To sort of meta example the pseudo code :)
On Wed, Mar 12, 2014 at 12:11 PM, Kenton Brede wrote:
> With the new setup I've got a common.yaml that contains a hash of users with
> access to all boxes. Then I thought I'd place additional users for
> "server1" in server1.yaml.
>
> common.yaml
> use
see http://docs.puppetlabs.com/hiera/1/puppet.html
"If you need to merge arrays or merge hashes from multiple hierarchy
levels, you will have to use the hiera_array or hiera_hash functions
in the body of your classes."
There's not really a good example in that page, but essentially where
'hiera'
One of the most frustrating things about puppet is duplicate definitions of
packages,
The "ensure_packages" function from stdlib seems very much like the correct
way to handle this:
newfunction(:ensure_packages, :type => :statement, :doc => <<-EOS
Takes a list of packages and only installs them i
impossible. Maybe I miss
> something but I don't think so.
>
> You have to use an another dns name or use a different port.
>
> good luck.
>
>
> On Fri, May 17, 2013 at 9:46 PM, Jonathan Proulx wrote:
>
>> Hi All,
>>
>> I've run into a bit
Hi All,
I've run into a bit of a tangle.
I currently have two puppet masters which are "load balanced" with round
robin DNS (one is also the CA). I'm using dns_alt_names to let them each
answer to puppet.my.domain.com
For the past year this has been fine.
About a week ago I tried to add a thi
On Wed, May 8, 2013 at 8:55 AM, Jonathan Proulx wrote:
> I'm game, short of regenerating the new master's certificate & trying the
> clients again anything to look at to test that theory?
>
>
Well new certs are easy enough so went a head and generated new ones after
c
But I'm game, short of regenerating the new master's certificate & trying
the clients again anything to look at to test that theory?
Time is frequently a good place to look in crypto errors, but we rely on
Kerberos for just about everything which is also very time sensitive so
we're pretty scrupul
Hi All,
I currently have two puppet masters which are "load balanced" with round
robin DNS (one is also the CA). I'm using dns_alt_names to let them each
answer to puppet.my.domain.com
For the past year this has been fine.
Today I'm trying to add a third & while all my Linux clients seem happy
On Mon, Apr 8, 2013 at 3:33 PM, Tony C wrote:
> Jon,
>
> Can you tell me some more detail about puppetlabs_stdlib? I am unfamiliar
> with this module. I read on it but not sure specifically how you are using
> it.
>
>
stdlib provides many useful functions, most of which are called by other
module
On Mon, Apr 8, 2013 at 3:25 PM, Dan White wrote:
> That looks great.
>
> Another thing to consider: As of hiera 1.2.0, you have deep merge for
> hashes.
> You do not need to repeat parameters at every level !
>
> That's good to know. We've been using hiera arrays to collect things like
classes a
On Mon, Apr 8, 2013 at 2:57 PM, Dan White wrote:
> Based on your description, I would suggest the following:
>
> Let's take tomcat as a specific example.
> Assumption: You have a tomcat module that can be configured with
> parameters.
>
> Here is the suggestion: Add a hostname level to your heira
On Mon, Apr 8, 2013 at 2:28 PM, Tony C wrote:
> After reading several posts, it looks like setting a key on every host,
> and supplying a different value based on that host's function is not a
> proper use of facts, but more for variables.
>
> We are using hiera, and based on my hierarchy,
>
>
>
Hi All,
Very interesting topic. Here's what I'm using:
---
:hierarchy:
- %{fqdn}
- %{role}
- %{group}
- %{osfamily}
- common
:backends:
- yaml
- puppet
:yaml:
:datadir: /etc/puppet/environments/%{environment}/data
:puppet:
:datasource: data
We don't have any uses of %{fqdn} but in the
You can also use the puppetlabs stdlib module which provides an easy
ad-hoc way of defining arbitrary facts on a system using text files in
/etc/facter/facts.d/
more info:
https://puppetlabs.com/blog/module-of-the-week-puppetlabsstdlib-puppetlabs-standard-library-part-3
Many facts are best disco
On Wed, Oct 3, 2012 at 11:02 AM, Jakov Sosic wrote:
> Hi.
>
> I would like to setup my manifests, so that variable data is gathered
> from hiera, if it's available there, and if not, then to fallback on
> some predefined value...
The "right" thing is to put that default somewhere in hiera. What
There is a config option I just started looking at:
allow_duplicate_certs
Whether to allow a new certificate request to overwrite an existing
certificate.
but it seems from
http://comments.gmane.org/gmane.comp.sysutils.puppet.bugs/21676 that
this only works when manually creati
On line application:
http://sh.webhire.com/servlet/av/jd?ai=631&ji=2630662&sn=I
We're in the early stages of a transition from 10 years of CFengine
use to Puppet and transitioning from Debian Squeeze to Ubuntu 12.04 as
our supported server and workstation release, and an OpenStack
deployment, and
Hi All,
I'm trying to get a feel for the puppetlabs-openstack module by
deploying the openstack::all class using the example in the readme.
Puppet master using puppet 2.7.14 on Debian Squeeze, client node
2.7.11 on Ubuntu 12.04. Using module and dependencies from the forge.
I get this:
err: Cou
Screen cast looks cool, can't wait to dig into the code.
I'm at the beginning (3rd day?) of a similar project using cucumber to
drive module tests on virtual boxes using vagrant. I've been focusing
on puppet "apply"ing single tasks (a module and its dependencies) to a
variety of operating systems
Hi,
I have a modules directory that I've mounted as a virtualbox shared
folder from my workstation (where I'm doing development) on a
VirtualBox guest which I hop to make ,many virtual box guests so I can
test against a variety of OS versions. Which seemed a good idea at
the time, but puppet in t
Hi Nigel,
Thanks for the fabulous response. I was convinced I was going to need to do
this by hand, happy to see my native pessimism proved wrong.
On Sat, Mar 10, 2012 at 4:23 PM, Nigel Kersten wrote:
> Jon, what version of Puppet are you running?
2.7.11 on Debian/Squeeze from apt.puppetlabs.c
I'm trying to split out my certificate authority and have one CA and
multiple masters, currently using round robin DNS, possibly using
HAproxy later.
Got most of the way there but tangled up in names and certificates.
When the Puppet CA generated it's certificate the PTR record for it's
IP pointed
On Sun, Feb 26, 2012 at 1:54 PM, Brian Troutwine wrote:
> I'm a big fan of using read-only submodules, usually to the upstream
> project but sometimes to my own fork. The use of submodules makes
> getting changes in from upstream trivial
I agree that github is where it's at. On of the things I l
Hi All,
I'm building out my first puppet install and obviously want to
leverage modules from the forge. Since I'm using git as the VCS for
my puppet configs and most community modules are hosted on github it
seems the obvious thing to do is to use either git submodules or
subtree merging, but I h
24 matches
Mail list logo
