projects / mirror / dsa-puppet.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Use https on deb.debian.org
[mirror/dsa-puppet.git] / hieradata / common.yaml
1 ---
2
3 lookup_options:
4   # with merge: unique entries in other hiera sources add to the array
5   resolv_conf::searchpaths:
6     merge: unique
7   apt::sources::debian::location:
8     merge: unique
9
10 nameservers: []
11 resolv_conf::searchpaths: ['debian.org']
12 resolv_conf::resolvoptions: []
13 allow_dns_query: []
14 role_config__mirrors:
15   mirror_basedir_prefix: '/srv/mirrors/'
16 role_config__syncproxy:
17   mirror_basedir_prefix: '/srv/mirrors/'
18 samhain_recipients:
19   - 'debian-archive-debian-samhain-reports@master.debian.org'
20   - 'debian-admin@ftbfs.de'
21   - 'weasel@debian.org'
22   - 'zumbi@oron.es'
23 root_mail_alias:
24   - 'debian-admin@debian.org'
25 paths:
26   letsencrypt_dir: '/srv/puppet.debian.org/from-letsencrypt'
27   auto_certs_dir: '/srv/puppet.debian.org/ca/RESULT/certs'
28   auto_clientcerts_dir: '/srv/puppet.debian.org/ca/RESULT/clientcerts'
29 apt::sources::debian::location: 'https://deb.debian.org/debian/'
30
31 # all of these should be retired in favour of including the class role
32 # with the host. weasel, 2019-09
33 roles:
34   bugsmx:
35     - buxtehude.debian.org
36   bugs_master:
37     - buxtehude.debian.org
38   bugs_mirror:
39     - beach.debian.org
40   bugs_base:
41     - buxtehude.debian.org
42     - beach.debian.org
43   contributors:
44     - nono.debian.org
45   dbmaster:
46     - draghi.debian.org
47   debtags:
48     - tate.debian.org
49   dns_primary:
50     - denis.debian.org
51   dns_geo:
52     - geo1.debian.org
53     - geo2.debian.org
54     - geo3.debian.org
55   extranrpeclient:
56     - denis.debian.org
57   ftp_master:
58     - fasolo.debian.org
59   ftp.upload.d.o:
60     - coccia.debian.org
61     - usper.debian.org
62   api.ftp-master:
63     - coccia.debian.org
64   dgit_browse:
65     - cgi-grnet-01.debian.org
66   dgit_git:
67     - cgi-grnet-01.debian.org
68   git_master:
69     - adayevskaya.debian.org
70   historicalpackages:
71     - hier.debian.org
72   keyring:
73     - kaufmann.debian.org
74   lists:
75     - bendel.debian.org
76   mailrelay:
77     - mailly.debian.org
78     - muffat.debian.org
79   manpages-dyn:
80     - manziarly.debian.org
81     - cgi-grnet-01.debian.org
82   mirrormaster:
83     - melartin.debian.org
84   muninmaster:
85     - menotti.debian.org
86   nagiosmaster:
87     - tchaikovsky.debian.org
88   nm:
89     - nono.debian.org
90   packages:
91     - picconi.debian.org
92     - pkgmirror-csail.debian.org
93   packagesmaster:
94     - picconi.debian.org
95   packagesqamaster:
96     - quantz.debian.org
97   people:
98     - paradis.debian.org
99   piuparts:
100     - pejacevic.debian.org
101   piuparts_slave:
102     - piu-slave-bm-a.debian.org
103     - piu-slave-ubc-01.debian.org
104   popcon:
105     - pinel.debian.org
106   pubsub:
107     - rainier.debian.org
108     - rapoport.debian.org
109   qamaster:
110     - quantz.debian.org
111   rtmaster:
112     - reger.debian.org
113   rtc:
114     - vogler.debian.org
115   search_backend:
116     - wolkenstein.debian.org
117   search_frontend:
118     - cgi-grnet-01.debian.org
119   archvsync_base_additional:
120   # this is usually pulled in by *-mirror or syncproxy roles
121     - dummy
122   security_master:
123     - seger.debian.org
124   security_mirror:
125     mirror-anu.debian.org:
126       fastly-backend: false
127     mirror-csail.debian.org:
128       fastly-backend: false
129     mirror-isc.debian.org:
130       onion_v4_address: 149.20.4.14
131     mirror-umn.debian.org:
132       onion_v4_address: 128.101.240.215
133     mirror-accumu.debian.org:
134       fastly-backend: false
135     mirror-skroutz.debian.org:
136       fastly-backend: false
