heroes / salt

Clone
Source Code
GIT

Blame pillar/role/saltmaster.sls

adjust-ci-pipeline anikitin/mirrorcache anikitin/t_allow_jinja_in_secrets anikitin/web_mirrors__proxy_mirrorcache bootloader cboltz-borgbackup cboltz-relnotes-15.3 cboltz-scar-sshd doc-o-o gateway hellcp/matrix-synapse-workers-syntax hellcp/paste-sync ifconfig infra libvirt lrupp-production-patch-08358 lrupp/add_identification lrupp/remove_login_interface lrupp/retire lrupp/serve_www mailman micro monitoring-restart paste-socket postfix-aliases production repositories set-secret-detection-config-1 sysctl update-access-crtmgr
  1.   b2faa911ff647f16e4032a783289d702423f37e5
  2.   pillar
  3.   role
  4.   saltmaster.sls
Blob History Raw
Theo Chatzimichos 754b1a 
{% if salt['grains.get']('include_secrets', True) %}
Theo Chatzimichos d12b82 
include:
Theo Chatzimichos d12b82 
  - secrets.role.saltmaster
Theo Chatzimichos 754b1a 
{% endif %}
Theo Chatzimichos d12b82
Theo Chatzimichos 16b8a6 
salt:
Christian Boltz b0d8f5 
  # salt on 15.1 uses py3, therefore different package name
Christian Boltz b0d8f5 
  pygit2: python3-pygit2
Christian Boltz e1c333 
  master:
Christian Boltz e1c333 
    cli_summary: True
Christian Boltz e1c333 
    default_top: production
Christian Boltz e1c333 
    env_order:
Christian Boltz e1c333 
      - production
Christian Boltz e1c333 
    ext_pillar:
Christian Boltz e1c333 
      - git:
Theo Chatzimichos 13d647 
          - production gitlab@gitlab.infra.opensuse.org:infra/salt.git:
Christian Boltz e1c333 
              - env: production
Christian Boltz e1c333 
              - root: pillar
Theo Chatzimichos 7e49a8 
              - privkey: /var/lib/salt/.ssh/salt_gitlab_ioo_infra_salt
Theo Chatzimichos 7e49a8 
              - pubkey: /var/lib/salt/.ssh/salt_gitlab_ioo_infra_salt.pub
Christian Boltz e1c333 
    ext_pillar_first: True
Christian Boltz e1c333 
    fileserver_backend:
Christian Boltz e1c333 
      - git
Christian Boltz e1c333 
    gitfs_provider: pygit2
Christian Boltz e1c333 
    gitfs_remotes:
Theo Chatzimichos 13d647 
      - gitlab@gitlab.infra.opensuse.org:infra/salt.git:
Christian Boltz e1c333 
          - root: salt
Theo Chatzimichos 7e49a8 
          - privkey: /var/lib/salt/.ssh/salt_gitlab_ioo_infra_salt
Theo Chatzimichos 7e49a8 
          - pubkey: /var/lib/salt/.ssh/salt_gitlab_ioo_infra_salt.pub
Theo Chatzimichos c45502 
      {% import_yaml "FORMULAS.yaml" as formulas_yaml %}
Theo Chatzimichos c45502 
      {% set formulas = formulas_yaml.keys()|sort %}
Theo Chatzimichos c45502 
      {% for formula in formulas %}
Theo Chatzimichos c45502 
      - https://gitlab.infra.opensuse.org/saltstack-formulas/{{ formula }}-formula.git
Theo Chatzimichos c45502 
      {% endfor %}
Christian Boltz e1c333 
    gitfs_ssl_verify: True
Christian Boltz e1c333 
    hash_type: sha512
Christian Boltz e1c333 
    pillar_gitfs_ssl_verify: True
Christian Boltz e1c333 
    pillar_merge_lists: True
Christian Boltz e1c333 
    pillar_source_merging_strategy: smart
Christian Boltz e1c333 
    state_output: changes
Christian Boltz e1c333 
    state_verbose: False
Christian Boltz e1c333 
    top_file_merging_strategy: same
Christian Boltz e1c333 
    user: salt
Theo Chatzimichos 16b8a6 
  reactor:
Theo Chatzimichos 16b8a6 
    - 'salt/fileserver/gitfs/update':
Theo Chatzimichos 16b8a6 
        - /srv/reactor/update_fileserver.sls
Christian Boltz af69ac
Christian Boltz af69ac 
sudoers:
Christian Boltz af69ac 
  included_files:
Christian Boltz af69ac 
    /etc/sudoers.d/gitlab-runner_nopasswd_salt_event:
Christian Boltz af69ac 
      users:
Christian Boltz af69ac 
        gitlab-runner:
Christian Boltz af69ac 
          - 'ALL=(root) NOPASSWD:SETENV: /usr/bin/salt-call event.*'
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.