2 class salsa inherits salsa::params {
4 # anchor things in correct order
5 anchor { 'salsa::begin': } ->
6 class { '::salsa::mail': } ->
7 class { '::salsa::redis': } ->
8 class { '::salsa::packages': } ->
9 class { '::salsa::database': } ->
10 class { '::salsa::web': } ->
11 anchor { 'salsa::end': }
13 # userdir-ldap users get their home in /home
14 file { "/home/${salsa::user}":
16 target => $salsa::home,
21 owner => $salsa::user,
22 group => $salsa::group,
25 file { "${salsa::home}/.credentials.yaml":
27 owner => $salsa::user,
28 group => $salsa::group,
31 # This file is maintained by puppet.
32 # base secret that gitlab encrypts the DB with
33 secret: "${salsa::secret}"
35 name: "${salsa::db_name}"
36 role: "${salsa::db_role}"
37 password: "${salsa::db_password}"
39 username: "${salsa::mail_username}"
40 password: "${salsa::mail_password}"
43 file { "${salsa::home}/.credentials-manual.yaml":
45 owner => $salsa::user,
46 group => $salsa::group,
49 # This file was put in place by puppet, but it won't overwrite it.
50 # Please fill in from dsa-passwords/services-salsa
51 # mastersecret: "swordfish"
55 file { "/var/lib/systemd/linger/git":
58 file { "/etc/ssh/userkeys/git":
60 target => "${salsa::home}/.ssh/authorized_keys",