...
| Key | Description | Example | Created by | Data-type | Used by |
|---|---|---|---|---|---|
| profile::networks::<networkname>::domain | The network-specific domain-name. | 'management.example.com' | N/A | String | role::bootstrap, role::dashboard |
| profile::networks::<networkname>::ipv4::dynamicrange | (Optional) The range of ip-addresses for dynamic assignment to unregistered hosts. | '192.0.2.230 192.0.2.240' | N/A | String | role::bootstrap, role::dashboard, role::dhcp |
| profile::networks::<networkname>::ipv4::gateway | The IPv4 gateway on the network | '192.0.2.1' | N/A | String | role::bootstrap, role::dashboard, role::dhcp |
| profile::networks::<networkname>::ipv4::id | The IPv4 network ID. | '192.0.2.0' | N/A | String | role::bootstrap, role::dashboard, role::dhcp |
| profile::networks::<networkname>::ipv4::mask | The IPv4 network mask | '255.255.255.0' | N/A | String | role::bootstrap, role::dashboard, role::dhcp |
| profile::networks::<networkname>::ipv4::prefix | The IPv4 CIDR prefix. | '192.0.2.0/24' | N/A | String | Most roles. Used as a source-net in firewall rules. |
| profile::networks::<networkname>::ipv4::reserved | (Optional) list over address-ranges which the dashboard should not assign to hosts. | - '192.0.2.245-192.0.2.248' | N/A | String | role::bootstrap, role::dashboard |
| profile::networks::<networkname>::ipv6::prefix | The IPv6 CIDR prefix | '2001:db8:beef:707::/64' | N/A | String | role::bootstrap, role::postgres::master, role::postgres::slave |
| profile::networks::<networkname>::vlanid | The VLAN ID of the network. | 504 | N/A | Integer | role::kvm |
Users
To create users the following general keys are needed:
| Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
|---|---|---|---|---|---|---|
| profile::users | A list over usernames which puppet should configure users for | - 'eigil' | N/A | List of Strings | users.yaml | All machines |
For each username the following keys should be created.
| Key | Description | Example | Created by | Data-type | Datafile: | Used by: |
|---|---|---|---|---|---|---|
| profile::user::<username>::uid | The user-id | 801 | N/A | Integer | users.yaml | All machines |
| profile::user::<username>::groups | A list over groups the user should belong to. | - 'sudo' | N/A | List of strings | users.yaml | All machines |
| profile::user::<username>::hash | The password-hash to be injected into /etc/shadow | String | users.yaml | All machines | ||
| profile::user::<username>::keys | List over ssh-keys which should be added to the users authorized_keys |
| N/A | List of strings | users.yaml | All machines |
| profile::user::<username>::key::<keyname> | A specific ssh key. Needs one for each key listed in profile::user::<username>::keys | N/A | String | users.yaml | All machines |
Ceph
These keys will be subject to change, when they get to be a part of new roles
...