projects / mirror / dsa-puppet.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
security_upload -> hiera role
[mirror/dsa-puppet.git] / hieradata / common.yaml
1 ---
2
3 lookup_options:
4   # with merge: unique entries in other hiera sources add to the array
5   resolv::searchpaths:
6     merge: unique
7   apt::sources::debian::location:
8     merge: unique
9
10 resolv::nameservers: []
11 resolv::searchpaths: ['debian.org']
12 allow_dns_query: []
13 role_config__mirrors:
14   mirror_basedir_prefix: '/srv/mirrors/'
15 role_config__syncproxy:
16   mirror_basedir_prefix: '/srv/mirrors/'
17 samhain_recipients:
18   - 'debian-archive-debian-samhain-reports@master.debian.org'
19   - 'debian-admin@ftbfs.de'
20   - 'weasel@debian.org'
21   - 'zumbi@oron.es'
22 root_mail_alias:
23   - 'debian-admin@debian.org'
24 paths:
25   letsencrypt_dir: '/srv/puppet.debian.org/from-letsencrypt'
26   auto_certs_dir: '/srv/puppet.debian.org/ca/RESULT/certs'
27   auto_clientcerts_dir: '/srv/puppet.debian.org/ca/RESULT/clientcerts'
28 apt::sources::debian::location: 'https://deb.debian.org/debian/'
29
30 staticsync::user: 'staticsync'
31 staticsync::basedir: '/srv/static.debian.org'
32
33 # all of these should be retired in favour of including the class role
34 # with the host. weasel, 2019-09
35 roles:
36   bugsmx:
37     - buxtehude.debian.org
38   dns_primary:
39     - denis.debian.org
40   dns_geo:
41     - geo1.debian.org
42     - geo2.debian.org
43     - geo3.debian.org
44   extranrpeclient:
45     - denis.debian.org
46   ftp_master:
47     - fasolo.debian.org
48   git_master:
49     - adayevskaya.debian.org
50   mailrelay:
51     - mailly.debian.org
52     - muffat.debian.org
53   mirrormaster:
54     - melartin.debian.org
55   muninmaster:
56     - menotti.debian.org
57   nagiosmaster:
58     - tchaikovsky.debian.org
59   packagesmaster:
60     - picconi.debian.org
61   packagesqamaster:
62     - quantz.debian.org
63   popcon:
64     - pinel.debian.org
65   qamaster:
66     - quantz.debian.org
67   rtmaster:
68     - reger.debian.org
69   security_master:
70     - seger.debian.org
71   security_mirror:
72     mirror-anu.debian.org:
73       fastly-backend: false
74     mirror-csail.debian.org:
75       fastly-backend: false
76     mirror-isc.debian.org:
77       onion_v4_address: 149.20.4.14
78     mirror-umn.debian.org:
79       onion_v4_address: 128.101.240.215
80     mirror-accumu.debian.org:
81       fastly-backend: false
82     mirror-skroutz.debian.org:
83       fastly-backend: false
84     lobos.debian.org:
85       service-hostname: lobos.security.backend.mirrors.debian.org
86       fastly-backend: false
87       onion_v4_address: 212.211.132.250
88     santoro.debian.org:
89       fastly-backend: false
90     schmelzer.debian.org:
91       fastly-backend: false
92     schumann.debian.org:
93       service-hostname: schumann.security.backend.mirrors.debian.org
94       fastly-backend: true
95     setoguchi.debian.org:
96       fastly-backend: false
97     sechter.debian.org:
98       fastly-backend: false
99     villa.debian.org:
100       service-hostname: villa.security.backend.mirrors.debian.org
101       fastly-backend: true
102       onion_v4_address: 212.211.132.32
103     wieck.debian.org:
104       service-hostname: wieck.security.backend.mirrors.debian.org
105       fastly-backend: true
106   security_tracker:
107     - soriano.debian.org
108   sso:
109     - diabelli.debian.org
110   # single sign on relying party (host) - also required apache2 module enabled on that host via other means
111   sso_rp:
