puppet: Move all puppetized config files to the humbug module and reference them with puppet URLs

(imported from commit f0f325bbad381b87c12c6f7888f4dd5d6989f09f)
2025-11-11 09:27:43 +00:00 · 2013-02-07 18:33:31 -05:00
parent beb2ecf5c9
commit da95bb2988
49 changed files with 22 additions and 19 deletions
--- a/servers/install-server
+++ b/servers/install-server
@@ -21,7 +21,7 @@ if ! [ -e "$amazon_key_file" ]; then
    exit 1
 fi

-server_private_key_file=$humbug_root/servers/puppet/files/id_rsa
+server_private_key_file=$humbug_root/servers/puppet/modules/humbug/files/id_rsa
 if ! [ -e "$server_private_key_file" ]; then
    echo "You need a server ssh key at $server_private_key_file"
    exit 1
@@ -73,7 +73,7 @@ scp -i "$amazon_key_file" "$humbug_cert_file" root@"$server":/root/humbug/certs/
 # TODO: Copy the real certs into place for prod servers

 ssh "$server" -t -i "$amazon_key_file" -lroot <<EOF
-cp -a /root/humbug/servers/puppet/puppet.conf /etc/puppet/
+cp -a /root/humbug/servers/puppet/modules/humbug/files/puppet.conf /etc/puppet/
 # HACK: run puppet twice to workaround bug in puppet's dependency
 # resolution (namely apache module 'ssl' being enabled _after_ the
 # sites that use it )
--- a/servers/puppet/modules/humbug/files/apache/ports.conf
+++ b/servers/puppet/modules/humbug/files/apache/ports.conf
--- a/servers/puppet/modules/humbug/files/apache/sites/humbug-default
+++ b/servers/puppet/modules/humbug/files/apache/sites/humbug-default
--- a/servers/puppet/modules/humbug/files/apache/sites/nagios
+++ b/servers/puppet/modules/humbug/files/apache/sites/nagios
--- a/servers/puppet/modules/humbug/files/apache/sites/trac
+++ b/servers/puppet/modules/humbug/files/apache/sites/trac
--- a/servers/puppet/modules/humbug/files/apache/sites/wiki
+++ b/servers/puppet/modules/humbug/files/apache/sites/wiki
--- a/servers/puppet/modules/humbug/files/apt/apt.conf.d/02periodic
+++ b/servers/puppet/modules/humbug/files/apt/apt.conf.d/02periodic
--- a/servers/puppet/modules/humbug/files/humbug-server
+++ b/servers/puppet/modules/humbug/files/humbug-server
--- a/servers/puppet/modules/humbug/files/iptables/rules
+++ b/servers/puppet/modules/humbug/files/iptables/rules
--- a/servers/puppet/modules/humbug/files/iptables/rules.zmirror
+++ b/servers/puppet/modules/humbug/files/iptables/rules.zmirror
--- a/servers/puppet/modules/humbug/files/munin-plugins/humbug_send_receive
+++ b/servers/puppet/modules/humbug/files/munin-plugins/humbug_send_receive
--- a/servers/puppet/modules/humbug/files/munin/munin-node.conf
+++ b/servers/puppet/modules/humbug/files/munin/munin-node.conf
--- a/servers/puppet/modules/humbug/files/munin/munin.conf
+++ b/servers/puppet/modules/humbug/files/munin/munin.conf
--- a/servers/puppet/modules/humbug/files/munin/plugin-conf.d/munin-node.conf
+++ b/servers/puppet/modules/humbug/files/munin/plugin-conf.d/munin-node.conf
--- a/servers/puppet/modules/humbug/files/mysql/my.cnf
+++ b/servers/puppet/modules/humbug/files/mysql/my.cnf
--- a/servers/puppet/modules/humbug/files/nagios3/cgi.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/cgi.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/commands.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/commands.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/contacts.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/contacts.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/generic-host_nagios2.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/generic-host_nagios2.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/generic-service_nagios2.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/generic-service_nagios2.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/hostgroups.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/hostgroups.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/hosts.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/hosts.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/localhost.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/localhost.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/pagerduty_nagios.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/pagerduty_nagios.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/services.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/services.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/conf.d/timeperiods_nagios2.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/conf.d/timeperiods_nagios2.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/nagios.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/nagios.cfg
--- a/servers/puppet/modules/humbug/files/nagios3/resource.cfg
+++ b/servers/puppet/modules/humbug/files/nagios3/resource.cfg
--- a/servers/puppet/modules/humbug/files/nagios_plugins/check_debian_packages
+++ b/servers/puppet/modules/humbug/files/nagios_plugins/check_debian_packages
--- a/servers/puppet/modules/humbug/files/nagios_plugins/check_user_zephyr_mirror_liveness
+++ b/servers/puppet/modules/humbug/files/nagios_plugins/check_user_zephyr_mirror_liveness
--- a/servers/puppet/modules/humbug/files/nagios_plugins/check_zephyr_mirror
+++ b/servers/puppet/modules/humbug/files/nagios_plugins/check_zephyr_mirror
--- a/servers/puppet/modules/humbug/files/nginx/humbug-include/app
+++ b/servers/puppet/modules/humbug/files/nginx/humbug-include/app
--- a/servers/puppet/modules/humbug/files/nginx/nginx.conf
+++ b/servers/puppet/modules/humbug/files/nginx/nginx.conf
--- a/servers/puppet/modules/humbug/files/nginx/sites-available/humbug
+++ b/servers/puppet/modules/humbug/files/nginx/sites-available/humbug
--- a/servers/puppet/modules/humbug/files/nginx/sites-available/humbug-staging
+++ b/servers/puppet/modules/humbug/files/nginx/sites-available/humbug-staging
--- a/servers/puppet/modules/humbug/files/postgresql/pg_hba.conf
+++ b/servers/puppet/modules/humbug/files/postgresql/pg_hba.conf
--- a/servers/puppet/modules/humbug/files/postgresql/postgresql.conf
+++ b/servers/puppet/modules/humbug/files/postgresql/postgresql.conf
--- a/servers/puppet/modules/humbug/files/puppet.conf
+++ b/servers/puppet/modules/humbug/files/puppet.conf
--- a/servers/puppet/modules/humbug/files/supervisord/conf.d/feedback-bot.conf
+++ b/servers/puppet/modules/humbug/files/supervisord/conf.d/feedback-bot.conf
--- a/servers/puppet/modules/humbug/files/wiki/gitit.conf
+++ b/servers/puppet/modules/humbug/files/wiki/gitit.conf
--- a/servers/puppet/modules/humbug/files/wiki/static/css/custom.css
+++ b/servers/puppet/modules/humbug/files/wiki/static/css/custom.css
--- a/servers/puppet/modules/humbug/files/wiki/static/img/logo.png
+++ b/servers/puppet/modules/humbug/files/wiki/static/img/logo.png
--- a/servers/puppet/modules/humbug/manifests/apache.pp
+++ b/servers/puppet/modules/humbug/manifests/apache.pp
@@ -19,7 +19,7 @@ class humbug::apache {
    owner  => "www-data",
    group  => "www-data",
    mode => 600,
-    source => "/root/humbug/servers/puppet/files/apache/users",
+    source => "puppet:///modules/humbug/apache/users",
  }

