Saltstack Official Salt Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

pillar.example 8.3KB

11 jaren geleden
11 jaren geleden
11 jaren geleden
11 jaren geleden
11 jaren geleden
11 jaren geleden
11 jaren geleden
11 jaren geleden
7 jaren geleden
7 jaren geleden
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317
  1. salt:
  2. # Set this to true to clean any non-salt-formula managed files out of
  3. # /etc/salt/{master,minion}.d ... You really don't want to do this on 2015.2
  4. # and up as it'll wipe out important files that Salt relies on.
  5. clean_config_d_dir: False
  6. # This state will remove "/etc/salt/minion" when you set this to true.
  7. minion_remove_config: True
  8. # This state will remove "/etc/salt/master" when you set this to true.
  9. master_remove_config: True
  10. # Set this to False to not have the formula install packages (in the case you
  11. # install Salt via git/pip/etc.)
  12. install_packages: True
  13. # to overwrite map.jinja salt packages
  14. lookup:
  15. salt-master: 'salt-master'
  16. salt-minion: 'salt-minion'
  17. salt-syndic: 'salt-syndic'
  18. salt-cloud: 'salt-cloud'
  19. salt-ssh: 'salt-ssh'
  20. # salt master config
  21. master:
  22. fileserver_backend:
  23. - git
  24. - s3fs
  25. - roots
  26. gitfs_remotes:
  27. - git://github.com/saltstack-formulas/salt-formula.git:
  28. - base: develop
  29. s3.keyid: GKTADJGHEIQSXMKKRBJ08H
  30. s3.key: askdjghsdfjkghWupUjasdflkdfklgjsdfjajkghs
  31. s3.buckets:
  32. - bucket1
  33. - bucket2
  34. - bucket3
  35. - bucket4
  36. file_roots:
  37. base:
  38. - /srv/salt
  39. pillar_roots:
  40. base:
  41. - /srv/pillar
  42. # for salt-api with tornado rest interface
  43. rest_tornado:
  44. port: 8000
  45. ssl_crt: /etc/pki/api/certs/server.crt
  46. ssl_key: /etc/pki/api/certs/server.key
  47. debug: False
  48. disable_ssl: False
  49. # for profile configuration as https://docs.saltstack.com/en/latest/topics/tutorials/lxc.html#tutorial-lxc-profiles
  50. lxc.container_profile:
  51. debian:
  52. template: download
  53. options:
  54. dist: debian
  55. release: jessie
  56. arch: amd64
  57. backing: lvm
  58. vgname: kimsufi
  59. size: 10G
  60. lxc.network_profile:
  61. basic:
  62. eth0:
  63. link: lxcbr0
  64. type: veth
  65. flags: up
  66. ## for external auth - LDAP
  67. # filter to use for Active Directory LDAP
  68. auth.ldap.filter: {% raw %}'sAMAccountName={{username}}'{% endraw %}
  69. # filter to use for Most other LDAP servers
  70. auth.ldap.filter: {% raw %}'uid={{ username }}'{% endraw %}
  71. # Define winrepo provider, by default support order is pygit2, gitpython
  72. # Set to gitpython for Debian & Ubuntu to get around saltstack/salt#35993
  73. # where pygit2 is not compiled with pygit2.GIT_FEATURE_HTTPS support
  74. winrepo_provider: gitpython
  75. # optional engine configuration
  76. engines:
  77. slack:
  78. token: xoxp-XXXXX-XXXXXXX
  79. control: True
  80. valid_users:
  81. - someuser
  82. - otheruser
  83. valid_commands:
  84. - test.ping
  85. - list_jobs
  86. aliases:
  87. list_jobs:
  88. type: runner
  89. cmd: jobs.list_jobs
  90. # optional: these reactors will be configured on the master
  91. # They override reactors configured in
  92. # 'salt:reactors' or the old 'salt:reactor' parameters
  93. reactors:
  94. - 'master/deploy':
  95. - /srv/salt/reactors/deploy.sls
  96. # salt minion config:
  97. minion:
  98. # single master setup
  99. master: salt
  100. # multi master setup
  101. #master:
  102. #- salt_master_1
  103. #- salt_master_2
  104. fileserver_backend:
  105. - git
  106. - roots
  107. gitfs_remotes:
  108. - git://github.com/saltstack-formulas/salt-formula.git:
  109. - base: develop
  110. file_roots:
  111. base:
  112. - /srv/salt
  113. pillar_roots:
  114. base:
  115. - /srv/pillar
  116. module_config:
  117. test: True
  118. test.foo: foo
  119. test.bar:
  120. - baz
  121. - quo
  122. test.baz:
  123. spam: sausage
  124. cheese: bread
  125. # salt mine setup
  126. mine_interval: 60
  127. # mine_functions can be set at the top level of the pillar, and
  128. # that is preferable because it doesn't affect the conf file and
  129. # doesn't require a minion restart. However, you can configure it
  130. # here instead if you really want to.