112     - debussy.debian.org
113     - diabelli.debian.org
114     - jerea.debian.org
115     - nono.debian.org
116     - quantz.debian.org
117     - tate.debian.org
118     - ticharich.debian.org
119     - wilder.debian.org
120     - wuiet.debian.org
121   static_mirror_onion:
122     - klecker.debian.org
123     - mirror-isc.debian.org
124     - senfter.debian.org
125   syncproxy:
126     - gretchaninov.debian.org
127     - klecker.debian.org
128     - milanollo.debian.org
129     - mirror-anu.debian.org
130     - mirror-isc.debian.org
131     - mirror-umn.debian.org
132     - schmelzer.debian.org
133     - smit.debian.org
134   udd:
135     - ullmann.debian.org
136   wiki:
137     - wilder.debian.org
138   postgres_backup_server:
139     - backuphost.debian.org
140     - storace.debian.org
141   dabackup_client:
142     - lw03.debian.org
143   debian_mirror:
144     klecker.debian.org:
145       listen-addresses:
146         - '130.89.148.12:80'
147         - '[2001:67c:2564:a119::148:12]:80'
148       onion_v4_address: 130.89.148.12
149     mirror-accumu.debian.org:
150       service-hostname: accumu.debian.backend.mirrors.debian.org
151       fastly-backend: true
152     mirror-skroutz.debian.org:
153       service-hostname: skroutz.debian.backend.mirrors.debian.org
154       fastly-backend: true
155     mirror-isc.debian.org:
156       listen-addresses:
157         - '149.20.4.15:80'
158         - '[2001:4f8:1:c::15]:80'
159       onion_v4_address: 149.20.4.15
160     schmelzer.debian.org:
161       listen-addresses:
162         - '217.196.149.232:80'
163         - '[2a02:16a8:dc41:100::232]:80'
164       fastly-backend: true
165       service-hostname: conova.debian.backend.mirrors.debian.org
166   historical_master:
167     - sibelius.debian.org
168   historical_mirror:
169     - gretchaninov.debian.org
170     - klecker.debian.org
171     - schmelzer.debian.org
172     - sibelius.debian.org
173   debug_mirror:
174     mirror-accumu.debian.org:
175       onion_v4_address: 130.242.6.199
176       service-hostname: accumu.debug.backend.mirrors.debian.org
177     schmelzer.debian.org:
178       listen-addresses:
179         - '217.196.149.232:80'
180         - '[2a02:16a8:dc41:100::232]:80'
181       onion_v4_address: 217.196.149.232
182       service-hostname: conova.debug.backend.mirrors.debian.org
183   debug_mirror_onion:
184     - mirror-accumu.debian.org
185     - schmelzer.debian.org
186   ports_master:
187     - porta.debian.org
188   onionbalance:
189     - olin.debian.org
190   bgp:
191     - mirror-accumu.debian.org
192     - mirror-skroutz.debian.org
193   apache_prefork:
194     # php needs this
195     - quantz.debian.org
196     - tchaikovsky.debian.org
197     - wuiet.debian.org
198   postgresql_server:
199     # postgresql instances not managed by puppet otherwise
200     - bmdb1.debian.org
201     - buxtehude.debian.org
202     - danzi.debian.org
203     - fasolo.debian.org
204     - lw07.debian.org
205     - melartin.debian.org
206     - sallinen.debian.org
207     - seger.debian.org
208     - snapshotdb-manda-01.debian.org
209     - vittoria.debian.org
210   apache_ratelimited:
211     - beach.debian.org
212     - buxtehude.debian.org
213     - lw07.debian.org
214     - picconi.debian.org
215     - pkgmirror-csail.debian.org
216     - sallinen.debian.org
217   snapshot_web:
218     - lw07.debian.org
219     - sallinen.debian.org
220   snapshot_shell:
221     - lw08.debian.org
222
223 classes:
224   - base::includes
Unnamed repository; edit this file 'description' to name the repository.