1 |
# to not repeat the setting everywhere |
2 |
Exec { path => "/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin:/usr/local/sbin/" } |
3 |
|
4 |
# svn, big important server |
5 |
node valstar { |
6 |
# Location: IELO datacenter (marseille) |
7 |
# |
8 |
# TODO: |
9 |
# - GIT server |
10 |
# - setup youri |
11 |
# - setup maintainers database (with web interface) |
12 |
# - mirroring (Nanar) |
13 |
# |
14 |
include common::default_mageia_server |
15 |
timezone::timezone { "Europe/Paris": } |
16 |
include main_mirror |
17 |
include openldap::master |
18 |
include subversion::client |
19 |
include subversion::server |
20 |
include puppet::master |
21 |
include ssh::auth |
22 |
include ssh::auth::keymaster |
23 |
include buildsystem::mainnode |
24 |
include buildsystem::mgacreatehome |
25 |
include buildsystem::sync20101 |
26 |
include buildsystem::release |
27 |
include buildsystem::maintdb |
28 |
include softwarekey::base |
29 |
|
30 |
include access_classes::committers |
31 |
include restrictshell::allow_git |
32 |
include restrictshell::allow_svn |
33 |
include restrictshell::allow_pkgsubmit |
34 |
include restrictshell::allow_maintdb |
35 |
# disabled the ldap key here instead of disabling for the |
36 |
# whole module ( see r698 ) |
37 |
class { "openssh::ssh_keys_from_ldap": |
38 |
symlink_users => ['schedbot', 'iurt'] |
39 |
} |
40 |
|
41 |
include mirror::mdv2010spring |
42 |
|
43 |
include repositories::subversion |
44 |
include repositories::git |
45 |
|
46 |
include websites::svn |
47 |
|
48 |
subversion::snapshot { "/etc/puppet": |
49 |
source => "svn://svn.mageia.org/svn/adm/puppet/" |
50 |
} |
51 |
} |
52 |
|
53 |
# web apps |
54 |
node alamut { |
55 |
# Location: IELO datacenter (marseille) |
56 |
# |
57 |
# TODO: |
58 |
# - Review board |
59 |
# - nagios |
60 |
# - api |
61 |
# - mail server |
62 |
# - mailing list server |
63 |
# - wiki |
64 |
# - pastebin |
65 |
# - LDAP slave |
66 |
# |
67 |
include common::default_mageia_server_no_smtp |
68 |
include postgresql::server |
69 |
postgresql::tagged { "default": } |
70 |
|
71 |
timezone::timezone { "Europe/Paris": } |
72 |
|
73 |
include catdap |
74 |
include mga-mirrors |
75 |
include epoll |
76 |
include transifex |
77 |
include bugzilla |
78 |
include sympa::server |
79 |
include postfix::primary_smtp |
80 |
|
81 |
# temporary, just the time the vm is running there |
82 |
host { 'friteuse': |
83 |
ip => '192.168.122.131', |
84 |
host_aliases => [ "friteuse.$domain", "forums.$domain" ], |
85 |
ensure => 'present', |
86 |
} |
87 |
|
88 |
# to create all phpbb database on alamut |
89 |
phpbb::databases { $fqdn: } |
90 |
|
91 |
apache::vhost_redirect_ssl { "forums.$domain": } |
92 |
apache::vhost_redirect { "forum.$domain": |
93 |
url => "https://forums.$domain/", |
94 |
} |
95 |
apache::vhost_redirect { "ssl_forum.$domain": |
96 |
url => "https://forums.$domain/", |
97 |
vhost => "forum.$domain", |
98 |
use_ssl => true, |
99 |
} |
100 |
|
101 |
# connect to ssl so the proxy do not shoke if trying to |
102 |
# enforce ssl ( note that this has not been tested, maybe this |
103 |
# is uneeded ) |
104 |
apache::vhost_reverse_proxy { "ssl_forums.$domain": |
105 |
url => "https://forums.$domain/", |
106 |
vhost => "forums.$domain", |
107 |
use_ssl => true, |
108 |
} |
109 |
|
110 |
include tld_redirections |
111 |
|
112 |
include libvirtd::kvm |
113 |
include lists |
114 |
include dns::server |
115 |
include repositories::svn_mirror |
116 |
include viewvc |
117 |
|
118 |
# disabled until fixed |
119 |
#include repositories::git_mirror |
120 |
include gitweb |
121 |
|
122 |
include xymon::server |
123 |
apache::vhost_simple { "xymon.$domain": |
124 |
location => "/var/lib/xymon/www", |
125 |
} |
126 |
include youri-check::report |
127 |
} |
128 |
|
129 |
# buildnode |
130 |
node jonund { |
131 |
# Location: IELO datacenter (marseille) |
132 |
# |
133 |
include common::default_mageia_server |
134 |
include buildsystem::buildnode |
135 |
include buildsystem::iurt20101 |
136 |
timezone::timezone { "Europe/Paris": } |
