projects / mirror / dsa-puppet.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
sso -> hiera role; explicitly include apache2
[mirror/dsa-puppet.git] / hieradata / common.yaml
1 ---
2
3 lookup_options:
4   # with merge: unique entries in other hiera sources add to the array
5   resolv::searchpaths:
6     merge: unique
7   apt::sources::debian::location:
8     merge: unique
9
10 resolv::nameservers: []
11 resolv::searchpaths: ['debian.org']
12 allow_dns_query: []
13 role_config__mirrors:
14   mirror_basedir_prefix: '/srv/mirrors/'
15 role_config__syncproxy:
16   mirror_basedir_prefix: '/srv/mirrors/'
17 samhain_recipients:
18   - 'debian-archive-debian-samhain-reports@master.debian.org'
19   - 'debian-admin@ftbfs.de'
20   - 'weasel@debian.org'
21   - 'zumbi@oron.es'
22 root_mail_alias:
23   - 'debian-admin@debian.org'
24 paths:
25   letsencrypt_dir: '/srv/puppet.debian.org/from-letsencrypt'
26   auto_certs_dir: '/srv/puppet.debian.org/ca/RESULT/certs'
27   auto_clientcerts_dir: '/srv/puppet.debian.org/ca/RESULT/clientcerts'
28 apt::sources::debian::location: 'https://deb.debian.org/debian/'
29
30 staticsync::user: 'staticsync'
31 staticsync::basedir: '/srv/static.debian.org'
32
33 # all of these should be retired in favour of including the class role
34 # with the host. weasel, 2019-09
35 roles:
36   bugsmx:
37     - buxtehude.debian.org
38   dns_primary:
39     - denis.debian.org
40   dns_geo:
41     - geo1.debian.org
42     - geo2.debian.org
43     - geo3.debian.org
44   extranrpeclient:
45     - denis.debian.org
46   ftp_master:
47     - fasolo.debian.org
48   mailrelay:
49     - mailly.debian.org
50     - muffat.debian.org
51   mirrormaster:
52     - melartin.debian.org
53   muninmaster:
54     - menotti.debian.org
55   nagiosmaster:
56     - tchaikovsky.debian.org
57   packagesmaster:
58     - picconi.debian.org
59   packagesqamaster:
60     - quantz.debian.org
61   popcon:
62     - pinel.debian.org
63   qamaster:
64     - quantz.debian.org
65   rtmaster:
66     - reger.debian.org
67   security_master:
68     - seger.debian.org
69   security_mirror:
70     mirror-anu.debian.org:
71       fastly-backend: false
72     mirror-csail.debian.org:
73       fastly-backend: false
74     mirror-isc.debian.org:
75       onion_v4_address: 149.20.4.14
76     mirror-umn.debian.org:
77       onion_v4_address: 128.101.240.215
78     mirror-accumu.debian.org:
79       fastly-backend: false
80     mirror-skroutz.debian.org:
81       fastly-backend: false
82     lobos.debian.org:
83       service-hostname: lobos.security.backend.mirrors.debian.org
84       fastly-backend: false
85       onion_v4_address: 212.211.132.250
86     santoro.debian.org:
87       fastly-backend: false
88     schmelzer.debian.org:
89       fastly-backend: false
90     schumann.debian.org:
91       service-hostname: schumann.security.backend.mirrors.debian.org
92       fastly-backend: true
93     setoguchi.debian.org:
94       fastly-backend: false
95     sechter.debian.org:
96       fastly-backend: false
97     villa.debian.org:
98       service-hostname: villa.security.backend.mirrors.debian.org
99       fastly-backend: true
100       onion_v4_address: 212.211.132.32
101     wieck.debian.org:
102       service-hostname: wieck.security.backend.mirrors.debian.org
103       fastly-backend: true
104   security_tracker:
105     - soriano.debian.org
106   # single sign on relying party (host) - also required apache2 module enabled on that host via other means
107   sso_rp:
108     - debussy.debian.org
