Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
Wiki Replica
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Build
Pipelines
Jobs
Pipeline schedules
Artifacts
Deploy
Releases
Container Registry
Model registry
Operate
Environments
Monitor
Incidents
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
The Tor Project
TPA
Wiki Replica
Commits
bd04c2a5
Verified
Commit
bd04c2a5
authored
5 years ago
by
anarcat
Browse files
Options
Downloads
Patches
Plain Diff
move puppet docs in the puppet howto
parent
c0c6618e
No related branches found
Branches containing commit
No related tags found
No related merge requests found
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
tsa/doc/bits-and-pieces.mdwn
+1
-57
1 addition, 57 deletions
tsa/doc/bits-and-pieces.mdwn
tsa/howto/puppet.mdwn
+64
-0
64 additions, 0 deletions
tsa/howto/puppet.mdwn
with
65 additions
and
57 deletions
tsa/doc/bits-and-pieces.mdwn
+
1
−
57
View file @
bd04c2a5
...
...
@@ -49,60 +49,4 @@ being expanded a bit to deserve their own page.
## Puppet
### Before it all starts
- `puppet.tpo` is currently being run on `pauli.tpo`
- This is where the tor-puppet git repo lives
- The repo has hooks to populate `/etc/puppet` with its contents, most
notably the modules directory.
- All paths in this document are relative to the root of this
repository.
### File layout
- The root of definitions and execution is found in
`tor-puppet/manifests/site.pp`.
- `local.yaml` (modules/torproject_org/misc/local.yaml) defines
services and list which host(s) supply each service. local.yaml is
read by [site.pp](manifests/site.pp) for setting up the $localinfo
and $nodeinfo variables.
- `roles init.pp` (modules/roles/manifests/init.pp) maps services to
roles, using the `$nodeinfo` variable.
- `torproject.org init.pp` (modules/torproject_org/manifests/init.pp)
performs basic host initialisation, like configuring Debian mirrors
and APT sources, installing a base set of packages, configuring
puppet and timezone, setting up a bunch of rc-files and running
ud-replicate.
- `hoster.yaml` (modules/torproject_org/misc/hoster.yaml) defines
hosting providers and specifies things like which net blocks they
use, if they have a DNS resolver or a debian mirror. hoster.yaml is
read by
- the `nodeinfo()` function
(modules/puppetmaster/lib/puppet/parser/functions/nodeinfo.rb),
used for setting up the `$nodeinfo` variable
- `ferm's def.conf template` (modules/ferm/templates/defs.conf.erb)
- the `entropy provider`
(modules/puppetmaster/lib/puppet/parser/functions/entropy_provider.rb)
TODO
### Generating secrets, an example
- `bacula::director` inherits `bacula` which defines
- `$bacula_director_secret` using
- `hkdf()` and generates
- `/etc/bacula/bacula-dir.conf` using that
### Custom facts
`modules/torproject_org/lib/facter/software.rb` defines our custom
facts, making it possible to get answer to questions like "Is this
host running apache2?" byt simply looking at a puppet variable.
### Misc
- `puppet-lint` is a thing
- TODO: how to debug things
See [[howto/puppet]].
This diff is collapsed.
Click to expand it.
tsa/howto/puppet.mdwn
+
64
−
0
View file @
bd04c2a5
# Reference
This documents generally how things are setup.
### Before it all starts
- `puppet.tpo` is currently being run on `pauli.tpo`
- This is where the tor-puppet git repo lives
- The repo has hooks to populate `/etc/puppet` with its contents, most
notably the modules directory.
- All paths in this document are relative to the root of this
repository.
### File layout
- The root of definitions and execution is found in
`tor-puppet/manifests/site.pp`.
- `local.yaml` (modules/torproject_org/misc/local.yaml) defines
services and list which host(s) supply each service. local.yaml is
read by [site.pp](manifests/site.pp) for setting up the $localinfo
and $nodeinfo variables.
- `roles init.pp` (modules/roles/manifests/init.pp) maps services to
roles, using the `$nodeinfo` variable.
- `torproject.org init.pp` (modules/torproject_org/manifests/init.pp)
performs basic host initialisation, like configuring Debian mirrors
and APT sources, installing a base set of packages, configuring
puppet and timezone, setting up a bunch of rc-files and running
ud-replicate.
- `hoster.yaml` (modules/torproject_org/misc/hoster.yaml) defines
hosting providers and specifies things like which net blocks they
use, if they have a DNS resolver or a debian mirror. hoster.yaml is
read by
- the `nodeinfo()` function
(modules/puppetmaster/lib/puppet/parser/functions/nodeinfo.rb),
used for setting up the `$nodeinfo` variable
- `ferm's def.conf template` (modules/ferm/templates/defs.conf.erb)
- the `entropy provider`
(modules/puppetmaster/lib/puppet/parser/functions/entropy_provider.rb)
TODO
### Generating secrets, an example
- `bacula::director` inherits `bacula` which defines
- `$bacula_director_secret` using
- `hkdf()` and generates
- `/etc/bacula/bacula-dir.conf` using that
### Custom facts
`modules/torproject_org/lib/facter/software.rb` defines our custom
facts, making it possible to get answer to questions like "Is this
host running apache2?" byt simply looking at a puppet variable.
### Misc
- `puppet-lint` is a thing
- TODO: how to debug things
# How to guides
Listing all hosts under puppet
==============================
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