137 |
include shorewall |
138 |
include shorewall::default_firewall |
139 |
include testvm |
140 |
} |
141 |
|
142 |
node ecosse { |
143 |
# Location: IELO datacenter (marseille) |
144 |
# |
145 |
include common::default_mageia_server |
146 |
include buildsystem::buildnode |
147 |
timezone::timezone { "Europe/Paris": } |
148 |
} |
149 |
|
150 |
# backup server |
151 |
node fiona { |
152 |
# Location: IELO datacenter (marseille) |
153 |
# |
154 |
# TODO: |
155 |
# - buy the server |
156 |
# - install the server in datacenter |
157 |
# - install a backup system |
158 |
include common::default_mageia_server |
159 |
} |
160 |
|
161 |
# gandi-vm |
162 |
node krampouezh { |
163 |
# Location: gandi VM |
164 |
# |
165 |
# TODO: |
166 |
# - secondary MX |
167 |
# - LDAP slave (for external traffic maybe) |
168 |
# |
169 |
#include common::default_mageia_server |
170 |
include common::default_mageia_server_no_smtp |
171 |
include postfix::secondary_smtp |
172 |
include blog::base |
173 |
include blog::db_backup |
174 |
include mysql::server |
175 |
include dns::server |
176 |
timezone::timezone { "Europe/Paris": } |
177 |
|
178 |
openldap::slave_instance { "1": |
179 |
rid => 1, |
180 |
} |
181 |
|
182 |
# Other services running on this server : |
183 |
# - meetbot |
184 |
} |
185 |
|
186 |
node champagne { |
187 |
# Location: gandi VM |
188 |
# |
189 |
# TODO: |
190 |
# - setup mageia.org web site |
191 |
# - setup blog |
192 |
# - setup planet |
193 |
# |
194 |
include common::default_mageia_server |
195 |
timezone::timezone { "Europe/Paris": } |
196 |
include blog::files-bots |
197 |
include blog::files_backup |
198 |
include planet |
199 |
include websites::static |
200 |
include websites::hugs |
201 |
include websites::releases |
202 |
include dashboard::base |
203 |
include access_classes::web |
204 |
include openssh::ssh_keys_from_ldap |
205 |
} |
206 |
|
207 |
node friteuse { |
208 |
# Location: VM hosted by nfrance (toulouse) |
209 |
# |
210 |
# TODO: |
211 |
# - setup forum |
212 |
|
213 |
include common::default_mageia_server |
214 |
timezone::timezone { "Europe/Paris": } |
215 |
include forums |
216 |
} |
217 |
|
218 |
node rabbit { |
219 |
# Location: Server offered by Dedibox (paris) |
220 |
# |
221 |
# - used to create isos ( and live, and so on ) |
222 |
# |
223 |
include common::default_mageia_server |
224 |
timezone::timezone { "Europe/Paris": } |
225 |
include bcd::base |
226 |
include bcd::web |
227 |
include bcd::rsync |
228 |
include draklive::base |
229 |
include access_classes::iso_makers |
230 |
include openssh::ssh_keys_from_ldap |
231 |
include mirror::mageia |
232 |
include mirror::newrelease |
233 |
include releasekey::base |
234 |
include youri-check::check |
235 |
|
236 |
# for testing iso quickly |
237 |
include libvirtd::kvm |
238 |
libvirtd::group_access { "mga-iso_makers": } |
239 |
|
240 |
# to ease the creation of test iso |
241 |
$netinst_iso_path = "/var/lib/libvirt/netboot" |
242 |
|
243 |
file { $netinst_iso_path: |
244 |
ensure => directory, |
245 |
} |
246 |
|
247 |
libvirtd::storage { "netinst_iso": |
248 |
path => $netinst_iso_path, |
249 |
require => File[$netinst_iso_path], |
250 |
} |
251 |
|
252 |
include auto_installation::download |
253 |
auto_installation::download::netboot_images { "mandriva": |
254 |
path => $netinst_iso_path, |
255 |
versions => ["2010.0","2010.1"], |
256 |
archs => ['i586','x86_64'], |
257 |
mirror_path => "ftp://ftp.free.fr/pub/Distributions_Linux/MandrivaLinux/official/%{version}/%{arch}/install/images/", |
258 |
files => ['boot.iso'], |
259 |
require => File[$netinst_iso_path], |
260 |
} |
261 |
|
262 |
# for testing pxe support of libvirt |
263 |
libvirtd::network {"pxe_network": |
264 |
network => "192.168.123.0/24", |
265 |
tftp_root => $auto_installation::variables::pxe_dir, |
266 |
bridge_name => "virbr1", |
267 |
} |
268 |
|
269 |
include auto_installation::pxe_menu |
270 |
auto_installation::mandriva_installation_entry { "pxe_test": |
271 |
version => "2010.1", |
272 |
arch => "i586", |
273 |
} |
274 |
} |