109     - diabelli.debian.org
110     - jerea.debian.org
111     - nono.debian.org
112     - quantz.debian.org
113     - tate.debian.org
114     - ticharich.debian.org
115     - wilder.debian.org
116     - wuiet.debian.org
117   static_mirror_onion:
118     - klecker.debian.org
119     - mirror-isc.debian.org
120     - senfter.debian.org
121   syncproxy:
122     - gretchaninov.debian.org
123     - klecker.debian.org
124     - milanollo.debian.org
125     - mirror-anu.debian.org
126     - mirror-isc.debian.org
127     - mirror-umn.debian.org
128     - schmelzer.debian.org
129     - smit.debian.org
130   udd:
131     - ullmann.debian.org
132   postgres_backup_server:
133     - backuphost.debian.org
134     - storace.debian.org
135   dabackup_client:
136     - lw03.debian.org
137   debian_mirror:
138     klecker.debian.org:
139       listen-addresses:
140         - '130.89.148.12:80'
141         - '[2001:67c:2564:a119::148:12]:80'
142       onion_v4_address: 130.89.148.12
143     mirror-accumu.debian.org:
144       service-hostname: accumu.debian.backend.mirrors.debian.org
145       fastly-backend: true
146     mirror-skroutz.debian.org:
147       service-hostname: skroutz.debian.backend.mirrors.debian.org
148       fastly-backend: true
149     mirror-isc.debian.org:
150       listen-addresses:
151         - '149.20.4.15:80'
152         - '[2001:4f8:1:c::15]:80'
153       onion_v4_address: 149.20.4.15
154     schmelzer.debian.org:
155       listen-addresses:
156         - '217.196.149.232:80'
157         - '[2a02:16a8:dc41:100::232]:80'
158       fastly-backend: true
159       service-hostname: conova.debian.backend.mirrors.debian.org
160   historical_master:
161     - sibelius.debian.org
162   historical_mirror:
163     - gretchaninov.debian.org
164     - klecker.debian.org
165     - schmelzer.debian.org
166     - sibelius.debian.org
167   debug_mirror:
168     mirror-accumu.debian.org:
169       onion_v4_address: 130.242.6.199
170       service-hostname: accumu.debug.backend.mirrors.debian.org
171     schmelzer.debian.org:
172       listen-addresses:
173         - '217.196.149.232:80'
174         - '[2a02:16a8:dc41:100::232]:80'
175       onion_v4_address: 217.196.149.232
176       service-hostname: conova.debug.backend.mirrors.debian.org
177   debug_mirror_onion:
178     - mirror-accumu.debian.org
179     - schmelzer.debian.org
180   ports_master:
181     - porta.debian.org
182   onionbalance:
183     - olin.debian.org
184   bgp:
185     - mirror-accumu.debian.org
186     - mirror-skroutz.debian.org
187   apache_prefork:
188     # php needs this
189     - quantz.debian.org
190     - tchaikovsky.debian.org
191     - wuiet.debian.org
192   postgresql_server:
193     # postgresql instances not managed by puppet otherwise
194     - bmdb1.debian.org
195     - buxtehude.debian.org
196     - danzi.debian.org
197     - fasolo.debian.org
198     - lw07.debian.org
199     - melartin.debian.org
200     - sallinen.debian.org
201     - seger.debian.org
202     - snapshotdb-manda-01.debian.org
203     - vittoria.debian.org
204   apache_ratelimited:
205     - beach.debian.org
206     - buxtehude.debian.org
207     - lw07.debian.org
208     - picconi.debian.org
209     - pkgmirror-csail.debian.org
210     - sallinen.debian.org
211   snapshot_web:
212     - lw07.debian.org
213     - sallinen.debian.org
214   snapshot_shell:
215     - lw08.debian.org
216
217 classes:
218   - base::includes
Unnamed repository; edit this file 'description' to name the repository.