1 |
# that's not for a real node called default, but |
2 |
# config applied to every node |
3 |
node default { |
4 |
include common::default_mageia_server |
5 |
} |
6 |
|
7 |
# svn, big important server |
8 |
node valstar { |
9 |
# Location: IELO datacenter (marseille) |
10 |
# |
11 |
# TODO: |
12 |
# - GIT server |
13 |
# - setup maintainers database (with web interface) |
14 |
# |
15 |
include common::default_mageia_server |
16 |
timezone::timezone { "Europe/Paris": } |
17 |
include main_mirror |
18 |
include openldap::master |
19 |
include subversion::client |
20 |
include subversion::server |
21 |
include puppet::master |
22 |
include reports::ii |
23 |
|
24 |
include ssh::auth |
25 |
include ssh::auth::keymaster |
26 |
include buildsystem::mainnode |
27 |
include buildsystem::mgacreatehome |
28 |
include buildsystem::sync20101 |
29 |
include buildsystem::release |
30 |
include buildsystem::maintdb |
31 |
include buildsystem::binrepo |
32 |
include softwarekey::base |
33 |
|
34 |
include access_classes::committers |
35 |
include restrictshell::allow_git |
36 |
include restrictshell::allow_svn |
37 |
include restrictshell::allow_pkgsubmit |
38 |
include restrictshell::allow_maintdb |
39 |
include restrictshell::allow_upload_bin |
40 |
# disabled the ldap key here instead of disabling for the |
41 |
# whole module ( see r698 ) |
42 |
class { "openssh::ssh_keys_from_ldap": |
43 |
symlink_users => ['schedbot', 'iurt'] |
44 |
} |
45 |
|
46 |
include mirror::mdv2010spring |
47 |
|
48 |
include repositories::subversion |
49 |
include repositories::git |
50 |
include repositories::sparkleshare |
51 |
|
52 |
include websites::svn |
53 |
|
54 |
subversion::snapshot { "/etc/puppet": |
55 |
source => "svn://svn.mageia.org/svn/adm/puppet/" |
56 |
} |
57 |
|
58 |
mirror_cleaner::orphans { "cauldron": |
59 |
base => "/distrib/bootstrap/distrib/", |
60 |
} |
61 |
|
62 |
} |
63 |
|
64 |
# web apps |
65 |
node alamut { |
66 |
# Location: IELO datacenter (marseille) |
67 |
# |
68 |
# TODO: |
69 |
# - Review board |
70 |
# - api |
71 |
# - wiki |
72 |
# - pastebin |
73 |
# - LDAP slave |
74 |
# |
75 |
include common::default_mageia_server_no_smtp |
76 |
include postgresql::server |
77 |
postgresql::tagged { "default": } |
78 |
|
79 |
timezone::timezone { "Europe/Paris": } |
80 |
|
81 |
include catdap |
82 |
include mga-mirrors |
83 |
include epoll |
84 |
include transifex |
85 |
include bugzilla |
86 |
include sympa::server |
87 |
include postfix::primary_smtp |
88 |
|
89 |
# temporary, just the time the vm is running there |
90 |
host { 'friteuse': |
91 |
ip => '192.168.122.131', |
92 |
host_aliases => [ "friteuse.$domain", "forums.$domain" ], |
93 |
ensure => 'present', |
94 |
} |
95 |
|
96 |
# to create all phpbb database on alamut |
97 |
phpbb::databases { $fqdn: } |
98 |
|
99 |
apache::vhost_redirect_ssl { "forums.$domain": } |
100 |
apache::vhost_redirect { "forum.$domain": |
101 |
url => "https://forums.$domain/", |
102 |
} |
103 |
apache::vhost_redirect { "ssl_forum.$domain": |
104 |
url => "https://forums.$domain/", |
105 |
vhost => "forum.$domain", |
106 |
use_ssl => true, |
107 |
} |
108 |
|
109 |
# connect to ssl so the proxy do not shoke if trying to |
110 |
# enforce ssl ( note that this has not been tested, maybe this |
111 |
# is uneeded ) |
112 |
apache::vhost_reverse_proxy { "ssl_forums.$domain": |
113 |
url => "https://forums.$domain/", |
114 |
vhost => "forums.$domain", |
115 |
use_ssl => true, |
116 |
} |
117 |
|
118 |
include tld_redirections |
119 |
|
120 |
include libvirtd::kvm |
121 |
include lists |
122 |
include dns::server |
123 |
include repositories::svn_mirror |
124 |
include viewvc |
125 |
|
126 |
# disabled until fixed |
127 |
#include repositories::git_mirror |
128 |
include gitweb |
129 |
|
130 |
include xymon::server |
131 |
apache::vhost_simple { "xymon.$domain": |
132 |
location => "/var/lib/xymon/www", |
133 |
} |
134 |
include youri-check::report |
135 |
|
136 |
include wikis |
137 |
} |
138 |
|
139 |
# buildnode |
140 |
node jonund { |
141 |
# Location: IELO datacenter (marseille) |
142 |
# |
143 |
