blob: dd0d37f7892e101feaf918365a9788ec24588c4f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
class site_config::default {
tag 'leap_base'
$domain_hash = hiera('domain')
include concat::setup
# default class, used by all hosts
include lsb, git
# configure apt
include site_apt
# configure ssh and include ssh-keys
include site_config::sshd
# fix dhclient from changing resolver information
if $::ec2_instance_id {
include site_config::dhclient
}
# configure /etc/resolv.conf
include site_config::resolvconf
# configure caching, local resolver
include site_config::caching_resolver
# configure /etc/hosts
class { 'site_config::hosts':
stage => setup,
}
# install/remove base packages
include site_config::base_packages
# include basic shorewall config
include site_shorewall::defaults
Class['git'] -> Vcsrepo<||>
# include basic shell config
include site_config::shell
# set up core leap files and directories
include site_config::files
# redundant declarations, remove if
# "Move setup.pp to a subclass (site_config::setup) (Feature #2993)"
# is solved.
# if squid_deb_proxy_client is set to true, install and configure
# squid_deb_proxy_client for apt caching
if hiera('squid_deb_proxy_client', false) {
include site_squid_deb_proxy::client
}
# Set up leap ca
$x509 = hiera('x509')
$ca = $x509['ca_cert']
$ca_name = 'leap_ca'
x509::ca { $ca_name:
content => $ca,
before => [
Class['Site_openvpn::Keys'],
Class['Site_stunnel'] ]
}
}
|