apt::sources::debian::location:
merge: unique
-# class parameters
+# == class parameters
+#####################
resolv::nameservers: []
resolv::searchpaths: ['debian.org']
staticsync::user: 'staticsync'
staticsync::basedir: '/srv/static.debian.org'
exim::smarthost: 'mailout.debian.org'
postfix::smarthost: 'mailout.debian.org'
-
roles::dns_primary::allow_access:
# easydns
- '64.68.200.91'
- '194.146.105.25'
- '2a01:3f0:0:27::24'
- '2a01:3f0:0:28::25'
+postgres::backup_cluster::db_backup_role: 'debian-backup'
+postgres::backup_server::globals::backup_unix_user: 'debbackup'
+# bacula
+#
+bacula::email_all: 'bacula-reports@admin.debian.org'
+bacula::ssl_ca_path: '/etc/ssl/debian/certs/ca.crt'
+bacula::ssl_client_cert: '/etc/ssl/debian/certs/thishost.crt'
+bacula::ssl_client_key: '/etc/ssl/private/thishost.key'
+bacula::ssl_server_cert: '/etc/ssl/debian/certs/thishost-server.crt'
+bacula::ssl_server_key: '/etc/ssl/private/thishost-server.key'
+bacula::director::db_address: 'postgresql-manda-01.debian.org'
+bacula::director::db_port: 5432
+bacula::director::db_sslca: '/etc/ssl/debian/certs/ca.crt'
+bacula::director::pool_name: 'debian'
+
+bacula::client::director_server: dinis.debian.org
+bacula::client::storage_server: storace.debian.org
+
+
+roles::buildd_master::params::db_address: danzi.debian.org
+roles::buildd_master::params::db_port: 5436
+roles::buildd_master::qa_buildlogchecks_db_address: bmdb1.debian.org
+roles::buildd_master::qa_buildlogchecks_db_port: 5435
+
+roles::debconf_wafer::db_address: danzi.debian.org
+roles::debconf_wafer::db_port: 5434
+
+roles::debsources::db_address: bmdb1.debian.org
+roles::debsources::db_port: 5440
+
+roles::debtags::db_address: bmdb1.debian.org
+roles::debtags::db_port: 5435
+
+roles::ftp_master::db_port: 5433
+
+roles::nm::db_address: danzi.debian.org
+roles::nm::db_port: 5433
+
+roles::pet::params::db_address: bmdb1.debian.org
+roles::pet::params::db_port: 5435
+
+roles::postgresql::ftp_master_dak_replica::db_guest_access::bm::db_address: bmdb1.debian.org
+roles::postgresql::ftp_master_dak_replica::db_guest_access::bm::db_port: 5434
-# other variables
+roles::qamaster::db_address: bmdb1.debian.org
+roles::qamaster::db_port: 5435
+
+roles::release::db_address: bmdb1.debian.org
+roles::release::db_port: 5435
+
+roles::rtmaster::db_address: danzi.debian.org
+roles::rtmaster::db_port: 5433
+
+roles::sso::db_address: danzi.debian.org
+roles::sso::db_port: 5433
+
+roles::tracker::db_address: danzi.debian.org
+roles::tracker::db_port: 5432
+
+roles::udd::params::db_address: ullmann.debian.org
+roles::udd::params::db_port: 5452
+
+roles::postgresql::ftp_master_dak_replica::db_server: fasolo.debian.org
+roles::postgresql::ftp_master_dak_replica::db_port: 5433
+roles::postgresql::ftp_master_dak_replica::db_role: repuser
+
+
+# == other variables
+#####################
allow_dns_query: []
role_config__mirrors:
mirror_basedir_prefix: '/srv/mirrors/'
auto_clientcerts_dir: '/srv/puppet.debian.org/ca/RESULT/clientcerts'
apt::sources::debian::location: 'https://deb.debian.org/debian/'
-
-# all of these should be retired in favour of including the class role
-# with the host. weasel, 2019-09
-roles:
- muninmaster:
- # XXX - used by ferm templates/defs.conf.erb
- - menotti.debian.org
- nagiosmaster:
- # XXX - used by ferm templates/defs.conf.erb
- - tchaikovsky.debian.org
- security_mirror:
- # XXX used also in ferm me.conf.erb
- mirror-anu.debian.org:
- fastly-backend: false
- mirror-csail.debian.org:
- fastly-backend: false
- mirror-isc.debian.org:
- onion_v4_address: 149.20.4.14
- mirror-umn.debian.org:
- onion_v4_address: 128.101.240.215
- mirror-accumu.debian.org:
- fastly-backend: false
- mirror-skroutz.debian.org:
- fastly-backend: false
- lobos.debian.org:
- service-hostname: lobos.security.backend.mirrors.debian.org
- fastly-backend: false
- onion_v4_address: 212.211.132.250
- santoro.debian.org:
- fastly-backend: false
- schmelzer.debian.org:
- fastly-backend: false
- schumann.debian.org:
- service-hostname: schumann.security.backend.mirrors.debian.org
- fastly-backend: true
- setoguchi.debian.org:
- fastly-backend: false
- sechter.debian.org:
- fastly-backend: false
- villa.debian.org:
- service-hostname: villa.security.backend.mirrors.debian.org
- fastly-backend: true
- onion_v4_address: 212.211.132.32
- wieck.debian.org:
- service-hostname: wieck.security.backend.mirrors.debian.org
- fastly-backend: true
- postgres_backup_server:
- # XXX - used by ferm templates/defs.conf.erb
- - backuphost.debian.org
- - storace.debian.org
- debian_mirror:
- # XXX used also in ferm me.conf.erb
- new-klecker.debian.org:
- listen-addresses:
- - '130.89.148.12:80'
- - '[2001:67c:2564:a119::148:12]:80'
- onion_v4_address: 130.89.148.12
- mirror-accumu.debian.org:
- service-hostname: accumu.debian.backend.mirrors.debian.org
- fastly-backend: true
- mirror-skroutz.debian.org:
- service-hostname: skroutz.debian.backend.mirrors.debian.org
- fastly-backend: true
- mirror-isc.debian.org:
- listen-addresses:
- - '149.20.4.15:80'
- - '[2001:4f8:1:c::15]:80'
- onion_v4_address: 149.20.4.15
- schmelzer.debian.org:
- listen-addresses:
- - '217.196.149.232:80'
- - '[2a02:16a8:dc41:100::232]:80'
- fastly-backend: true
- service-hostname: conova.debian.backend.mirrors.debian.org
- debug_mirror:
- # XXX still used by the mirror health stuff
- mirror-accumu.debian.org:
- service-hostname: accumu.debug.backend.mirrors.debian.org
- schmelzer.debian.org:
- service-hostname: conova.debug.backend.mirrors.debian.org
- debug_mirror_onion:
- - mirror-accumu.debian.org
- - schmelzer.debian.org
- bgp:
- - mirror-accumu.debian.org
- - mirror-skroutz.debian.org
- postgresql_server:
- # postgresql instances not managed by puppet otherwise
- - bmdb1.debian.org
- - buxtehude.debian.org
- - danzi.debian.org
- - fasolo.debian.org
- - lw07.debian.org
- - melartin.debian.org
- - postgresql-manda-01.debian.org
- - sallinen.debian.org
- - seger.debian.org
- - snapshotdb-manda-01.debian.org
- - vittoria.debian.org
-
classes:
- base::includes
projects / mirror / dsa-puppet.git / blobdiff