clients: none
- name: blogs
run_list:
- - recipe[accounts::default]
- recipe[blogs::default]
- name: clamav
run_list:
mpm: prefork
- name: donate
run_list:
- - recipe[accounts::default]
- - role[donate]
+ - recipe[donate::default]
attributes:
apache:
mpm: prefork
- recipe[fail2ban::default]
- name: forum
run_list:
- - recipe[accounts::default]
- - role[forum]
+ - recipe[forum::default]
+ attributes:
+ apache:
+ mpm: prefork
- name: incron
run_list:
- recipe[incron::default]
- name: letsencrypt
run_list:
- - recipe[accounts::default]
- - recipe[apt::default]
- role[letsencrypt]
attributes:
apt:
- recipe[osmosis::default]
- name: otrs
run_list:
- - recipe[accounts::default]
- - recipe[chef::default]
- - role[otrs]
+ - recipe[otrs::default]
- name: planet
run_list:
- recipe[planet::default]
- recipe[spamassassin::default]
- name: squid
run_list:
- - recipe[apt::default]
- recipe[squid::default]
- name: tools
run_list:
version "1.0.0"
supports "ubuntu"
+depends "accounts"
depends "apache"
depends "git"
# limitations under the License.
#
+include_recipe "accounts"
include_recipe "apache"
include_recipe "git"
--- /dev/null
+default[:accounts][:users][:donate][:status] = :role
version "1.0.0"
supports "ubuntu"
+depends "accounts"
depends "apache"
depends "mysql"
depends "git"
# limitations under the License.
#
+include_recipe "accounts"
include_recipe "apache"
include_recipe "mysql"
include_recipe "git"
--- /dev/null
+default[:accounts][:users][:forum][:status] = :role
version "1.0.0"
supports "ubuntu"
+depends "accounts"
depends "apache"
depends "git"
depends "mysql"
# See the License for the specific language governing permissions and
# limitations under the License.
#
+
+include_recipe "accounts"
include_recipe "apache"
include_recipe "git"
include_recipe "mysql"
--- /dev/null
+default[:accounts][:users][:letsencrypt][:status] = :role
version "1.0.0"
supports "ubuntu"
+depends "accounts"
depends "apache"
# limitations under the License.
#
+include_recipe "accounts"
include_recipe "apache"
keys = data_bag_item("chef", "keys")
user "letsencrypt"
group "letsencrypt"
subscribes :run, "template[/srv/acme.openstreetmap.org/requests/#{name}]"
+ not_if { ENV["TEST_KITCHEN"] }
end
end
action :nothing
end
+ directory "/etc/chef/ohai" do
+ owner "root"
+ group "root"
+ mode 0o755
+ recursive true
+ end
+
declare_resource :template, plugin_path do
source new_resource.template
owner "root"
default[:otrs][:version] = "6.0.8"
default[:otrs][:user] = "otrs"
default[:otrs][:group] = nil
-default[:otrs][:database_cluster] = "9.5/main"
+default[:otrs][:database_cluster] = "10/main"
default[:otrs][:database_name] = "otrs"
default[:otrs][:database_user] = "otrs"
-default[:otrs][:database_password] = ""
-default[:otrs][:site] = nil
+default[:otrs][:database_password] = "otrs"
+default[:otrs][:site] = "otrs"
+
+default[:postgresql][:versions] |= ["10"]
+
+default[:accounts][:users][:otrs][:status] = :role
+default[:accounts][:groups][:"www-data"][:members] = [:otrs]
version "1.0.0"
supports "ubuntu"
+depends "accounts"
depends "apache"
+depends "chef"
depends "postgresql"
depends "tools"
# limitations under the License.
#
-include_recipe "tools"
-include_recipe "postgresql"
+include_recipe "accounts"
include_recipe "apache"
+include_recipe "postgresql"
+include_recipe "tools"
passwords = data_bag_item("otrs", "passwords")
# limitations under the License.
#
+package "locales-all"
package "postgresql-common"
node[:postgresql][:versions].each do |version|
version "1.0.0"
supports "ubuntu"
+depends "apt"
depends "munin"
depends "systemd"
# limitations under the License.
#
+include_recipe "apt"
+
if node[:squid][:version] >= 3
apt_package "squid" do
action :unlock
name "donate"
description "Role applied to all donate servers"
-default_attributes(
- :accounts => {
- :users => {
- :donate => {
- :status => :role,
- :members => [:grant, :tomh, :matt]
- }
- }
- }
-)
-
run_list(
"recipe[donate]"
)
description "Role applied to all forum servers"
default_attributes(
- :accounts => {
- :users => {
- :lambertus => {
- :status => :administrator
- },
- :forum => {
- :status => :role,
- :members => [:lambertus, :grant]
- }
- }
- },
:apache => {
:mpm => "prefork",
:timeout => 60,
name "letsencrypt"
description "Role applied to all letsencrypt servers"
-default_attributes(
- :accounts => {
- :users => {
- :letsencrypt => {
- :status => :role
- }
- }
- }
-)
-
run_list(
"recipe[letsencrypt]"
)
description "Role applied to all OTRS servers"
default_attributes(
- :accounts => {
- :users => {
- :otrs => { :status => :role }
- },
- :groups => {
- :"www-data" => {
- :members => [:otrs]
- }
- }
- },
:exim => {
:local_domains => ["otrs.openstreetmap.org"],
:routes => {
},
:otrs => {
:site => "otrs.openstreetmap.org",
- :site_aliases => ["otrs.osm.org"],
- :database_cluster => "10/main",
- :database_name => "otrs",
- :database_user => "otrs",
- :database_password => "otrs"
- },
- :postgresql => {
- :versions => ["10"]
+ :site_aliases => ["otrs.osm.org"]
}
)
projects / chef.git / commitdiff