Puppet Class: role::dev

Defined in:

manifests/dev.pp

Overview

The ‘puppetmaster` role sets up a master system, synchronizes files from Amazon, and generally enables SE Team specific patterns dependent on master capabilities.

Parameters:

• r10k_environments_dir (Any) (defaults to: '/etc/puppetlabs/puppet/environments')
• r10k_environments_remote (Any) (defaults to: 'https://github.com/puppetlabs-seteam/puppet-environments')
• srv_root (Any) (defaults to: '/var/seteam-files')

# File 'manifests/dev.pp', line 6

class role::dev (
  $r10k_environments_dir    = '/etc/puppetlabs/puppet/environments',
  $r10k_environments_remote = 'https://github.com/puppetlabs-seteam/puppet-environments',
  $srv_root                 = '/var/seteam-files',
) {
  # Custom PE Console configuration
  include console_env
  include git
  include apache

  # Puppet master firewall rules
  include profile::firewall
  Firewall {
    require => Class['profile::firewall::pre'],
    before  => Class['profile::firewall::post'],
    chain   => 'INPUT',
    proto   => 'tcp',
    action  => 'accept',
  }
  firewall { '110 puppetmaster allow all': dport  => '8140';  }
  firewall { '110 dashboard allow all':    dport  => '443';   }
  firewall { '110 mcollective allow all':  dport  => '61613'; }
  firewall { '110 apache allow all':       dport  => '80';    }

  apache::vhost { 'seteam-files':
    vhost_name => '*',
    port       => '80',
    docroot    => $srv_root,
    priority   => '10',
  }

  package { 'r10k':
    ensure   => present,
    provider => pe_gem,
  }

  # Template uses:
  #   - $r10k_environments_dir
  #   - $r10k_environments_remote
  file { '/etc/r10k.yaml':
    ensure  => present,
    owner   => 'root',
    group   => 'root',
    mode    => '0644',
    content => template('role/puppetmaster/r10k.yaml.erb'),
  }

  ini_setting { 'puppet_modulepath':
    ensure  => present,
    path    => '/etc/puppetlabs/puppet/puppet.conf',
    section => 'main',
    setting => 'modulepath',
    value   => "${r10k_environments_dir}/\$environment/modules:/opt/puppet/share/puppet/modules",
  }
  ini_setting { 'puppet_manifest':
    ensure  => present,
    path    => '/etc/puppetlabs/puppet/puppet.conf',
    section => 'main',
    setting => 'manifest',
    value   => "${r10k_environments_dir}/\$environment/manifests/site.pp"
  }
  ini_setting { 'puppet_hieraconfig':
    ensure  => present,
    path    => '/etc/puppetlabs/puppet/puppet.conf',
    section => 'main',
    setting => 'hiera_config',
    value   => "${r10k_environments_dir}/production/hiera.yaml"
  }

  Exec {
    path    => '/opt/puppet/bin:/usr/bin:/bin',
    require => [
      Package['r10k'],
      Class['git'],
      File['/etc/r10k.yaml'],
    ],
  }

  exec { 'instantiate_environments':
    command => '/opt/puppet/bin/r10k deploy environment',
    creates => $r10k_environments_dir,
  }

  exec { 'instantiate_production_modules':
    cwd     => '/etc/puppetlabs/puppet/environments/production',
    command => '/opt/puppet/bin/r10k puppetfile install',
    creates => "${r10k_environments_dir}/modules",
    require => Exec['instantiate_environments'],
  }

}