137     lobos.debian.org:
138       service-hostname: lobos.security.backend.mirrors.debian.org
139       fastly-backend: false
140       onion_v4_address: 212.211.132.250
141     santoro.debian.org:
142       fastly-backend: false
143     schmelzer.debian.org:
144       fastly-backend: false
145     schumann.debian.org:
146       service-hostname: schumann.security.backend.mirrors.debian.org
147       fastly-backend: true
148     setoguchi.debian.org:
149       fastly-backend: false
150     sechter.debian.org:
151       fastly-backend: false
152     villa.debian.org:
153       service-hostname: villa.security.backend.mirrors.debian.org
154       fastly-backend: true
155       onion_v4_address: 212.211.132.32
156     wieck.debian.org:
157       service-hostname: wieck.security.backend.mirrors.debian.org
158       fastly-backend: true
159   security_tracker:
160     - soriano.debian.org
161   security_upload:
162     - suchon.debian.org
163   ssh.upload.d.o:
164     - coccia.debian.org
165     - suchon.debian.org
166     - usper.debian.org
167   sso:
168     - diabelli.debian.org
169   # single sign on relying party (host) - also required apache2 module enabled on that host via other means
170   sso_rp:
171     - debussy.debian.org
172     - diabelli.debian.org
173     - jerea.debian.org
174     - nono.debian.org
175     - quantz.debian.org
176     - tate.debian.org
177     - ticharich.debian.org
178     - wilder.debian.org
179     - wuiet.debian.org
180   static_master:
181     - dillon.debian.org
182     - fasolo.debian.org
183     - porta.debian.org
184     - static-master-grnet-01.debian.org
185   static_mirror:
186     - klecker.debian.org
187     - mirror-anu.debian.org
188     - mirror-csail.debian.org
189     - mirror-isc.debian.org
190     - senfter.debian.org
191     - santoro.debian.org
192   static_mirror_onion:
193     - klecker.debian.org
194     - mirror-isc.debian.org
195     - senfter.debian.org
196   # when adding a new static mirror, allow it to sync etc, but do not push to it and wait for it.  For this, also add it to static_mirror_nopush.
197   static_mirror_nopush:
198     - dummy
199   static_source:
200     - boott.debian.org
201     - casulana.debian.org
202     - coccia.debian.org
203     - dillon.debian.org
204     - donizetti.debian.org
205     - fasolo.debian.org
206     - kaufmann.debian.org
207     - lindsay.debian.org
208     - manziarly.debian.org
209     - mekeel.debian.org
210     - melartin.debian.org
211     - porta.debian.org
212     - philp.debian.org
213     - respighi.debian.org
214     - wolkenstein.debian.org
215     - wuiet.debian.org
216   syncproxy:
217     - gretchaninov.debian.org
218     - klecker.debian.org
219     - milanollo.debian.org
220     - mirror-anu.debian.org
221     - mirror-isc.debian.org
222     - mirror-umn.debian.org
223     - schmelzer.debian.org
224     - smit.debian.org
225   tracker:
226     - ticharich.debian.org
227   udd:
228     - ullmann.debian.org
229   vote:
230     - vento.debian.org
231   weblog_destination:
232     - wolkenstein.debian.org
233   weblog_provider:
234     - klecker.debian.org
235     - mirror-anu.debian.org
236     - mirror-csail.debian.org
237     - mirror-isc.debian.org
238     - mirror-umn.debian.org
239     - santoro.debian.org
240     - senfter.debian.org
241   wiki:
242     - wilder.debian.org
243   www_master:
244     - wolkenstein.debian.org
245   cgi.d.o:
246     - wolkenstein.debian.org
247   postgres_backup_server:
248     - backuphost.debian.org
249     - storace.debian.org
250   bacula_director:
251     - dinis.debian.org
252   bacula_storage:
253     - storace.debian.org
254   dabackup_client:
255     - lw03.debian.org
256   gobby_debian_org:
257     - gombert.debian.org
258   veyepar.debian.org:
259     - vittoria.debian.org
260   sreview.debian.org:
