Skip to content

TPA-RFC-77-H: Move Tails nodes to the TPA Puppet Server

Full plan: TPA-RFC-77

Move Tails nodes to the TPA Puppet server:

  • Install all 3rd-party modules that are used by Tails but not by Tor
  • Import the tails::profile::puppet::eyaml profile into TPA's profile::puppet::server
  • Copy the EYAML keys from the Tails to the Tor puppet server, and adapt hiera.yaml to use them
  • Copy code (legacy modules and profiles) from Tails to Tor
  • Include the corresponding base class (profile::tails or profile::common) depending on whether the node's role starts with tails_ or not.
  • Point Tails nodes to the Tor Puppet server
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information