From 28e3f0416552e86b0f67c019ad5ebcb947168b66 Mon Sep 17 00:00:00 2001 From: Andreas Gerstenberg Date: Tue, 23 Jan 2018 13:37:17 +0100 Subject: [PATCH] mbvd-a-klasse initial setup --- customer/mbvd-a-klasse/common.yaml | 46 +++++++++++++++++++ ...tage-web-a-klasse-mb-de.pixelpark.net.yaml | 42 ++++++++++++++++- .../web-a-klasse-mb-de.pixelpark.net.yaml | 41 ++++++++++++++++- 3 files changed, 127 insertions(+), 2 deletions(-) create mode 100644 customer/mbvd-a-klasse/common.yaml diff --git a/customer/mbvd-a-klasse/common.yaml b/customer/mbvd-a-klasse/common.yaml new file mode 100644 index 00000000..d4bbe260 --- /dev/null +++ b/customer/mbvd-a-klasse/common.yaml @@ -0,0 +1,46 @@ +--- +infra::role: base +infra::additional_classes: + - infra::profile::ruby_passenger + - infra::profile::mysql_server + - git + +infra::additional_packages: + ImageMagick: {} + +accounts::users: + jenkins: + apply: true + group: "apache" + deploy.hamburg: + uid: 60201 + shell: "bash" + apply: true + sudo: true + sudo_cmds: + - CHOWNAKLASSE + keys: + sandra.streimelweger: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQCx1a+GIaWp4/O1puvX9gYt5EMZcqNLyoxSU5sYNrIpuUYZ4mit2eVtsTbuE+gymXZ570v09sTI667p7I/cyoZ8HHsZ9x8yjDEDidKuRD7Sq+aqIdCcH3HLBZdEES8FvqyrcQNLbe4nPdqSrWievoR8VH6/wy7nhVb0A/UGID2XkZLVFJjlAfU22CxuererrCBASJo31ZkW/ScE1Lii2nBvs7PxL9+hyDnyP7fsVV/2fcy85c2reP3YO2jOTeVGnATPUNaL9KbonhxHr+SEWSvsE4tUlumxcqLa8wd/YQqrm0sO0GdqPEIfiUmhj24AltIxwmv/KnC8HODr7SQMyEsH" + tim.schroeder: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQDIOt8MfbBxLSVZMrvWY3Yq24VMPbvx7I65Sdh8zqX2+QyJWv9vl9A6JMeXZbl20lXEmo0+q2HxxS/ZLq4v6ZyCdNCVIidTsYMo+w08+/QscWLwAv/rCMCdUOJnwpCAzr1DFMYJxRAEvy4AKppvsoYZ3KZkzKnmXbrN1267T+uKCyLhB/n+6rFVNc2Yso0OsUivg/Hcb2SWy9SUCpN85kubuQvLh4g8WmRGTB8CQtwYTA269KETZ86/gEErf8y2Sc9MwYEe91JW9hhnSVUKBDkEfxdU3Ctn3K5JHB49jq67spx1I0HDlB+M+u5TcIaU5gsPpgagY5NCIKGWgCmzANlZ" + sidney.jansen: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQDEr3bnmo47iQIMvpdFN6khFPBTItqapoy1L+Cj9XHXkkuOesuGNDw56AEomzgpRn+3GqXNENWgTd4nwUGCCbQLc4H2Uk3XXOk5oDZYpCOFSJ3T6uS6s7+kEky+68ocWjcI5oV+0g9dSDt5fpS13LDxnPNfmBYwJzfOjrtXddITVehjQf9Utft2M057VJ9cQNEjpAMehIsbqhWR2yuDUraVpc/wSOBjr52A88gfloO4U3JMKPsTu/vnTvJyG45UalhTScavB+6Y662uesi4XSjmv+ZUUnMToSh4jJU0Wh5QqVxz0Mqhj6w5SOqNSk5p97JJn14RvsbxiiEv0ZDvFVBn" + + jenkins: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQCcA9sDPUizm9LRPYsSQSkkXRlGfhkZcCeQ8XDTbvHLjLlQdJznx3ezpxtmIgKLzMb3Hd3YNB+CAjD//iIDgJkwxNU2qGjm4vJT0WjQ2dwbPyVgN+Ik1nBhqWC2gD5UnDIVULYP5WUkgPPP1if64Q5fnfD9aTkUNOYJ4u9Th7As97e48S+/Z8vqw9EDcr3ZC+OzU7ezU65SHH4mpC1MvLW4EG0DU+omYDuMBusRA9SPx9uAebmoVVqZ23YmK5h9gh8Nc/Av5r6yfYKtkFt6CliGc7qZj56ONfHnP79CgVIlJ5NIHU2s27tTJmoDOHOkJZ11TuQp4HbuMAUAWHi6Aie7" + comment: "Deployuser Hamburg" + group: aklasse + groups: + - apache + +sudo::configs: + cmd_alias: + priority: "05" + content: | + Cmnd_Alias CHOWNAKLASSE = /bin/chown -R aklasse\:aklasse /var/www/aklasse + becomeApache: + priority: "06" + content: | + deploy.hamburg ALL=(apache) NOPASSWD: ALL + deploy.hamburg ALL=(aklasse) NOPASSWD: ALL diff --git a/customer/mbvd-a-klasse/stage-web-a-klasse-mb-de.pixelpark.net.yaml b/customer/mbvd-a-klasse/stage-web-a-klasse-mb-de.pixelpark.net.yaml index 3b0442d3..b74ca83e 100644 --- a/customer/mbvd-a-klasse/stage-web-a-klasse-mb-de.pixelpark.net.yaml +++ b/customer/mbvd-a-klasse/stage-web-a-klasse-mb-de.pixelpark.net.yaml @@ -1,2 +1,42 @@ --- -infra::role: base +mysql::server::root_password: ENC[PKCS7,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] +mysql::server::backup::backuppassword: ENC[PKCS7,MIIBiQYJKoZIhvcNAQcDoIIBejCCAXYCAQAxggEhMIIBHQIBADAFMAACAQEwDQYJKoZIhvcNAQEBBQAEggEAH3KByHiV948pwr4PedBmnMqhMU6L+crClXxVNzgy0oay/Mh0qEpxa7tJu/PR3sWyb5GBUxR0TkMrfV+Bh+ST92pljOzVmoP2yLKpG6aqs8qT17XFi6Fq3lOggLMdK+PU6JDMlOhaGCeYhqnu/kEWLXqNINDBc0ac3R3wMLLqXfbHWuYntOKidBbCJZSk0Qs+uo/9xu3tFZZmaedZfBJR/pVjAYoTbzs8I7kAsPBo4yuO13J7oY9emyXSeF3h1ox9jxrLE3TZNuB8bv40mfoU/pGkk6NEVXPT5UDK7U4+GSm6Ftu/ECfMGE5lFNjX0lnK8/q8dULobAs+7lKUrrd8FzBMBgkqhkiG9w0BBwEwHQYJYIZIAWUDBAEqBBBZBh9rTMWUOwLPNAuasUTNgCBBjT4pppjE09MzD1oYtJ4lLuDcO7o0IBVA/bx3+JvlMA==] +infra::profile::mysql_server::databases: + aklasse: + user: aklasse + password: ENC[PKCS7,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] + +infra::profile::apache::htdigest: + server: + www: ENC[PKCS7,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] + +infra::profile::ruby_passenger::projects: + aklasse: + servername: stage-specials.mercedes-benz.de # falls Mercedes den DNS Eintrag setzt + serveraliases: + - stage-web-a-klasse-mb-de.pixelpark.net + - stage-specials-mercedes-benz-de.pixelpark.net # VIP + # es werden LB und WAF verwendet - SSL Certs liegen im Loadbalancer + ssl: false + passenger_user: aklasse + passenger_app_env: stage + approot: /var/www/aklasse + approot_owner: apache + ruby_version: 'ruby-2.2.5' + directories: + - directory_root: + provider: directory + path: '/var/www/aklasse/public' + options: + - FollowSymLinks + - MultiViews + allow_override: + - All + - provider: location + path: '/' + auth_type: Digest + auth_name: server + auth_digest_provider: file + auth_digest_algorithm: MD5 + auth_user_file: '/etc/httpd/htdigest' + auth_require: 'valid-user' \ No newline at end of file diff --git a/customer/mbvd-a-klasse/web-a-klasse-mb-de.pixelpark.net.yaml b/customer/mbvd-a-klasse/web-a-klasse-mb-de.pixelpark.net.yaml index 3b0442d3..650df0a0 100644 --- a/customer/mbvd-a-klasse/web-a-klasse-mb-de.pixelpark.net.yaml +++ b/customer/mbvd-a-klasse/web-a-klasse-mb-de.pixelpark.net.yaml @@ -1,2 +1,41 @@ --- -infra::role: base +mysql::server::root_password: ENC[PKCS7,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] +mysql::server::backup::backuppassword: ENC[PKCS7,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] +infra::profile::mysql_server::databases: + aklasse: + user: aklasse + password: ENC[PKCS7,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] + +infra::profile::apache::htdigest: + server: + www: ENC[PKCS7,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] + +infra::profile::ruby_passenger::projects: + aklasse: + servername: web-a-klasse-mb-de.pixelpark.net + serveraliases: + - specials.mercedes-benz.de + # es werden LB und WAF verwendet - SSL Certs liegen im Loadbalancer + ssl: false + passenger_user: aklasse + passenger_app_env: live + approot: /var/www/aklasse + approot_owner: apache + ruby_version: 'ruby-2.2.5' + directories: + - directory_root: + provider: directory + path: '/var/www/aklasse/public' + options: + - FollowSymLinks + - MultiViews + allow_override: + - All + - provider: location + path: '/' + auth_type: Digest + auth_name: server + auth_digest_provider: file + auth_digest_algorithm: MD5 + auth_user_file: '/etc/httpd/htdigest' + auth_require: 'valid-user' \ No newline at end of file -- 2.39.5