261     - vittoria.debian.org
262   debian_mirror:
263     klecker.debian.org:
264       listen-addresses:
265         - '130.89.148.12:80'
266         - '[2001:67c:2564:a119::148:12]:80'
267       onion_v4_address: 130.89.148.12
268     mirror-accumu.debian.org:
269       service-hostname: accumu.debian.backend.mirrors.debian.org
270       fastly-backend: true
271     mirror-skroutz.debian.org:
272       service-hostname: skroutz.debian.backend.mirrors.debian.org
273       fastly-backend: true
274     mirror-isc.debian.org:
275       listen-addresses:
276         - '149.20.4.15:80'
277         - '[2001:4f8:1:c::15]:80'
278       onion_v4_address: 149.20.4.15
279     schmelzer.debian.org:
280       listen-addresses:
281         - '217.196.149.232:80'
282         - '[2a02:16a8:dc41:100::232]:80'
283       fastly-backend: true
284       service-hostname: conova.debian.backend.mirrors.debian.org
285   historical_master:
286     - sibelius.debian.org
287   historical_mirror:
288     - gretchaninov.debian.org
289     - klecker.debian.org
290     - schmelzer.debian.org
291     - sibelius.debian.org
292   debug_mirror:
293     mirror-accumu.debian.org:
294       onion_v4_address: 130.242.6.199
295       service-hostname: accumu.debug.backend.mirrors.debian.org
296     schmelzer.debian.org:
297       listen-addresses:
298         - '217.196.149.232:80'
299         - '[2a02:16a8:dc41:100::232]:80'
300       onion_v4_address: 217.196.149.232
301       service-hostname: conova.debug.backend.mirrors.debian.org
302   debug_mirror_onion:
303     - mirror-accumu.debian.org
304     - schmelzer.debian.org
305   ports_mirror:
306     - klecker.debian.org
307     - mirror-isc.debian.org
308   ports_mirror_onion:
309     - klecker.debian.org
310     - mirror-isc.debian.org
311   planet_master:
312     - philp.debian.org
313   planet_search:
314     - philp.debian.org
315   i18n.d.o:
316     - tye.debian.org
317   l10n.d.o:
318     - tye.debian.org
319   dedup.d.n:
320     - delfin.debian.org
321   pet.d.n:
322     - petrova.debian.org
323   ports_master:
324     - porta.debian.org
325   onionbalance:
326     - olin.debian.org
327   bgp:
328     - mirror-accumu.debian.org
329     - mirror-skroutz.debian.org
330   cdimage-search:
331     - cgi-grnet-01.debian.org
332   apache_prefork:
333     # php needs this
334     - quantz.debian.org
335     - tchaikovsky.debian.org
336     - wuiet.debian.org
337   postgresql_server:
338     # postgresql instances not managed by puppet otherwise
339     - bmdb1.debian.org
340     - buxtehude.debian.org
341     - danzi.debian.org
342     - fasolo.debian.org
343     - lw07.debian.org
344     - melartin.debian.org
345     - sallinen.debian.org
346     - seger.debian.org
347     - snapshotdb-manda-01.debian.org
348     - vittoria.debian.org
349   salsa.debian.org:
350     - godard.debian.org
351   insecure_ssl:
352     - debussy.debian.org
353     - godard.debian.org
354   debsources:
355     - sor.debian.org
356   ipsec:
357     - fasolo.debian.org
358     - storace.debian.org
359   debconf_wafer:
360     - debussy.debian.org
361   apache_not_public:
362     # Hosts that run apache but where it should not be open to the internet by
363     # default
364     - casulana.debian.org
365   apache_ratelimited:
366     - beach.debian.org
367     - buxtehude.debian.org
368     - lw07.debian.org
369     - picconi.debian.org
370     - pkgmirror-csail.debian.org
371     - sallinen.debian.org
372   cdbuilder_local_mirror:
373     - casulana.debian.org
374   alioth_archive:
375     - grabbe.debian.org
376   snapshot_web:
377     - lw07.debian.org
378     - sallinen.debian.org
379   snapshot_shell:
380     - lw08.debian.org
381   anonscm:
382     - cgi-grnet-01.debian.org
383
384 classes:
385   - base::includes
Unnamed repository; edit this file 'description' to name the repository.