From b2566fd908d2387868dd4812135da672accd1526 Mon Sep 17 00:00:00 2001 From: Andreas Gerstenberg Date: Fri, 13 Jan 2017 12:01:45 +0100 Subject: [PATCH] mbvd-shes: initial --- customer/mbvd-shes/common.yaml | 40 +++++++++++++++ ...-shes-mercedes-event-de.pixelpark.net.yaml | 50 ++++++++++++++++++- ...-shes-mercedes-event-de.pixelpark.net.yaml | 46 ++++++++++++++++- 3 files changed, 134 insertions(+), 2 deletions(-) create mode 100644 customer/mbvd-shes/common.yaml diff --git a/customer/mbvd-shes/common.yaml b/customer/mbvd-shes/common.yaml new file mode 100644 index 00000000..4f421ec9 --- /dev/null +++ b/customer/mbvd-shes/common.yaml @@ -0,0 +1,40 @@ +--- +site::role: base +site::additional_classes: + - site::profile::ruby_passenger + - site::profile::mysql_server + +accounts::users: + deploy.hamburg: + uid: 60201 + shell: "bash" + apply: true + sudo: true + sudo_cmds: + - CHOWNSHES + keys: + key1: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQDdaOjZvSaf/wtaS5F8bu4+gIUXha2DiRBZo2pLx79N5fUkBK1mha8IHfQ40iRJwQzr1cKRswEi3Qo8pGYOzNoPs9ugw+r07eMrwLGoNGIFTCv0SaukmtwM+9S1z7hxyy21TztQCAcmgKN4l8jvMKFKb/3Qm+UkroHAf5B+VhlGL/IZXnuSXlTHgKcnS2HtbXlzWRkWHgyjwxT6UmSO31Eyg1SRJ9mFdxwjZo5lyzbBP/gqAQqzxoZX7U4Ty2loO6hqNusf25Byn2qK3x+dQGZ9g/t1luW2oTFavWwY0PR/djyL1ndlgZ69jCAY3YYvHRvoD91gJjHA582hVg4IkCHx" + key2: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQCx1a+GIaWp4/O1puvX9gYt5EMZcqNLyoxSU5sYNrIpuUYZ4mit2eVtsTbuE+gymXZ570v09sTI667p7I/cyoZ8HHsZ9x8yjDEDidKuRD7Sq+aqIdCcH3HLBZdEES8FvqyrcQNLbe4nPdqSrWievoR8VH6/wy7nhVb0A/UGID2XkZLVFJjlAfU22CxuererrCBASJo31ZkW/ScE1Lii2nBvs7PxL9+hyDnyP7fsVV/2fcy85c2reP3YO2jOTeVGnATPUNaL9KbonhxHr+SEWSvsE4tUlumxcqLa8wd/YQqrm0sO0GdqPEIfiUmhj24AltIxwmv/KnC8HODr7SQMyEsH" + key3: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQC75zCFdjIkjdRV+1FuD9nO9a9UNAl0mnsMXLdHjC4U56+FUMPEcCIfn9AuV392fP/o0XXW5kevz7eyjuUitGLRCSsArxJ6G2wacm5KGf37k3Qmigts3CKG7t7kk1496z0Fq6UNfHQaQGCdhtAyt/eT0kthcU+x0p+pXAN6A+jId6EcEjtkp+CwaiqwU6sEYazJqDNmSeo2eYxN+ZN0xtLnopFYV4LCn378v+btdBFj3KY+qhYyOVqady6ZuVHqnKya03Xug+K80uaBlehTHD0dGbjFVLEKGsJqOyJZSgkZATfgcfUCQkWy+hy4wfC165k2FQx0A1+7BrNiPt7fQ6cH" + key4: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQDIOt8MfbBxLSVZMrvWY3Yq24VMPbvx7I65Sdh8zqX2+QyJWv9vl9A6JMeXZbl20lXEmo0+q2HxxS/ZLq4v6ZyCdNCVIidTsYMo+w08+/QscWLwAv/rCMCdUOJnwpCAzr1DFMYJxRAEvy4AKppvsoYZ3KZkzKnmXbrN1267T+uKCyLhB/n+6rFVNc2Yso0OsUivg/Hcb2SWy9SUCpN85kubuQvLh4g8WmRGTB8CQtwYTA269KETZ86/gEErf8y2Sc9MwYEe91JW9hhnSVUKBDkEfxdU3Ctn3K5JHB49jq67spx1I0HDlB+M+u5TcIaU5gsPpgagY5NCIKGWgCmzANlZ" + key5: + key: "AAAAB3NzaC1yc2EAAAADAQABAAABAQCcA9sDPUizm9LRPYsSQSkkXRlGfhkZcCeQ8XDTbvHLjLlQdJznx3ezpxtmIgKLzMb3Hd3YNB+CAjD//iIDgJkwxNU2qGjm4vJT0WjQ2dwbPyVgN+Ik1nBhqWC2gD5UnDIVULYP5WUkgPPP1if64Q5fnfD9aTkUNOYJ4u9Th7As97e48S+/Z8vqw9EDcr3ZC+OzU7ezU65SHH4mpC1MvLW4EG0DU+omYDuMBusRA9SPx9uAebmoVVqZ23YmK5h9gh8Nc/Av5r6yfYKtkFt6CliGc7qZj56ONfHnP79CgVIlJ5NIHU2s27tTJmoDOHOkJZ11TuQp4HbuMAUAWHi6Aie7" + comment: "Deployuser Hamburg" + group: shes + # temporär + groups: apache + +sudo::configs: + cmd_alias: + priority: "05" + content: | + Cmnd_Alias CHOWNSHES = /bin/chown -R shes\:shes /var/www/shes + becomeApache: + priority: "06" + content: | + deploy.hamburg ALL=(apache) NOPASSWD: ALL + deploy.hamburg ALL=(shes) NOPASSWD: ALL \ No newline at end of file diff --git a/customer/mbvd-shes/stage-web-shes-mercedes-event-de.pixelpark.net.yaml b/customer/mbvd-shes/stage-web-shes-mercedes-event-de.pixelpark.net.yaml index 4c3c2b5e..93203e1d 100644 --- a/customer/mbvd-shes/stage-web-shes-mercedes-event-de.pixelpark.net.yaml +++ b/customer/mbvd-shes/stage-web-shes-mercedes-event-de.pixelpark.net.yaml @@ -1,2 +1,50 @@ --- -site::role: base +mysql::server::root_password: ENC[PKCS7,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] +mysql::server::backup::backuppassword: ENC[PKCS7,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] +site::profile::mysql_server::databases: + shes: + user: shes + password: ENC[PKCS7,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] + +site::profile::apache::htdigest: + server: + www: ENC[PKCS7,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] + +sudo::configs: + deploy.hamburg: + priority: "06" + content: | + deploy.hamburg ALL=(apache) NOPASSWD: ALL + +site::profile::ruby_passenger::projects: + shes: + servername: stage-shes-mercedes-event-de.pixelpark.net # WAF Domain + serveraliases: + - stage-web-shes-mercedes-event-de.pixelpark.net # Realserver Domain + ssl_cert: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + ssl_key: '/etc/pki/tls/private/wildcard.pixelpark.net-key.pem' + ssl_chain: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + passenger_user: shes + passenger_app_env: stage + approot_owner: apache + approot: /var/www/shes + ruby_version: 'ruby-2.2.5' + directories: + - directory_root: + provider: directory + path: '/var/www/shes/current/public' + options: + - FollowSymLinks + - MultiViews + allow_override: + - All + directoryindex: index.php index.html + - location1: + provider: location + path: '/' + auth_type: Digest + auth_name: server + auth_digest_provider: file + auth_digest_algorithm: MD5 + auth_user_file: '/etc/httpd/htdigest' + auth_require: 'valid-user' diff --git a/customer/mbvd-shes/web-shes-mercedes-event-de.pixelpark.net.yaml b/customer/mbvd-shes/web-shes-mercedes-event-de.pixelpark.net.yaml index 4c3c2b5e..d6d7bb63 100644 --- a/customer/mbvd-shes/web-shes-mercedes-event-de.pixelpark.net.yaml +++ b/customer/mbvd-shes/web-shes-mercedes-event-de.pixelpark.net.yaml @@ -1,2 +1,46 @@ --- -site::role: base +mysql::server::root_password: ENC[PKCS7,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] +mysql::server::backup::backuppassword: ENC[PKCS7,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] +site::profile::mysql_server::databases: + shes: + user: shes + password: ENC[PKCS7,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] + +site::profile::apache::htdigest: + server: + www: ENC[PKCS7,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] + +site::profile::ruby_passenger::projects: + shes: + servername: shes-mercedes-event-de.pixelpark.net # WAF Domain + serveraliases: + - shes-mercedes-event.de # Kundendomain + - www.shes-mercedes-event.de + - web-shes-mercedes-event-de.pixelpark.net # Realserver Domain + ssl_cert: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + ssl_key: '/etc/pki/tls/private/wildcard.pixelpark.net-key.pem' + ssl_chain: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + passenger_user: shes + passenger_app_env: live + approot: /var/www/shes + approot_owner: apache + ruby_version: 'ruby-2.2.5' + directories: + - directory_root: + provider: directory + path: '/var/www/shes/current/public' + options: + - FollowSymLinks + - MultiViews + allow_override: + - All + directoryindex: index.php index.html + - location1: + provider: location + path: '/' + auth_type: Digest + auth_name: server + auth_digest_provider: file + auth_digest_algorithm: MD5 + auth_user_file: '/etc/httpd/htdigest' + auth_require: 'valid-user' -- 2.39.5