  file { "/etc/apache2/certs/":
@@ -53,7 +53,7 @@ class humbug::apache {
    owner  => "root",
    group  => "root",
    mode => 640,
-    source => "/root/humbug/servers/puppet/files/apache/ports.conf",
+    source => "puppet:///modules/humbug/apache/ports.conf",
  }

  file { "/etc/apache2/sites-available/":
@@ -62,7 +62,7 @@ class humbug::apache {
    owner  => "root",
    group  => "root",
    mode => 640,
-    source => "/root/humbug/servers/puppet/files/apache/sites/",
+    source => "puppet:///modules/humbug/apache/sites/",
  }

  apache2site { 'humbug-default':
--- a/servers/puppet/modules/humbug/manifests/app_frontend.pp
+++ b/servers/puppet/modules/humbug/manifests/app_frontend.pp
@@ -13,7 +13,7 @@ class humbug::app_frontend {
    owner  => "root",
    group  => "root",
    mode => 644,
-    source => "/root/humbug/servers/puppet/files/nginx/nginx.conf",
+    source => "puppet:///modules/humbug/nginx/nginx.conf",
  }
  file { "/etc/nginx/humbug-include/":
    require => Package[nginx],
@@ -21,7 +21,7 @@ class humbug::app_frontend {
    owner  => "root",
    group  => "root",
    mode => 644,
-    source => "/root/humbug/servers/puppet/files/nginx/humbug-include/",
+    source => "puppet:///modules/humbug/nginx/humbug-include/",
  }
  file { "/etc/nginx/sites-available/humbug":
    require => Package[nginx],
@@ -29,7 +29,7 @@ class humbug::app_frontend {
    owner  => "root",
    group  => "root",
    mode => 644,
-    source => "/root/humbug/servers/puppet/files/nginx/sites-available/humbug",
+    source => "puppet:///modules/humbug/nginx/sites-available/humbug",
  }

