Stop using sudoers on all servers defined

[releng.git] / prototypes / puppet-infracloud / manifests / site.pp

diff --git a/prototypes/puppet-infracloud/manifests/site.pp b/prototypes/puppet-infracloud/manifests/site.pp
index e524918..31c4576 100644 (file)
--- a/prototypes/puppet-infracloud/manifests/site.pp
+++ b/prototypes/puppet-infracloud/manifests/site.pp
@@ -8,6 +8,8 @@
 ##############################################################################
 node 'controller00.opnfvlocal' {
   $group = 'infracloud'
+  include ::sudoers
+
   class { 'opnfv::server':
     iptables_public_tcp_ports => [80,5000,5671,8774,9292,9696,35357], # logs,keystone,rabbit,nova,glance,neutron,keystone
     sysadmins                 => hiera('sysadmins', []),
@@ -30,7 +32,7 @@ node 'controller00.opnfvlocal' {
     keystone_admin_token             => hiera('keystone_admin_token'),
     ssl_key_file_contents            => hiera('ssl_key_file_contents'),
     ssl_cert_file_contents           => hiera('ssl_cert_file_contents'),
-    br_name                          => 'br-eth0',
+    br_name                          => hiera('bridge_name'),
     controller_public_address        => $::fqdn,
     neutron_subnet_cidr              => '192.168.122.0/24',
     neutron_subnet_gateway           => '192.168.122.1',
@@ -43,6 +45,8 @@ node 'controller00.opnfvlocal' {
 
 node 'compute00.opnfvlocal' {
   $group = 'infracloud'
+  include ::sudoers
+
   class { 'opnfv::server':
     sysadmins                 => hiera('sysadmins', []),
     enable_unbound            => false,
@@ -55,9 +59,42 @@ node 'compute00.opnfvlocal' {
     neutron_admin_password           => hiera('neutron_admin_password'),
     ssl_cert_file_contents           => hiera('ssl_cert_file_contents'),
     ssl_key_file_contents            => hiera('ssl_key_file_contents'),
-    br_name                          => 'br-eth0',
+    br_name                          => hiera('bridge_name'),
     controller_public_address        => 'controller00.opnfvlocal',
     virt_type                        => 'qemu',
   }
 }
 
+node 'jumphost.opnfvlocal' {
+  class { 'opnfv::server':
+    sysadmins                 => hiera('sysadmins', []),
+    enable_unbound            => false,
+    purge_apt_sources         => false,
+  }
+}
+
+node 'baremetal.opnfvlocal' {
+  class { '::opnfv::server':
+    iptables_public_udp_ports => [67, 69],
+    sysadmins                 => hiera('sysadmins', []),
+    enable_unbound            => false,
+    purge_apt_sources         => false,
+  }
+
+  class { '::infracloud::bifrost':
+    ironic_inventory          => hiera('ironic_inventory', {}),
+    ironic_db_password        => hiera('ironic_db_password'),
+    mysql_password            => hiera('bifrost_mysql_password'),
+    ipmi_passwords            => hiera('ipmi_passwords'),
+    ssh_private_key           => hiera('bifrost_ssh_private_key'),
+    ssh_public_key            => hiera('bifrost_ssh_public_key'),
+    vlan                      => hiera('infracloud_vlan'),
+    gateway_ip                => hiera('infracloud_gateway_ip'),
+    default_network_interface => hiera('default_network_interface'),
+    dhcp_pool_start           => hiera('dhcp_pool_start'),
+    dhcp_pool_end             => hiera('dhcp_pool_end'),
+    network_interface         => hiera('network_interface'),
+    ipv4_nameserver           => hiera('ipv4_nameserver'),
+    ipv4_subnet_mask          => hiera('ipv4_subnet_mask'),
+  }
+}