1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
|
class profiles::puppetserver {
# required for the git hook
ensure_packages(['ruby'])
file { '/usr/libexec':
ensure => directory,
}
ensure_packages(['python3-yaml'])
inifile::create_ini_settings(
{ common => {
node_fmt => yaml,
nodes => '/puppet/nodes.yaml',
},
},
{
path => '/etc/node-classifier.ini',
}
)
file { '/usr/libexec/external-node-classifier':
mode => '0555',
source => 'puppet:///modules/profiles/node-classifier.py',
}
class { 'puppet':
server => true,
server_foreman => false,
server_reports => 'puppetdb',
server_storeconfigs => true,
server_git_repo => true,
server_git_repo_path => '/var/lib/puppet.git',
server_external_nodes => '/usr/libexec/external-node-classifier',
server_strict_variables => true,
}
$hiera = {
'version' => 5,
'defaults' => {
'datadir' => '/puppet',
'data_hash' => 'yaml_data',
},
'hierarchy' => [
{
'name' => 'Secrets',
'path' => '/etc/secrets/data.yaml',
},
{
'name' => 'local nodes',
'path' => 'nodes/%{trusted.certname}.yaml'
}
]
}
file { "/etc/puppetlabs/puppet/hiera.yaml":
ensure => file,
content => hash2yaml($hiera, {
'header' => '# This file is managed by puppet',
}),
}
}
|