include common::default_mageia_server |
144 |
include buildsystem::buildnode |
145 |
include buildsystem::iurt20101 |
146 |
timezone::timezone { "Europe/Paris": } |
147 |
include shorewall |
148 |
include shorewall::default_firewall |
149 |
} |
150 |
|
151 |
node ecosse { |
152 |
# Location: IELO datacenter (marseille) |
153 |
# |
154 |
include common::default_mageia_server |
155 |
include buildsystem::buildnode |
156 |
timezone::timezone { "Europe/Paris": } |
157 |
} |
158 |
|
159 |
# backup server |
160 |
node fiona { |
161 |
# Location: IELO datacenter (marseille) |
162 |
# |
163 |
# TODO: |
164 |
# - buy the server |
165 |
# - install the server in datacenter |
166 |
# - install a backup system |
167 |
include common::default_mageia_server |
168 |
timezone::timezone { "Europe/Paris": } |
169 |
} |
170 |
|
171 |
# gandi-vm |
172 |
node krampouezh { |
173 |
# Location: gandi VM |
174 |
# |
175 |
# |
176 |
#include common::default_mageia_server |
177 |
include common::default_mageia_server_no_smtp |
178 |
include postfix::secondary_smtp |
179 |
include blog::base |
180 |
include blog::db_backup |
181 |
include mysql::server |
182 |
include dns::server |
183 |
timezone::timezone { "Europe/Paris": } |
184 |
|
185 |
openldap::slave_instance { "1": |
186 |
rid => 1, |
187 |
} |
188 |
|
189 |
# Other services running on this server : |
190 |
# - meetbot |
191 |
} |
192 |
|
193 |
node champagne { |
194 |
# Location: gandi VM |
195 |
# |
196 |
# TODO: |
197 |
# - setup mageia.org web site |
198 |
# |
199 |
include common::default_mageia_server |
200 |
timezone::timezone { "Europe/Paris": } |
201 |
include blog::files-bots |
202 |
include blog::files_backup |
203 |
include planet |
204 |
include websites::static |
205 |
include websites::hugs |
206 |
include websites::releases |
207 |
include websites::www |
208 |
include dashboard::base |
209 |
include access_classes::web |
210 |
include openssh::ssh_keys_from_ldap |
211 |
} |
212 |
|
213 |
node friteuse { |
214 |
# Location: VM hosted by nfrance (toulouse) |
215 |
# |
216 |
|
217 |
include common::default_mageia_server |
218 |
timezone::timezone { "Europe/Paris": } |
219 |
include forums |
220 |
} |
221 |
|
222 |
node rabbit { |
223 |
# Location: Server offered by Dedibox (paris) |
224 |
# |
225 |
# - used to create isos ( and live, and so on ) |
226 |
# |
227 |
include common::default_mageia_server |
228 |
timezone::timezone { "Europe/Paris": } |
229 |
include bcd::base |
230 |
include bcd::web |
231 |
include bcd::rsync |
232 |
include draklive::base |
233 |
include access_classes::iso_makers |
234 |
include openssh::ssh_keys_from_ldap |
235 |
include mirror::mageia |
236 |
include mirror::newrelease |
237 |
include releasekey::base |
238 |
include youri-check::check |
239 |
|
240 |
# for testing iso quickly |
241 |
include libvirtd::kvm |
242 |
libvirtd::group_access { "mga-iso_makers": } |
243 |
|
244 |
# to ease the creation of test iso |
245 |
$netinst_iso_path = "/var/lib/libvirt/netboot" |
246 |
|
247 |
file { $netinst_iso_path: |
248 |
ensure => directory, |
249 |
} |
250 |
|
251 |
libvirtd::storage { "netinst_iso": |
252 |
path => $netinst_iso_path, |
253 |
require => File[$netinst_iso_path], |
254 |
} |
255 |
|
256 |
include auto_installation::download |
257 |
auto_installation::download::netboot_images { "mandriva": |
258 |
path => $netinst_iso_path, |
259 |
versions => ["2010.0","2010.1"], |
260 |
archs => ['i586','x86_64'], |
261 |
mirror_path => "ftp://ftp.free.fr/pub/Distributions_Linux/MandrivaLinux/official/%{version}/%{arch}/install/images/", |
262 |
files => ['boot.iso'], |
263 |
require => File[$netinst_iso_path], |
264 |
} |
265 |
|
266 |
# for testing pxe support of libvirt |
267 |
include auto_installation::variables |
268 |
libvirtd::network {"pxe_network": |
269 |
network => "192.168.123.0/24", |
270 |
tftp_root => $auto_installation::variables::pxe_dir, |
271 |
bridge_name => "virbr1", |
272 |
} |
273 |
|
274 |
include auto_installation::pxe_menu |
275 |
auto_installation::mandriva_installation_entry { "pxe_test": |
276 |
version => "2010.1", |
277 |
arch => "i586", |
278 |
} |
279 |
} |