  exec {"pip6":
--- a/servers/puppet/modules/humbug/manifests/base.pp
+++ b/servers/puppet/modules/humbug/manifests/base.pp
@@ -51,7 +51,7 @@ class humbug::base {
    mode       => 600,
    owner      => "humbug",
    group      => "humbug",
-    source     => '/root/humbug/servers/puppet/files/authorized_keys',
+    source     => 'puppet:///modules/humbug/authorized_keys',
  }

  file { '/home/humbug/.ssh':
@@ -65,7 +65,7 @@ class humbug::base {
  file { '/root/.ssh/authorized_keys':
    ensure     => file,
    mode       => 600,
-    source     => '/root/humbug/servers/puppet/files/root_authorized_keys',
+    source     => 'puppet:///modules/humbug/root_authorized_keys',
  }

  # This is just an empty file.  It's used by the app to test if it's running
@@ -73,25 +73,25 @@ class humbug::base {
  file { '/etc/humbug-server':
    ensure     => file,
    mode       => 644,
-    source     => '/root/humbug/servers/puppet/files/humbug-server',
+    source     => 'puppet:///modules/humbug/humbug-server',
  }

  file { '/etc/puppet/puppet.conf':
    ensure     => file,
    mode       => 640,
-    source     => '/root/humbug/servers/puppet/puppet.conf',
+    source     => 'puppet:///modules/humbug/puppet.conf',
  }

  file { '/etc/iptables/rules':
    ensure     => file,
    mode       => 600,
-    source     => '/root/humbug/servers/puppet/files/iptables/rules',
+    source     => 'puppet:///modules/humbug/iptables/rules',
  }

  file { '/etc/apt/apt.conf.d/02periodic':
    ensure     => file,
    mode       => 644,
-    source     => '/root/humbug/servers/puppet/files/apt/apt.conf.d/02periodic',
+    source     => 'puppet:///modules/humbug/apt/apt.conf.d/02periodic',
  }

  file { '/etc/ssh/sshd_config':
--- a/servers/puppet/modules/humbug/manifests/bots.pp
+++ b/servers/puppet/modules/humbug/manifests/bots.pp
@@ -17,6 +17,6 @@ class humbug::bots {
    owner   => 'root',
    group   => 'root',
    mode    => 640,
-    source  => "/root/humbug/servers/puppet/files/supervisor/conf.d/feedback-bot.conf",
+    source  => "puppet:///modules/humbug/supervisor/conf.d/feedback-bot.conf",
  }
 }
--- a/servers/puppet/modules/humbug/manifests/postgres.pp
+++ b/servers/puppet/modules/humbug/manifests/postgres.pp
@@ -17,7 +17,7 @@ class humbug::postgres {
    owner  => "postgres",
    group  => "postgres",
    mode => 644,
-    source => "/root/humbug/servers/puppet/files/postgresql/postgresql.conf",
+    source => "puppet:///modules/humbug/postgresql/postgresql.conf",
  }

  file { "/etc/postgresql/9.1/main/pg_hba.conf":
@@ -26,7 +26,7 @@ class humbug::postgres {
    owner  => "postgres",
    group  => "postgres",
    mode => 640,
-    source => "/root/humbug/servers/puppet/files/postgresql/pg_hba.conf",
+    source => "puppet:///modules/humbug/postgresql/pg_hba.conf",
  }

  common::line { 'shmmax':
--- a/servers/puppet/modules/humbug/manifests/wiki.pp
+++ b/servers/puppet/modules/humbug/manifests/wiki.pp
@@ -31,6 +31,6 @@ class humbug::wiki {
    recurse => true,
    owner  => "wiki",
    group  => "wiki",
-    source => "/root/humbug/servers/puppet/files/wiki",
+    source => "puppet:///modules/humbug/wiki",
  }
 }
--- a/tools/print-all/print-all
+++ b/tools/print-all/print-all
@@ -25,7 +25,10 @@ from os import path

 exclude_trees = """
 zephyr/static/third
-servers/puppet/modules
+servers/puppet/modules/common
+servers/puppet/modules/puppet-common
+servers/puppet/modules/apt
+servers/puppet/modules/puppet-apt
 certs
 """.split()