Host_Alias FTPHOSTS = fasolo
Host_Alias ZIVITHOSTS = zelenka, zandonai
Host_Alias AACRAIDHOSTS = pettersson
-Host_Alias MEGARAIDHOSTS = rautavaara, sibelius
+Host_Alias MEGARAIDHOSTS = sibelius
Host_Alias LISTHOSTS = bendel
Host_Alias BUILDD_MASTER = wuiet
Host_Alias PORTERBOXES = abel, asachi, barriere, eller, falla, fischer, harris, minkus, partch, plummer, pizzetti, zelenka
-Host_Alias PIUPARTS_SLAVE_HOSTS = piu-slave-bm-a
+Host_Alias PIUPARTS_SLAVE_HOSTS = piu-slave-bm-a, piu-slave-ubc-01
Host_Alias MQ_HOSTS = rainier, rapoport
-Host_Alias NOVAHOSTS = oyens
Host_Alias JENKINSHOSTS = jerea
# Cmnd alias specification
# DSA and local admins
%adm ALL=(ALL) ALL
+
%adm ALL=(ALL) NOPASSWD: /usr/bin/apt-get update, /usr/bin/apt-get upgrade, /usr/bin/apt-get dist-upgrade, /usr/bin/apt-get clean, /usr/sbin/samhain -t check -i -p err -s none -l none -m none, /usr/sbin/upgrade-porter-chroots
%zivit-admins ZIVITHOSTS=(ALL) NOPASSWD: ALL
nagios ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-filesystems ""
nagios ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-libs ""
nagios ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-stunnel-sanity ""
-nagios ALL=(ALL) NOPASSWD: /usr/local/sbin/dsa-check-libs ""
nagios handel=(puppet) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-cert-expire /var/lib/puppet/ssl/certs/ca.pem
# with smartarray controllers
nagios ALL=(ALL) NOPASSWD: /sbin/hpasmcli ""
%debian-r ALL=(debian-r) ALL
%debian-r ALL=(debian-r-wb-buildd) ALL
%debian-release ALL=(release) ALL
+%debsources ALL=(debsources) ALL
%debtags ALL=(debtags) ALL
%debwww ALL=(debwww) ALL
%dedup ALL=(dedup) ALL
%list master=(debian) ALL
%manpages ALL=(manpages) ALL
%mirroradm ALL=(archvsync) ALL
+%mirroradm melartin=(mirroradm) ALL
%nm ALL=(nm) ALL
%patch-tracker ALL=(patch-tracker) ALL
%pet-devel ALL=(pet-devel) ALL
dak FTPHOSTS=(staticsync) NOPASSWD: /usr/local/bin/static-update-component metadata.ftp-master.debian.org
%publicity dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component bits.debian.org
%publicity dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component micronews.debian.org
+%mirroradm melartin=(staticsync) NOPASSWD: /usr/local/bin/static-update-component mirror-master.debian.org
%debdelta donizetti=(staticsync) NOPASSWD: /usr/local/bin/static-update-component debdeltas.debian.net
%webwml master=(staticsync) NOPASSWD: /usr/local/bin/static-update-component network-test.debian.org
planet philp=(staticsync) NOPASSWD: /usr/local/bin/static-update-component planet.debian.org
%debconfstatic dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component miniconf10.debconf.org
mini-dak porta=(staticsync) NOPASSWD: /usr/local/bin/static-update-component incoming.ports.debian.org
%wbadm wuiet=(staticsync) NOPASSWD: /usr/local/bin/static-update-component apt.buildd.debian.org
+%manpages manziarly=(staticsync) NOPASSWD: /usr/local/bin/static-update-component manpages.debian.org
+%dpl dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component dpl.debian.org
# The piuparts slave needs to handle chroots
piupartss PIUPARTS_SLAVE_HOSTS=(ALL) NOPASSWD: ALL
%wbadm BUILDD_MASTER=(root) /usr/local/bin/update-buildd-sshkeys
# mirror push
dak FTPHOSTS,SECHOSTS=(archvsync) NOPASSWD:/home/archvsync/runmirrors
-dak FTHOSTS=(backports) NOPASSWD: /home/backports/bin/update-archive
# archvsync triggers snapshot
archvsync sibelius=(snapshot) NOPASSWD: /srv/snapshot.debian.org/bin/update-trigger
archvsync sibelius=(snapshot) NOPASSWD: /srv/2ndsnapshot/bin/update-trigger
%Debian,%guest,%d-i PORTERBOXES=(root) NOPASSWD: /usr/local/bin/dd-schroot-cmd
-# Openstack stuff
-Defaults:neutron !requiretty
-nova NOVAHOSTS=(root) NOPASSWD: /usr/bin/nova-rootwrap *
-neutron NOVAHOSTS=(root) NOPASSWD: /usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf *
-cinder NOVAHOSTS=(root) NOPASSWD: /usr/bin/cinder-rootwrap /etc/cinder/rootwrap.conf *
-%openstack NOVAHOSTS=(keystone) ALL
-%openstack NOVAHOSTS=(memcache) ALL
-%openstack NOVAHOSTS=(ceilometer) ALL
-%openstack NOVAHOSTS=(cinder) ALL
-%openstack NOVAHOSTS=(glance) ALL
-%openstack NOVAHOSTS=(heat) ALL
-%openstack NOVAHOSTS=(neutron) ALL
-%openstack NOVAHOSTS=(nova) ALL
-
# ports stuff
mini-dak porta=(archvsync) NOPASSWD: /home/archvsync/signal_ports
mini-dak porta=(archvsync) NOPASSWD: /home/archvsync/signal_ports-cd
projects / mirror / dsa-puppet.git / blobdiff