Puppet Class: profile::base

Defined in:
modules/profile/manifests/base.pp

Overview

Parameters:

  • remote_syslog (Array) (defaults to: lookup('profile::base::remote_syslog', {default_value => []}))
  • remote_syslog_tls (Hash) (defaults to: lookup('profile::base::remote_syslog_tls', {default_value => {}}))
  • remote_syslog_send_logs (String) (defaults to: lookup('profile::base::remote_syslog_send_logs', {default_value => 'standard'}))
  • ssh_server_settings (Hash) (defaults to: lookup('profile::base::ssh_server_settings', {default_value => {}}))
  • overlayfs (Boolean) (defaults to: lookup('profile::base::overlayfs', {default_value => false}))
  • wikimedia_clusters (Hash) (defaults to: lookup('wikimedia_clusters'))
  • cluster (String) (defaults to: lookup('cluster'))
  • enable_contacts (Boolean) (defaults to: lookup('profile::base::enable_contacts'))
  • core_dump_pattern (String) (defaults to: lookup('profile::base::core_dump_pattern')) 


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
 
# File 'modules/profile/manifests/base.pp', line 1

class profile::base(
    Array $remote_syslog      = lookup('profile::base::remote_syslog', {default_value => []}),
    Hash  $remote_syslog_tls  = lookup('profile::base::remote_syslog_tls', {default_value => {}}),
    String $remote_syslog_send_logs = lookup('profile::base::remote_syslog_send_logs', {default_value => 'standard'}),
    Hash $ssh_server_settings = lookup('profile::base::ssh_server_settings', {default_value => {}}),
    Boolean $overlayfs        = lookup('profile::base::overlayfs', {default_value => false}),
    Hash $wikimedia_clusters  = lookup('wikimedia_clusters'),
    String $cluster           = lookup('cluster'),
    Boolean $enable_contacts  = lookup('profile::base::enable_contacts'),
    String $core_dump_pattern = lookup('profile::base::core_dump_pattern'),
) {
    # Sanity checks for cluster - T234232
    if ! has_key($wikimedia_clusters, $cluster) {
        fail("Cluster ${cluster} not defined in wikimedia_clusters")
    }

    if ! has_key($wikimedia_clusters[$cluster]['sites'], $::site) {
        fail("Site ${::site} not found in cluster ${cluster}")
    }

    contain profile::base::puppet
    contain profile::base::certificates
    include profile::systemd::timesyncd
    include profile::apt
    class {'adduser': }

    class { 'grub::defaults': }

    include passwords::root
    include network::constants
    include profile::resolving
    include profile::mail::default_mail_relay

    include profile::prometheus::node_exporter
    class { 'rsyslog': }
    include profile::prometheus::rsyslog_exporter

    $remote_syslog_tls_servers = $remote_syslog_tls[$::site]

    unless empty($remote_syslog) and empty($remote_syslog_tls_servers) {
        class { 'base::remote_syslog':
            enable            => true,
            central_hosts     => $remote_syslog,
            central_hosts_tls => $remote_syslog_tls_servers,
            send_logs         => $remote_syslog_send_logs,
        }
    }

    #TODO: make base::sysctl a profile itself?
    class { 'base::sysctl': }
    class { 'motd': }
    class { 'base::standard_packages': }
    include profile::environment
    class { 'base::sysctl::core_dumps':
        core_dump_pattern => $core_dump_pattern,
    }

    class { 'ssh::client': }

    # # TODO: create profile::ssh::server
    # Ssh server default settings are good for most installs, but some overrides
    # might be needed

    create_resources('class', {'ssh::server' => $ssh_server_settings})

    class { 'base::kernel':
        overlayfs => $overlayfs,
    }

    include profile::debdeploy::client

    class { 'base::initramfs': }
    include profile::auto_restarts

    class { 'prometheus::node_debian_version': }

    if $facts['is_virtual'] and debian::codename::le('buster') {
        class {'haveged': }
    }
}