  131. mine_functions:
  132. network.interface_ip: [eth0]
  133. # other 'non-default' config
  134. auth_keytab: /root/auth.keytab
  135. auth_principal: kadmin/admin
  136. # optional engine configuration
  137. engines:
  138. slack:
  139. token: xoxp-XXXXX-XXXXXXX
  140. control: True
  141. valid_users:
  142. - someuser
  143. - otheruser
  144. valid_commands:
  145. - test.ping
  146. - list_jobs
  147. aliases:
  148. list_jobs:
  149. type: runner
  150. cmd: jobs.list_jobs
  151. # optional beacons configuration
  152. beacons:
  153. load:
  154. 1m:
  155. - 0.0
  156. - 2.0
  157. 5m:
  158. - 0.0
  159. - 1.5
  160. 15m:
  161. - 0.1
  162. - 1.0
  163. interval: 10
  164. # Optional reactors: these reactors will be configured on the minion
  165. # They override reactors configured in
  166. # 'salt:reactors' or the old 'salt:reactor' parameters
  167. reactors:
  168. - 'minion/deploy':
  169. - /srv/salt/reactors/deploy.sls
  170. # salt cloud config
  171. cloud:
  172. master: salt
  173. # For non-templated custom cloud provider/profile/map files
  174. providers:
  175. provider-filename1.conf:
  176. vmware-prod:
  177. driver: vmware
  178. user: myusernameprod
  179. password: mypassword
  180. vmware-nonprod:
  181. driver: vmware
  182. user: myusernamenonprod
  183. password: mypassword
  184. profiles:
  185. profile-filename1.conf:
  186. server-non-prod:
  187. clonefrom: rhel6xtemplatenp
  188. grains:
  189. platform:
  190. name: salt
  191. realm: lab
  192. subscription_level: standard
  193. memory: 8GB
  194. num_cpus: 4
  195. password: sUpErsecretey
  196. provider: vmware-nonprod
  197. maps:
  198. map-filename1.map:
  199. server-non-prod:
  200. - host.mycompany.com:
  201. grains:
  202. environment: dev1
  203. # You can take profile and map templates from an alternate location
  204. # if you want to write your own.
  205. template_sources:
  206. providers: salt://salt/files/cloud.providers.d
  207. profiles: salt://salt/files/cloud.profiles.d
  208. maps: salt://salt/files/cloud.maps.d
  209. # These settings are used by the default provider templates and
  210. # only need to be set for the ones you're using.
  211. aws_key: AWSKEYIJSHJAIJS6JSH
  212. aws_secret: AWSSECRETYkkDY1iQf9zRtl9+pW+Nm+aZY95
  213. gce_project: test
  214. gce_service_account_email_address: 867543072364-orl4h2tpp8jcn1tr9ipj@developer.gserviceaccount.com
  215. rsos_user: afeawofghob
  216. rsos_tenant: tenant_id_number
  217. rsos_apikey: WFJIOJEOIGHSOFHESO
  218. rsos_regions:
  219. - ORD
  220. - DFW
  221. - IAD
  222. - SYD
  223. - HKG
  224. ssh_roster:
  225. prod1:
  226. host: host.example.com
  227. user: ubuntu
  228. sudo: True
  229. priv: /etc/salt/ssh_keys/sshkey.pem
  230. gitfs:
  231. keys:
  232. global:
  233. # key and pub end up being the extension used on the key file. values other than key and pub are possible
  234. key: |
  235. -----BEGIN RSA PRIVATE KEY-----
  236. ...........
  237. -----END RSA PRIVATE KEY-----
  238. pub: |
  239. ...........
  240. # These reactors will be configured both in the minion and the master
  241. reactors:
  242. - 'deploy':
  243. - /srv/salt/reactors/deploy.sls
  244. salt_cloud_certs:
  245. aws:
  246. pem: |
  247. -----BEGIN RSA PRIVATE KEY-----
  248. ...........
  249. -----END RSA PRIVATE KEY-----
  250. gce:
  251. pem: |
  252. -----BEGIN RSA PRIVATE KEY-----
  253. ...........
  254. -----END RSA PRIVATE KEY-----
  255. salt_formulas:
  256. git_opts:
  257. # The Git options can be customized differently for each
  258. # environment, if an option is missing in a given environment, the
  259. # value from "default" is used instead.
  260. default:
  261. # URL where the formulas git repositories are downloaded from
  262. # it will be suffixed with <formula-name>.git
  263. baseurl: https://github.com/saltstack-formulas
  264. # Directory where Git repositories are downloaded
  265. basedir: /srv/formulas
  266. # Update the git repository to the latest version (False by default)
  267. update: False
  268. # Options passed directly to the git.latest state
  269. options:
  270. rev: master
  271. dev:
  272. basedir: /srv/formulas/dev
  273. update: True
  274. options:
  275. rev: develop
  276. # Options of the file.directory state that creates the directory where
  277. # the git repositories of the formulas are stored
  278. basedir_opts:
  279. makedirs: True
  280. user: root
  281. group: root
  282. mode: 755
  283. # List of formulas to enable in each environment
  284. list:
  285. base:
  286. - salt-formula
  287. - postfix-formula
  288. dev:
  289. - salt-formula
  290. - postfix-formula
  291. - openssh-formula