diff --git a/Vagrantfile b/Vagrantfile index 105dea9..a57f756 100644 --- a/Vagrantfile +++ b/Vagrantfile @@ -1,621 +1,651 @@ Vagrant.require_version ">= 2.2.0" ENV["LC_ALL"] = "en_US.UTF-8" # Default configuration for all defines node below environment = "staging" environment_path = "/tmp/puppet/environments" manifest_file = "site.pp" manifests_path = "swh-site/manifests" puppet_options = "--fileserverconfig=/etc/puppet/fileserver.conf --verbose" # --debug --trace for more puppet_staging_facts = { "vagrant_testing" => "1", "testing" => "vagrant", "deployment" => "staging", "subnet" => "vagrant" } puppet_production_facts = { "vagrant_testing" => "1", "testing" => "vagrant", "deployment" => "production", "subnet" => "vagrant" } # used to define the local vm template path puppet_env_path = ENV["SWH_PUPPET_ENVIRONMENT_HOME"] # Images/local configuration (libvirt) $local_debian10_box = "debian10-20201012-1352" $local_debian10_box_url = "file://#{puppet_env_path}/packer/builds/swh-debian-10.6-amd64-20201012-1352.qcow2" # Images/remote configuration $global_debian10_box = "debian10-20201012-1352" $global_debian10_box_url = "https://annex.softwareheritage.org/public/isos/libvirt/debian/swh-debian-10.6-amd64-20201012-1352.qcow2" unless Vagrant.has_plugin?("libvirt") $stderr.puts <<-MSG vagrant-libvirt plugin is required for this. To install: `$ sudo apt install vagrant-libvirt MSG exit 1 end Vagrant.configure("2") do |global_config| ################ ## STAGING ################ global_config.vm.define :"staging-webapp" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "webapp.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.30", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-rp0" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "rp0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.20", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-db1" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "db1.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.11", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-storage1" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "storage1.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.41", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end + global_config.vm.define :"staging-objstorage0" do |config| + # config.ssh.insert_key = false + config.vm.box = $global_debian10_box + config.vm.box_url = $global_debian10_box_url + config.vm.box_check_update = false + config.vm.hostname = "objstorage0.internal.staging.swh.network" + config.vm.network :private_network, ip: "10.168.130.110", netmask: "255.255.255.0" + + config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' + # ssl certificates share + config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' + + config.vm.provider :libvirt do |provider| + provider.memory = 512 + provider.cpus = 2 + # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 + provider.driver = 'kvm' + end + config.vm.provision "puppet" do |puppet| + puppet.environment_path = "#{environment_path}" + puppet.environment = "#{environment}" + puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" + puppet.manifest_file = "#{manifest_file}" + puppet.manifests_path = "#{manifests_path}" + puppet.options = "#{puppet_options}" + puppet.facter = puppet_staging_facts + puppet.synced_folder_type = 'nfs' + end + end + global_config.vm.define :"staging-deposit" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "deposit.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.31", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-worker0" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.hostname = "worker0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.100", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 4096 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-scheduler0" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.hostname = "scheduler0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.50", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-journal0" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.hostname = "journal0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.70", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-esnode0" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "search-esnode0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.80", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-search0" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "search0.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.90", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"staging-clearly-defined" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "clearly-defined.internal.staging.swh.network" config.vm.network :private_network, ip: "10.168.130.200", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end ################ # ADMIN ################ global_config.vm.define :"bojimans" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "bojimans.internal.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.199", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"pergamon" do |config| # config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "pergamon.internal.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.29", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "production" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end ################ ## PRODUCTION ################ global_config.vm.define :"prod-worker01" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.hostname = "worker01.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.21", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 4096 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_production_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"esnode1" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "esnode1.internal.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.61", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_production_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"esnode2" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "esnode2.internal.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.62", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_production_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"esnode3" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "esnode3.internal.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.63", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 1024 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_production_facts puppet.synced_folder_type = 'nfs' end end global_config.vm.define :"prod-bardo" do |config| config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.hostname = "bardo.softwareheritage.org" config.vm.network :private_network, ip: "10.168.50.10", netmask: "255.255.255.0" config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 4096 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_production_facts puppet.synced_folder_type = 'nfs' end end ################ ## MISC ################ global_config.vm.define :test do |config| config.ssh.insert_key = false config.vm.box = $global_debian10_box config.vm.box_url = $global_debian10_box_url config.vm.box_check_update = false config.vm.hostname = "test.softwareheritage.org" config.vm.network :private_network, ip: "10.168.100.30", netmask: "255.255.255.0" config.vm.network :private_network, ip: "10.168.101.30", netmask: "255.255.255.0" config.vm.network "forwarded_port", guest: 10030, host: 22 config.vm.synced_folder "/tmp/puppet/", "/tmp/puppet", type: 'nfs' # ssl certificates share config.vm.synced_folder "vagrant/le_certs", "/etc/puppet/le_certs", type: 'nfs' config.vm.provider :libvirt do |provider| provider.memory = 512 provider.cpus = 2 # local test run: https://github.com/vagrant-libvirt/vagrant-libvirt/issues/45 provider.driver = 'kvm' end config.vm.provision "puppet" do |puppet| puppet.environment_path = "#{environment_path}" puppet.environment = "#{environment}" puppet.hiera_config_path = "#{puppet.environment_path}/#{puppet.environment}/hiera.yaml" puppet.manifest_file = "#{manifest_file}" puppet.manifests_path = "#{manifests_path}" puppet.options = "#{puppet_options}" puppet.facter = puppet_staging_facts puppet.synced_folder_type = 'nfs' end end end diff --git a/vagrant/le_certs/objstorage_staging/cert.pem b/vagrant/le_certs/objstorage_staging/cert.pem new file mode 100644 index 0000000..3871351 --- /dev/null +++ b/vagrant/le_certs/objstorage_staging/cert.pem @@ -0,0 +1,21 @@ +-----BEGIN CERTIFICATE----- +MIIDbTCCAlWgAwIBAgIUaVu80wq4seS1CRJG+ARBkZebmiIwDQYJKoZIhvcNAQEL +BQAwRjELMAkGA1UEBhMCRlIxDjAMBgNVBAgMBVBhcmlzMScwJQYDVQQDDB5vYmpz +dG9yYWdlLnN0YWdpbmcuc3doLm5ldHdvcmswHhcNMjAxMjIxMTUyMDQ4WhcNMjMw +OTE2MTUyMDQ4WjBGMQswCQYDVQQGEwJGUjEOMAwGA1UECAwFUGFyaXMxJzAlBgNV +BAMMHm9ianN0b3JhZ2Uuc3RhZ2luZy5zd2gubmV0d29yazCCASIwDQYJKoZIhvcN +AQEBBQADggEPADCCAQoCggEBAL2UOJE4gxM9j5f8xfg9V0b+EQs5tR6fcEwJd/HN +vtwEQ/WklQxO6XdYn6wvXf5PNmiUvhZKknaeCZenM5qtmOLTDCiUswmJzPoI8Fdg +yIe7hcKKHOJmEymscadQiFahMekFxNggpZ8XbIiX5yxfTCbOJeN7FOdvQJ/zPgjQ +KdnZUG2L1RLLec2QkPHxkPrlScFzo+Blo4St9Qo9jpTcn0DhE0LQgs4SLyu4GW0/ ++Ul21q/B4E4zzlPQy4UIF20B9brovnz//pWO6xCgUHZDjiYEJaQBsK2aO51RIpLz +2SQkdjAFUiSSz5vEDwRaZs7cGoxNPhhwJ98Npm1Bq3gSYhMCAwEAAaNTMFEwHQYD +VR0OBBYEFGiszMwQC1euu55y8ERgsJfL0RJgMB8GA1UdIwQYMBaAFGiszMwQC1eu +u55y8ERgsJfL0RJgMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB +ADgGqP1xxKOGGz5EftaYQjE0xQd9k6FZJlAnJhkuflzzTim8x7urDnKABITRTuih +r3VKKun6nIEDOFJ7iOZNeTTFXjU0RLjm3JTTmOOsHeNX4djrnidUde3434F5oSW6 +S/B1vtNqVpwK2Mdrc6OrNznrNPjj6bMKOlL0ULSKRo2beXcNfSCUJS6uspIuYMRk +FKZbNo5vkIEaRCfuCmLz+VngyGv832g2eep7asGg2jLuZSRkXO0iNi1rXbXDWAAn +Xrkrl+bPuEzSiANh93u64s1eAclr+1GsY8MDmEGw+HRG5XmFks7i7hrf6bILkB7J +v5X7fuSB9ArfuBCOB3ejctk= +-----END CERTIFICATE----- diff --git a/vagrant/le_certs/objstorage_staging/chain.pem b/vagrant/le_certs/objstorage_staging/chain.pem new file mode 100644 index 0000000..3871351 --- /dev/null +++ b/vagrant/le_certs/objstorage_staging/chain.pem @@ -0,0 +1,21 @@ +-----BEGIN CERTIFICATE----- +MIIDbTCCAlWgAwIBAgIUaVu80wq4seS1CRJG+ARBkZebmiIwDQYJKoZIhvcNAQEL +BQAwRjELMAkGA1UEBhMCRlIxDjAMBgNVBAgMBVBhcmlzMScwJQYDVQQDDB5vYmpz +dG9yYWdlLnN0YWdpbmcuc3doLm5ldHdvcmswHhcNMjAxMjIxMTUyMDQ4WhcNMjMw +OTE2MTUyMDQ4WjBGMQswCQYDVQQGEwJGUjEOMAwGA1UECAwFUGFyaXMxJzAlBgNV +BAMMHm9ianN0b3JhZ2Uuc3RhZ2luZy5zd2gubmV0d29yazCCASIwDQYJKoZIhvcN +AQEBBQADggEPADCCAQoCggEBAL2UOJE4gxM9j5f8xfg9V0b+EQs5tR6fcEwJd/HN +vtwEQ/WklQxO6XdYn6wvXf5PNmiUvhZKknaeCZenM5qtmOLTDCiUswmJzPoI8Fdg +yIe7hcKKHOJmEymscadQiFahMekFxNggpZ8XbIiX5yxfTCbOJeN7FOdvQJ/zPgjQ +KdnZUG2L1RLLec2QkPHxkPrlScFzo+Blo4St9Qo9jpTcn0DhE0LQgs4SLyu4GW0/ ++Ul21q/B4E4zzlPQy4UIF20B9brovnz//pWO6xCgUHZDjiYEJaQBsK2aO51RIpLz +2SQkdjAFUiSSz5vEDwRaZs7cGoxNPhhwJ98Npm1Bq3gSYhMCAwEAAaNTMFEwHQYD +VR0OBBYEFGiszMwQC1euu55y8ERgsJfL0RJgMB8GA1UdIwQYMBaAFGiszMwQC1eu +u55y8ERgsJfL0RJgMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB +ADgGqP1xxKOGGz5EftaYQjE0xQd9k6FZJlAnJhkuflzzTim8x7urDnKABITRTuih +r3VKKun6nIEDOFJ7iOZNeTTFXjU0RLjm3JTTmOOsHeNX4djrnidUde3434F5oSW6 +S/B1vtNqVpwK2Mdrc6OrNznrNPjj6bMKOlL0ULSKRo2beXcNfSCUJS6uspIuYMRk +FKZbNo5vkIEaRCfuCmLz+VngyGv832g2eep7asGg2jLuZSRkXO0iNi1rXbXDWAAn +Xrkrl+bPuEzSiANh93u64s1eAclr+1GsY8MDmEGw+HRG5XmFks7i7hrf6bILkB7J +v5X7fuSB9ArfuBCOB3ejctk= +-----END CERTIFICATE----- diff --git a/vagrant/le_certs/objstorage_staging/fullchain.pem b/vagrant/le_certs/objstorage_staging/fullchain.pem new file mode 100644 index 0000000..3871351 --- /dev/null +++ b/vagrant/le_certs/objstorage_staging/fullchain.pem @@ -0,0 +1,21 @@ +-----BEGIN CERTIFICATE----- +MIIDbTCCAlWgAwIBAgIUaVu80wq4seS1CRJG+ARBkZebmiIwDQYJKoZIhvcNAQEL +BQAwRjELMAkGA1UEBhMCRlIxDjAMBgNVBAgMBVBhcmlzMScwJQYDVQQDDB5vYmpz +dG9yYWdlLnN0YWdpbmcuc3doLm5ldHdvcmswHhcNMjAxMjIxMTUyMDQ4WhcNMjMw +OTE2MTUyMDQ4WjBGMQswCQYDVQQGEwJGUjEOMAwGA1UECAwFUGFyaXMxJzAlBgNV +BAMMHm9ianN0b3JhZ2Uuc3RhZ2luZy5zd2gubmV0d29yazCCASIwDQYJKoZIhvcN +AQEBBQADggEPADCCAQoCggEBAL2UOJE4gxM9j5f8xfg9V0b+EQs5tR6fcEwJd/HN +vtwEQ/WklQxO6XdYn6wvXf5PNmiUvhZKknaeCZenM5qtmOLTDCiUswmJzPoI8Fdg +yIe7hcKKHOJmEymscadQiFahMekFxNggpZ8XbIiX5yxfTCbOJeN7FOdvQJ/zPgjQ +KdnZUG2L1RLLec2QkPHxkPrlScFzo+Blo4St9Qo9jpTcn0DhE0LQgs4SLyu4GW0/ ++Ul21q/B4E4zzlPQy4UIF20B9brovnz//pWO6xCgUHZDjiYEJaQBsK2aO51RIpLz +2SQkdjAFUiSSz5vEDwRaZs7cGoxNPhhwJ98Npm1Bq3gSYhMCAwEAAaNTMFEwHQYD +VR0OBBYEFGiszMwQC1euu55y8ERgsJfL0RJgMB8GA1UdIwQYMBaAFGiszMwQC1eu +u55y8ERgsJfL0RJgMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB +ADgGqP1xxKOGGz5EftaYQjE0xQd9k6FZJlAnJhkuflzzTim8x7urDnKABITRTuih +r3VKKun6nIEDOFJ7iOZNeTTFXjU0RLjm3JTTmOOsHeNX4djrnidUde3434F5oSW6 +S/B1vtNqVpwK2Mdrc6OrNznrNPjj6bMKOlL0ULSKRo2beXcNfSCUJS6uspIuYMRk +FKZbNo5vkIEaRCfuCmLz+VngyGv832g2eep7asGg2jLuZSRkXO0iNi1rXbXDWAAn +Xrkrl+bPuEzSiANh93u64s1eAclr+1GsY8MDmEGw+HRG5XmFks7i7hrf6bILkB7J +v5X7fuSB9ArfuBCOB3ejctk= +-----END CERTIFICATE----- diff --git a/vagrant/le_certs/objstorage_staging/privkey.pem b/vagrant/le_certs/objstorage_staging/privkey.pem new file mode 100644 index 0000000..016d850 --- /dev/null +++ b/vagrant/le_certs/objstorage_staging/privkey.pem @@ -0,0 +1,28 @@ +-----BEGIN PRIVATE KEY----- +MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC9lDiROIMTPY+X +/MX4PVdG/hELObUen3BMCXfxzb7cBEP1pJUMTul3WJ+sL13+TzZolL4WSpJ2ngmX +pzOarZji0wwolLMJicz6CPBXYMiHu4XCihziZhMprHGnUIhWoTHpBcTYIKWfF2yI +l+csX0wmziXjexTnb0Cf8z4I0CnZ2VBti9USy3nNkJDx8ZD65UnBc6PgZaOErfUK +PY6U3J9A4RNC0ILOEi8ruBltP/lJdtavweBOM85T0MuFCBdtAfW66L58//6VjusQ +oFB2Q44mBCWkAbCtmjudUSKS89kkJHYwBVIkks+bxA8EWmbO3BqMTT4YcCffDaZt +Qat4EmITAgMBAAECggEBAKmrJE1kRHtN11vxkMSxMZGKBXsEdMMpcvm6Z6zztON4 +tdH9MKBJZ822dYFHC1p1Tn6e0NlmeFrM6kzeCeNfhrtKo1EWdH4O5HLK2T96kT5Z +aEdKELvXG0Nq4HUcMElID0E8NoYwAcq2zh4ZxX4C9EaurV5AY98VxMLikhyVIT+k +Ic20ZDNua7xdsuP44cCK2Tgpu2qBPDu51O3JdFNBN1RkbgasHJju7VJ7XqEWsWVY +fBHwyUO0WNtCGhKZ/sy7f81Wmeu8bwT6CWIdzzeoLDZjhtumIB1jvJ5pPZIIfmJ8 +no9uJbGPe38vbRLEp90KGmdfPMbTACyP9CtK90gAGeECgYEA6Sf+00EXc9ZQRfOA +TOI+aCq/3H/fz2K8h330JLmPe7R7NYRyGzVc4epH3De0bFM5LWn6v61+tIk7h8vf +pZmFKSZjlbFL5hfds0xclgIr8WV8jGqAruY5mxbQ5+EQZR0bkksDtMphQWQpZJSu +WC1yq54FOFeZPuQhFRluHRQFYSkCgYEA0Cc5kMTDjl08gfr146i5WCt8kZh9xLZz +svJLRbb/rrgWoTpxxOXeB+ns9NnmkUPjIjjPsbi/zNztdUjLxRBu5Cmltq/Lek// +zgwS+pkAdFVoFu2XRG/Q4BB1BWgTD2tu4IrW+f8DLEOwpQgypjaysxcgaupLlGNH +1ij/BmCqpNsCgYEAmvLrlTWzAlaxbmuPHolU9CFE9KM++DIkHN+F+0oeoxWktEJb +Gt3x5mmubBnRHBSK8TV3YR9KD20MVQkWjpViO6C5megECtxdiCT9euvijEDn7uFw +t8tlCT62gwO9w5T+l9Cmm+XLkIuiPqfY3d0GUitoSLNesr8lhUIrPcPqd1ECgYBz +iaI5Sg5mAjioyT0dDbU7TIALbMI6oy9bX4QKgUYwm/vrqD4oFZOFfwHI8v45GZ6E +i1Y1hp/nvaWMmUiJ7NIwkTFrUu61yJvrqeYK9Uw8Rn/NYjm5gftFs7zQsHEL+Q0F +U+t5vmPrePMe14sNmYTdRXP4BG7JQcZJCF5uEtAFSwKBgCDAsldIhRkzftyDgRpM +D6GqF5EtetQvZvjmJ/MHtOsw2rdg+IpP8YD7q1Crv4L0sG8g9D9w+a4abPZrW4m7 +jzkgfevr9pZsVtJzA2+vtikcQ2FCe4zpXk9nuX52/LopnqyAUHrlwp5hh1U2ipku +iBLUprXXYO6xzKB0KSDjlXiH +-----END PRIVATE KEY-----