Puppet Class: puppet::params
- Inherited by:
-
puppet::enc
puppet::setup
puppet::config
puppet::globals
puppet::service
puppet::r10k::run
puppet::agent::run
puppet::r10k::setup
puppet::r10k::config
puppet::server::keys
puppet::r10k::crontab
puppet::r10k::install
puppet::server::setup
puppet::agent::install
puppet::profile::server
puppet::server::install
puppet::agent::bootstrap
puppet::agent::ssl::clean
puppet::config::webserver
puppet::r10k::gem_install
puppet::server::bootstrap::ssh
puppet::server::bootstrap::keys
puppet::server::bootstrap::hiera
- Defined in:
- manifests/params.pp
Summary
A short summary of the purpose of this classOverview
puppet::params
A description of what this class does
9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 |
# File 'manifests/params.pp', line 9
class puppet::params {
$os_version = $facts['os']['release']['major']
$os_name = $facts['os']['name']
if $facts['mountpoints'] and $facts['mountpoints']['/tmp'] {
$tmp_mountpoint_noexec = ('noexec' in $facts['mountpoints']['/tmp']['options'])
}
else {
$tmp_mountpoint_noexec = false
}
case $facts['os']['family'] {
'Suse': {
$os_abbreviation = 'sles'
$version_codename = "${os_abbreviation}-${os_version}"
$package_provider = 'rpm'
$package_build = "1.sles${os_version}"
$init_config_path = '/etc/sysconfig/puppetserver'
}
'Debian': {
$version_codename = $facts['os']['distro']['codename']
$package_provider = 'dpkg'
$package_build = "1${version_codename}"
$init_config_path = '/etc/default/puppetserver'
}
# default is RedHat based systems
default: {
case $os_name {
'Fedora': {
$os_abbreviation = 'fedora'
$package_build = "1.fc${os_version}"
}
default: {
$os_abbreviation = 'el'
$package_build = "1.el${os_version}"
}
}
$version_codename = "${os_abbreviation}-${os_version}"
$package_provider = 'rpm'
# init config
$init_config_path = '/etc/sysconfig/puppetserver'
}
}
case $os_name {
'Rocky': {
$manage_init_config = true
$init_config_template = 'puppet/init/puppetserver.Rocky.epp'
}
default: {
$manage_init_config = false # not implemented
$init_config_template = undef
}
}
$confdir = '/etc/puppetlabs/puppet'
$server_confdir = '/etc/puppetlabs/puppetserver'
$puppet_config = "${confdir}/puppet.conf"
$fileserverconfig = "${confdir}/fileserver.conf"
$agent_package_name = 'puppet-agent'
$server_package_name = 'puppetserver'
$r10k_package_name = 'r10k'
$ruby_path = '/opt/puppetlabs/puppet/bin/ruby'
$gem_path = '/opt/puppetlabs/puppet/bin/gem'
$r10k_path = '/opt/puppetlabs/puppet/bin/r10k'
$r10k_cachedir = '/var/cache/r10k'
$puppet_path = '/opt/puppetlabs/puppet/bin/puppet'
$service_name = 'puppetserver'
$r10k_config_file = '/etc/puppetlabs/r10k/r10k.yaml'
$eyaml_keys_path = "${confdir}/keys"
$eyaml_public_key = 'public_key.pkcs7.pem'
$eyaml_private_key = 'private_key.pkcs7.pem'
if $facts['puppet_ssldir'] {
$ssldir = $facts['puppet_ssldir']
}
else {
$ssldir = "${confdir}/ssl"
}
# Client authentication
if $facts['puppet_sslpaths'] {
$certdir = $facts['puppet_sslpaths']['certdir']['path']
$privatekeydir = $facts['puppet_sslpaths']['privatekeydir']['path']
$requestdir = $facts['puppet_sslpaths']['requestdir']['path']
$publickeydir = $facts['puppet_sslpaths']['publickeydir']['path']
}
else {
# fallback to predefined
$certdir = "${ssldir}/certs"
$privatekeydir = "${ssldir}/private_keys"
$requestdir = "${ssldir}/certificate_requests"
$publickeydir = "${ssldir}/public_keys"
}
# dont't change values below - never!
$vardir = '/opt/puppetlabs/server/data/puppetserver'
$puppet_server = '/opt/puppetlabs/bin/puppetserver'
$logdir = '/var/log/puppetlabs/puppetserver'
$rundir = '/var/run/puppetlabs/puppetserver'
$pidfile = '/var/run/puppetlabs/puppetserver/puppetserver.pid'
$codedir = '/etc/puppetlabs/code'
# environmentpath
# A search path for directory environments, as a list of directories
# separated by the system path separator character. (The POSIX path
# separator is ':', and the Windows path separator is ';'.)
# This setting must have a value set to enable directory environments. The
# recommended value is $codedir/environments. For more details,
# see https://docs.puppet.com/puppet/latest/environments.html
# Default: $codedir/environments
$environmentpath = "${codedir}/environments"
# external_nodes
# The external node classifier (ENC) script to use for node data. Puppet
# combines this data with the main manifest to produce node catalogs.
# To enable this setting, set the node_terminus setting to exec.
# This setting’s value must be the path to an executable command that can
# produce node information. The command must:
# * Take the name of a node as a command-line argument.
# * Return a YAML hash with up to three keys:
# - classes — A list of classes, as an array or hash.
# - environment — A string.
# - parameters — A list of top-scope variables to set, as a hash.
# * For unknown nodes, exit with a non-zero exit code.
# Generally, an ENC script makes requests to an external data source.
# For more info, see the ENC documentation.
# Default: none
$external_nodes = '/usr/local/bin/puppet_node_classifier'
$localcacert = "${certdir}/ca.pem"
$hostcrl = "${ssldir}/crl.pem"
# https://www.puppet.com/docs/puppet/7/lang_facts_builtin_variables.html#lang_facts_builtin_variables-agent-facts
if $facts['clientcert'] {
$clientcert = $facts['clientcert']
}
else {
# fallback to fqdn
$clientcert = $facts['networking']['fqdn']
}
$hostcert = "${certdir}/${clientcert}.pem"
$hostprivkey = "${privatekeydir}/${clientcert}.pem"
$hostpubkey = "${publickeydir}/${clientcert}.pem"
$hostreq = "${requestdir}/${clientcert}.pem"
}
|