...
| Key | Description | Example | Created by | Data-type | Used by: |
|---|---|---|---|---|---|
| profile::haproxy::management::ipv4 | The IPv4 address used in front og the loadbalancer used for managemnet services | '192.0.2.151' | N/A | String | role::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management |
| profile::haproxy::management::ipv4::id | The VRRP id used by the IPv4 VRRP instance. | 11 | N/A | Integer | role::bootstrap, role::balancer::management |
| profile::haproxy::management::ipv4::priority | The VRRP priority used by the IPv4 VRRP instance. | 10 | N/A | Integer | role::bootstrap, role::balancer::management |
| profile::haproxy::management::ipv6 | The IPv4 address used in front og the loadbalancer used for managemnet services | '2001:db8:beef:707::7b1' | N/A | String | role::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management |
| profile::haproxy::management::ipv6::id | The VRRP id used by the IPv6 VRRP instance. | 12 | N/A | Integer | role::bootstrap, role::balancer::management |
| profile::haproxy::management::ipv6::priority | The VRRP priority used by the IPv6 VRRP instance. | 10 | N/A | Integer | role::bootstrap, role::balancer::management |
...
| Key | Description | Example | Created by | Data-type | Used by |
|---|---|---|---|---|---|
| profile::mysqlcluster::servers | This is a list over IPv4 addresses used by servers in the cluster. This list are used when a server starts up, to discover at least one of the machines already in the cluster. | - '192.0.2.201' | N/A | String | role::bootstrap, role::mysql |
| profile::mysqlcluster::master | The fqdn of one of the mysql-servers. This are in theory used by the puppet-galera module to start one server in case all servers are down. | 'mysql1.example.com' | N/A | String | role::bootstrap, role::mysql |
| profile::mysqlcluster::root_password | This is the password of the mysql root user | 'OwT$Etc$=|;h(=upip#3' | pwgen -s -y 20 -1 | String | role::bootstrap, role::mysql |
| profile::mysqlcluster::status_password | This is the password of the mysql status user | ';^8P"M,Oem6le\T"am!0' | pwgen -s -y 20 -1 | String | role::bootstrap, role::mysql |
| profile::mysqlcluster::haproxy_password | This is the password of the mysql haproxy user. This user is so that haproxy can create more robust checks than just see if port 3306 is open. | '4g36-&jHNFF?J-7yQZHa' | pwgen -s -y 20 -1 | String | role::bootstrap, role::mysql |
Postgres
Our postgres servers uses the following hiera keys:
| Key | Description | Example | Created by | Data-type | Used by |
|---|---|---|---|---|---|
| profile::postgres::ipv4 | The IPv4 address to use in front of the postgres servers. | '192.0.2.204' | N/A | String | role::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db |
| profile::postgres::ipv4::id | The VRRP id to use for the VRRP instance negotiating for postgres's IPv4 address | 13 | N/A | Integer | role::postgresbootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::ipv4::priority | The VRRP priority to use for the VRRP instance negotiating for postgres's IPv4 address | 10 | N/A | Integer | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::ipv6 | The IPv6 address to use in front of the postgres servers. | '2001:db8:beef:707::9:6591' | N/A | String | role::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db |
| profile::postgres::ipv6::id | The VRRP id to use for the VRRP instance negotiating for postgres's IPv6 address | 14 | N/A | Integer | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::ipv6::priority | The VRRP priority to use for the VRRP instance negotiating for postgres's IPv6 address | 10 | N/A | Integer | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::masterserver | A fqdn identifying the postgres server which is supposed to be the master. This affects which servers are going to create databases and users. | 'pgsql1.example.com' | N/A | String | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::password | The password for the "postgres" postgresql user. | 'd4Cwfl)W}onosE~Y[]G,' | pwgen -s -y 20 -1 | String | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::postgres::replicatorpassword | The password used for the "replicator" postgresql user. | 'Gz,j*>Qt'dF{-\Sr4N-_' | pwgen -s -y 20 -1 | String | role::bootstrap, role::postgres::master, role::postgres::slave |
Puppet
These are our puppet-related hiera keys:
| Key | Description | Example | Created by | Data-type | Used by |
|---|---|---|---|---|---|
| profile::puppet::aptkey | The gpg key used to authenticate the puppetlabs apt repository | '6F6B15509CF8E59E6E469F327F438280EF8D349F' | puppetlabs | String | All |
| profile::puppet::caserver | The fqdn of the puppetca server | 'puppetca.example.com' | N/A | String | All |
| profile::puppet::environment | The puppet environment a certain host should be configured to use. This needs to be a valid puppet environment, but it will also be owerridden by the ENC, so it is not important exactly which environment are listed her as long as it exists. If you do not use an ENC, this is the puppet environment a client will retrieve config from. | 'production' | N/A | String | All |
| profile::puppet::hostname | This is the fqdn the clients use to contact the puppetmasters. | 'puppet.example.com' | N/A | String | All |
| profile::puppet::r10k::repo | The path to the git-repository which r10k uses to retrieve environments and modules. | 'https://github.com/myorg/r10k.git' | N/A | String | role::bootstrap, role::puppet::server, role::puppet::ca |
| profile::puppet::runinterval | How often the puppet client should run. Given as a string consisting of a number and a prefix (h, m). | '60m' | N/A | String | All |
| profile::puppetdb::database::name | The name of the postgres database used by puppetdb | 'puppetdb' | N/A | String | role::bootstrap, role::puppet::db, role::postgres::master |
| profile::puppetdb::database::user | The username of the postgres database used by puppetdb | 'puppetdb' | N/A | String | role::bootstrap, role::puppet::db, role::postgres::master |
| profile::puppetdb::database::pass | The password of the postgres database used by puppetdb | 'teY.>&3@Ub$X-OGxOFQ7' | pwgen -s -y 20 -1 | String | role::bootstrap, role::puppet::db, role::postgres::master |
| profile::puppetdb::hostname | The hostname which the puppetservers use to contact the puppetdb service | 'puppetdb.example.com' | N/A | String | role::bootstrap, role::puppet::server role::puppet::ca |
Redis
| Key | Description | Example | Created by | Data-type | Used by: |
|---|---|---|---|---|---|
| profile::redis::master | Name or IP address of initial redis master | 'redis1.cloud.domain.com' | N/A | String | role::redis |
| profile::redis::nodetype | Defined on each redis-node. Only valid values are 'master' or 'slave' | 'master' | N/A | String | role::redis |
| profile::redis::ip | The IP redis clients should contact redis on. Typically the haproxy ip | '192.168.100.10' or "%{hiera('profile::haproxy::management::ip')}" or redis.cloud.domain.com | N/A | String | All |