1 # = Class: roles::dbmaster
3 # Setup for db.debian.org master host
7 # include roles::dbmaster
9 class roles::dbmaster {
11 include roles::pubsub::parameters
13 $rabbit_password = $roles::pubsub::parameters::rabbit_password
15 ssl::service { 'db.debian.org':
16 notify => [ Exec['service apache2 reload'],
19 tlsaport => [443, 389, 636],
22 file { "/etc/ldap/db.debian.org.key":
26 content => inline_template('<%= File.read(scope().call_function("hiera", ["paths.letsencrypt_dir"]) + "/db.debian.org.key") %>'),
30 roles::pubsub::config { 'generate':
31 key => 'dsa-udgenerate',
33 topic => 'dsa.ud.replicate',
36 password => $rabbit_password
44 ssh::authorized_key_add { 'dbmaster::puppetmaster::nagios-build':
45 target_user => 'puppet',
46 command => '/srv/puppet.debian.org/sync/bin/puppet-ssh-wrap draghi.debian.org nagiosconfig',
47 key => $facts['dsa_key'],
48 collect_tag => 'puppetmaster',