previous version of the control-repo both code manager and zack/r10k webhook would be running and ready to receive data. This can present problems if the webhook isn't disbled in the git management system is sending data to both receivers. This commit adds rudimentary ability to break the zack/r10k webhook so it can't receive data.
* Create profile::git_webhook to abstract away the detailsNick Walker 2015-12-215-4/+15
| | | | | | | | | | | | | Prior to this commit there were two possible webhooks - zack/r10k webhook - code manager I moved these two profiles under git_webhook and choose the correct one based on the version of PE being used. As a safety hatch, I provide the $force_zack_r10k_webhook param on profile::git_webhook in case someone needs to continue using it instead of code manager.
* Move hiera.yaml to avoid file-sync overwriting itNick Walker 2015-12-181-1/+19
| | | | | | | | File sync appears to sync everything in the $codedir which inlcudes hiera.yaml. When managing hiera.yaml with puppet code you don't want file sync to overwrite its contents. So, I'm moving it out of $codedir and removing the original hiera.yaml to avoid confusion for users investigating later.
* Final steps to make Code Manager workNick Walker 2015-12-185-33/+69
| | | | | | | | | | - Moved ssh key generation and git deploy key out of the puppetmaster profile and into zack_r10k and code_manager - Swapped code manager into the all_in_one role - Made a 2015.2 all_in_one role if users prefer to use it - Conditionally move all existing code out of environmentpath to allow file sync to sync files - Update the README to compliment the new puppet code
* Chown files in codedir to pe-puppetNick Walker 2015-12-091-0/+6
|
* Allow disabling authentication on code manager webhookNick Walker 2015-12-091-3/+12
|
* Allow code_manager profile to not error out on first runNick Walker 2015-12-092-4/+43
| | | | | | | | | | | | | | Prior to this commit, the code manger profile could not complete on the first run because the file function would error out I implemented a new version of the file function that returns nothing when the file does not exist instead of erroring out which allows me to gate creating the webhook on whether there is content in the file. As a result this means that it takes 2 runs to get everything setup but this is preferable over having to manually intervene in some other way if the token file doesn't exist.
* Refactor puppetmaster and zack_r10k_webhookNick Walker 2015-12-093-30/+12
| | | | | | | | | | Moved the webhook resource out of puppetmaster and into zack_r10k to support exchaning code_manager in place of zack_r10k As a result I cleaned up some unnecessary parameters. Installing both the r10k webhook and the code_manager at this time for testing
* Add support for code manager which will replace zack r10kNick Walker 2015-12-094-1/+86
| | | | | | | | | | | | | | | Add pltraing-rbac module Added a new profile for code_manager that: - creates a service users for code manager - creates a token for that service user - creates a hook on a git server using the token Turns out that the file function in puppet cannot read files in /root. The pe-puppet user needs read permissions on the file and traversal on the directory which giving to /root would probably be a bad idea. So, I just put the file containing the token in /etc/puppetlabs/puppetserver since I'm not sure where would be better.
* Add custom functions for determining some PE settingsNick Walker 2015-11-252-0/+17
| | | | | | Added a function to find the hostname and port of the classifier Added a fucntion to return all puppetdb hostnames
* Merge branch 'production' of https://github.com/npwalker/control-repo into ↵Nick Walker 2015-11-2410-0/+205
|\ | | | | | | merge_npwalker_control_repo
| * Change owner/group to pe-puppet for hiera moduleNick Walker 2015-11-171-2/+2
| | | | | | | | | | | | | | | | When the owner / group was root this meant that enabling hiera-eyaml wouldn't work properly as the keys couldn't be read by puppetserver. Changing to pe-puppet should resolve the issue.
| * fixing a bunch of puppet lint warningsNick Walker 2015-10-303-10/+10
| |
| * Refactor webhook profiles into one profile with a parameterNick Walker 2015-10-304-30/+24
| | | | | | | | | | | | | | | | Previously there was a mcollective and no_mcollective version of the webhook profile. They were almost identical so I merged them and manage the difference with a "use_mcollective" parameter. I renamed the webhook profile to zack_r10k_webhook.
