ExternalMirrors
/
old-salt-formula
镜像来自 https://github.com/saltstack-formulas/salt-formula
關註 1
收藏 0
複製 1
程式碼 問題管理 0 版本發佈 68 Wiki Activity
Saltstack Official Salt Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
514 Commit
3 分支
目錄樹: 9331997269
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '9331997269'
${ noResults }
old-salt-formula/pillar.example

318 line
8.3KB
原始文件 Blame 文件歷史 

  1. salt:

  2.   # Set this to true to clean any non-salt-formula managed files out of

  3.   # /etc/salt/{master,minion}.d ... You really don't want to do this on 2015.2

  4.   # and up as it'll wipe out important files that Salt relies on.

  5.   clean_config_d_dir: False

  6. 

  7.   # This state will remove "/etc/salt/minion" when you set this to true.

  8.   minion_remove_config: True

  9. 

  10.   # This state will remove "/etc/salt/master" when you set this to true.

  11.   master_remove_config: True

  12. 

  13.   # Set this to False to not have the formula install packages (in the case you

  14.   # install Salt via git/pip/etc.)

  15.   install_packages: True

  16. 

  17.   # to overwrite map.jinja salt packages

  18.   lookup:

  19.     salt-master: 'salt-master'

  20.     salt-minion: 'salt-minion'

  21.     salt-syndic: 'salt-syndic'

  22.     salt-cloud: 'salt-cloud'

  23.     salt-ssh: 'salt-ssh'

  24. 

  25.   # salt master config

  26.   master:

  27.     fileserver_backend:

  28.       - git

  29.       - s3fs

  30.       - roots

  31.     gitfs_remotes:

  32.       - git://github.com/saltstack-formulas/salt-formula.git:

  33.         - base: develop

  34.     s3.keyid: GKTADJGHEIQSXMKKRBJ08H

  35.     s3.key: askdjghsdfjkghWupUjasdflkdfklgjsdfjajkghs

  36.     s3.buckets:

  37.       - bucket1

  38.       - bucket2

  39.       - bucket3

  40.       - bucket4

  41.     file_roots:

  42.       base:

  43.         - /srv/salt

  44.     pillar_roots:

  45.       base:

  46.         - /srv/pillar

  47.     # for salt-api with tornado rest interface

  48.     rest_tornado:

  49.       port: 8000

  50.       ssl_crt: /etc/pki/api/certs/server.crt

  51.       ssl_key: /etc/pki/api/certs/server.key

  52.       debug: False

  53.       disable_ssl: False

  54.     # for profile configuration as https://docs.saltstack.com/en/latest/topics/tutorials/lxc.html#tutorial-lxc-profiles

  55.     lxc.container_profile:

  56.       debian:

  57.         template: download

  58.         options:

  59.           dist: debian

  60.           release: jessie

  61.           arch: amd64

  62.         backing: lvm

  63.         vgname: kimsufi

  64.         size: 10G

  65.     lxc.network_profile:

  66.       basic:

  67.         eth0:

  68.           link: lxcbr0

  69.           type: veth

  70.           flags: up

  71.     ## for external auth - LDAP

  72.       # filter to use for Active Directory LDAP

  73.     auth.ldap.filter: {% raw %}'sAMAccountName={{username}}'{% endraw %}

  74.       # filter to use for Most other LDAP servers

  75.     auth.ldap.filter: {% raw %}'uid={{ username }}'{% endraw %}

  76. 

  77.     # Define winrepo provider, by default support order is pygit2, gitpython

  78.     # Set to gitpython for Debian & Ubuntu to get around saltstack/salt#35993

  79.     # where pygit2 is not compiled with pygit2.GIT_FEATURE_HTTPS support

  80.     winrepo_provider: gitpython

  81. 

  82.     # optional engine configuration

  83.     engines:

  84.       slack:

  85.         token: xoxp-XXXXX-XXXXXXX

  86.         control: True

  87.         valid_users:

  88.           - someuser

  89.           - otheruser

  90.         valid_commands:

  91.           - test.ping

  92.           - list_jobs

  93.         aliases:

  94.           list_jobs:

  95.             type: runner

  96.             cmd: jobs.list_jobs

  97. 

  98.     # optional: these reactors will be configured on the master

  99.     # They override reactors configured in

  100.     # 'salt:reactors' or the old 'salt:reactor' parameters

  101.     reactors:

  102.       - 'master/deploy':

  103.       - /srv/salt/reactors/deploy.sls

  104. 

  105.   # salt minion config:

  106.   minion:

  107. 

  108.     # single master setup

  109.     master: salt

  110. 

  111.     # multi master setup

  112.     #master:

  113.       #- salt_master_1

  114.       #- salt_master_2

  115. 

  116.     fileserver_backend:

  117.       - git

  118.       - roots

  119.     gitfs_remotes:

  120.       - git://github.com/saltstack-formulas/salt-formula.git:

  121.         - base: develop

  122.     file_roots:

  123.       base:

  124.         - /srv/salt

  125.     pillar_roots:

  126.       base:

  127.         - /srv/pillar

  128.     module_config:

  129.       test: True

  130.       test.foo: foo

  131.       test.bar:

  132.         - baz

  133.         - quo

  134.       test.baz:

  135.         spam: sausage

  136.         cheese: bread

  137. 

  138.     # salt mine setup

  139.     mine_interval: 60

  140.     # mine_functions can be set at the top level of the pillar, and

  141.     # that is preferable because it doesn't affect the conf file and

  142.     # doesn't require a minion restart. However, you can configure it

  143.     # here instead if you really want to.

  144.     mine_functions:

  145.       network.interface_ip: [eth0]

  146. 