| * Change the zack/r10k webhook to utilize username and passwordNick Walker 2015-10-303-6/+24
| | | | | | | | | | | | | | To accomodate generating random usernames and passwords, I had to parameterize the profiles which I didn't feel great about but I also didn't want to have to put the username and pass in hiera.
| * enable SSL on the zack/r10k webhookNick Walker 2015-10-292-2/+2
| |
| * Add $::fqdn to post receive hook titleNick Walker 2015-10-281-3/+3
| | | | | | | | Also, change other references of $fqdn to $::fqdn
| * disable SSL on the zack/r10k webhookNick Walker 2015-10-282-2/+1
| | | | | | | | | | The abrader/gms provider for gitlab doesn't support disabling ssl verification but will soon.
| * enable ssl on the webhookNick Walker 2015-10-282-15/+17
| |
| * make environment timeout setting refresh the puppet master serviceNick Walker 2015-10-261-0/+1
| |
| * Fix the update-classes script and set appropriate perms on itNick Walker 2015-10-262-1/+2
| |
| * Fix some embarassing typosNick Walker 2015-10-261-1/+1
| |
| * Configure the MoM to update the classifier after deploying codeNick Walker 2015-10-262-0/+27
| | | | | | | | | | | | | | | | | | | | This entailed configring the classifier to never sync on a schedule. Changing environment_timeout to unlimited for all masters. Setting a postrun command for r10k that would update the class information in the classifier (the update-classes endpoint).
| * fix whitespaceNick Walker 2015-10-211-2/+2
| |
| * Change the zack/r10k webhook to not authenticateNick Walker 2015-10-201-0/+2
| |
| * Change to using the webhook without mcollectiveNick Walker 2015-10-164-13/+29
| | | | | | | | | | | | In order to complete the change I refactered the webhook into its own set of profiles, one with mcollective and the other without.
| * Add some notifies to pe services after making changesNick Walker 2015-10-151-0/+2
| |
| * Ensure /etc/gitlab/ssl exists before putting certs in itNick Walker 2015-09-241-0/+4
| |
| * add modules for stash and a profileNick Walker 2015-08-251-0/+28
| |
| * Update the repo name for deploy keys and webhook to match READMENick Walker 2015-08-181-2/+2
| |
| * Move some hieradata around for easier testing in vagrantNick Walker 2015-08-181-0/+1
| | | | | | | | | | | | | | | | I now have a virtual hierarchy level for setting up my lower memory settings when using vagrant/virtualbox. The gms settings are in an example-puppet-master.yaml file in the nodes directory which are needed for the instructions.
| * Copy agent certs into Gitlab directory for Gitlab SSLNick Walker 2015-08-181-0/+13
| |
| * Change default gitlab url to be https instead of httpNick Walker 2015-08-171-1/+1
| |
| * Add webhook config to git management systemNick Walker 2015-08-171-2/+11
| |
| * Add a gitlab roleNick Walker 2015-08-141-0/+5
| |
| * Add a gitlab profile / add ssh-keygen to puppetmaster profileNick Walker 2015-08-142-0/+45
| |
| * Remove extraneous slash from puppetmaster profileNick Walker 2015-08-141-1/+1
| |
| * Fix some incorrect quoting in the hiera classNick Walker 2015-08-131-3/+3
| | | | | | | | | | | | | | I thought I needed to double quote items that had interpolated variables but it turns out I don't need to which is good because I effectively can't due to .to_yaml not doing what I wanted it to do.
| * Fix some quoting issues and add role:: to the include in site.ppNick Walker 2015-08-131-3/+3
| |
| * Update the README, add an all_in_one_pe roleNick Walker 2015-08-131-0/+5
| | | | | | | | | | | | | | | | | | | | | | Updating README for instructions on how to use the control-repo by putting it in your own git server and then using the r10k answers during installation of PE. Removing the manifest for configuring r10k using zack/r10k. Added a role that can be used to bootstrap an all-in-one PE installation.
© 2014-2019 lirion.de – served by cgit – All Rights Reverse Engineered