  147.     # other 'non-default' config

  148.     auth_keytab: /root/auth.keytab

  149.     auth_principal: kadmin/admin

  150. 

  151.     # optional engine configuration

  152.     engines:

  153.       slack:

  154.         token: xoxp-XXXXX-XXXXXXX

  155.         control: True

  156.         valid_users:

  157.           - someuser

  158.           - otheruser

  159.         valid_commands:

  160.           - test.ping

  161.           - list_jobs

  162.         aliases:

  163.           list_jobs:

  164.             type: runner

  165.             cmd: jobs.list_jobs

  166. 

  167.     # optional beacons configuration

  168.     beacons:

  169.       load:

  170.         1m:

  171.           - 0.0

  172.           - 2.0

  173.         5m:

  174.           - 0.0

  175.           - 1.5

  176.         15m:

  177.           - 0.1

  178.           - 1.0

  179.         interval: 10

  180. 

  181.     # Optional reactors: these reactors will be configured on the minion

  182.     # They override reactors configured in

  183.     # 'salt:reactors' or the old 'salt:reactor' parameters

  184.     reactors:

  185.       - 'minion/deploy':

  186.       - /srv/salt/reactors/deploy.sls

  187. 

  188.   # salt cloud config

  189.   cloud:

  190.     master: salt

  191. 

  192.     # For non-templated custom cloud provider/profile/map files

  193.     providers:

  194.       provider-filename1.conf:

  195.         vmware-prod:

  196.           driver: vmware

  197.           user: myusernameprod

  198.           password: mypassword

  199.         vmware-nonprod:

  200.           driver: vmware

  201.           user: myusernamenonprod

  202.           password: mypassword

  203.     profiles:

  204.       profile-filename1.conf:

  205.         server-non-prod:

  206.           clonefrom: rhel6xtemplatenp

  207.           grains:

  208.             platform:

  209.               name: salt

  210.               realm: lab

  211.             subscription_level: standard

  212.           memory: 8GB

  213.           num_cpus: 4

  214.           password: sUpErsecretey

  215.           provider: vmware-nonprod

  216.     maps:

  217.       map-filename1.map:

  218.         server-non-prod:

  219.           - host.mycompany.com:

  220.               grains:

  221.                 environment: dev1

  222. 

  223.     # You can take profile and map templates from an alternate location

  224.     # if you want to write your own.

  225.     template_sources:

  226.       providers: salt://salt/files/cloud.providers.d

  227.       profiles: salt://salt/files/cloud.profiles.d

  228.       maps: salt://salt/files/cloud.maps.d

  229. 

  230.     # These settings are used by the default provider templates and

  231.     # only need to be set for the ones you're using.

  232.     aws_key: AWSKEYIJSHJAIJS6JSH

  233.     aws_secret: AWSSECRETYkkDY1iQf9zRtl9+pW+Nm+aZY95

  234.     gce_project: test

  235.     gce_service_account_email_address: 867543072364-orl4h2tpp8jcn1tr9ipj@developer.gserviceaccount.com

  236.     rsos_user: afeawofghob

  237.     rsos_tenant: tenant_id_number

  238.     rsos_apikey: WFJIOJEOIGHSOFHESO

  239.     rsos_regions:

  240.       - ORD

  241.       - DFW

  242.       - IAD

  243.       - SYD

  244.       - HKG

  245. 

  246.   ssh_roster:

  247.     prod1:

  248.       host: host.example.com

  249.       user: ubuntu

  250.       sudo: True

  251.       priv: /etc/salt/ssh_keys/sshkey.pem

  252.   gitfs:

  253.     keys:

  254.       global:

  255.         # key and pub end up being the extension used on the key file. values other than key and pub are possible

  256.         key: |

  257.           -----BEGIN RSA PRIVATE KEY-----

  258.           ...........

  259.           -----END RSA PRIVATE KEY-----

  260.         pub: |

  261.           ...........

  262. 

  263.   # These reactors will be configured both in the minion and the master

  264.   reactors:

  265.     - 'deploy':

  266.       - /srv/salt/reactors/deploy.sls

  267. 

  268. salt_cloud_certs:

  269.   aws:

  270.     pem: |

  271.       -----BEGIN RSA PRIVATE KEY-----

  272.       ...........

  273.       -----END RSA PRIVATE KEY-----

  274. 

  275.   gce:

  276.     pem: |

  277.       -----BEGIN RSA PRIVATE KEY-----

  278.       ...........

  279.       -----END RSA PRIVATE KEY-----

  280. 

  281. salt_formulas:

  282.   git_opts:

  283.     # The Git options can be customized differently for each

  284.     # environment, if an option is missing in a given environment, the

  285.     # value from "default" is used instead.

  286.     default:

  287.       # URL where the formulas git repositories are downloaded from

  288.       # it will be suffixed with <formula-name>.git

  289.       baseurl: https://github.com/saltstack-formulas

  290.       # Directory where Git repositories are downloaded

  291.       basedir: /srv/formulas

  292.       # Update the git repository to the latest version (False by default)

  293.       update: False

  294.       # Options passed directly to the git.latest state

  295.       options:

  296.         rev: master

  297.     dev:

  298.       basedir: /srv/formulas/dev

  299.       update: True

  300.       options:

  301.         rev: develop

  302.   # Options of the file.directory state that creates the directory where

  303.   # the git repositories of the formulas are stored

  304.   basedir_opts:

  305.     makedirs: True

  306.     user: root

  307.     group: root

  308.     mode: 755

  309.   # List of formulas to enable in each environment

  310.   list:

  311.     base:

  312.       - salt-formula

  313.       - postfix-formula

  314.     dev:

  315.       - salt-formula

  316.       - postfix-formula

  317.       - openssh-formula