Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / linux / b57fc2189f8773397c427a24fc0249c091527caf / . / tests / pillar / system.sls
blob: 99723183f21cfc207369577ab5582c652882d494 [file] [log] [blame]
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]1linux:
azvyagintsevb7c2ef42018-08-16 14:21:39 +0300[diff] [blame]2 network:
3 enabled: true
4 hostname: linux
5 fqdn: linux.ci.local
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]6 system:
7 enabled: true
Martin Polreichcceeb3b2019-01-24 14:05:12 +0100[diff] [blame]8 banner:
9 enabled: true
10 contents: |
11 ================= WARNING =================
12 This is tcpcloud network.
13 Unauthorized access is strictly prohibited.
14 ===========================================
15 file:
16 /tmp/sample.txt:
17 source: http://techslides.com/demos/samples/sample.txt
18 source_hash: 5452459724e85b4e12277d5f8aab8fc9
19 sample2.txt:
20 name: /tmp/sample2.txt
21 source: http://techslides.com/demos/samples/sample.txt
Ivan Berezovskiyf9301e12019-07-22 13:14:14 +0400[diff] [blame]22 sample3.tar.gz:
23 name: /tmp/sample3.tar.gz
24 secured_source:
25 protocol: http #optional
26 user: username
27 password: password
28 url: wordpress.org/latest.tar.gz
29 secured_hash: #optional
30 url: wordpress.org/latest.tar.gz.md5
Martin Polreichcceeb3b2019-01-24 14:05:12 +0100[diff] [blame]31 test2:
32 name: /tmp/test2.txt
33 contents: |
34 line1
35 line2
36 user: root
37 group: root
38 mode: 700
39 dir_mode: 700
40 encoding: utf-8
41 makedirs: true
42 test3:
43 name: /tmp/test3.txt
44 source: salt://linux/files/test/file_template.jinja
45 template: jinja
agoriunovd7b19ce2019-02-18 11:37:32 +0200[diff] [blame]46 test4:
47 decode: True
48 name: /tmp/test4.txt
49 encoded_data: dGVzdDQK
azvyagintseva3a73d02018-12-06 14:49:58 +0200[diff] [blame]50 apt:
51 preferences:
52 enabled: true
53 rules:
54 100:
55 enabled: true
56 name: 'Ubuntu origin'
57 pin: 'release o=Ubuntu'
58 priority: 1100
59 package: '*'
60 5:
61 enabled: true
62 name: 'Ubuntu origin'
63 pin: 'release o=Ubuntu'
64 priority: 1100
65 package: '*'
Dmitry Teselkin0f084a02018-08-29 14:46:38 +0300[diff] [blame]66 at:
67 enabled: true
68 user:
69 root:
70 enabled: true
71 testuser:
72 enabled: true
73 cron:
74 enabled: true
75 user:
76 root:
77 enabled: true
78 testuser:
79 enabled: true
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]80 cluster: default
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]81 name: linux
azvyagintsevb7c2ef42018-08-16 14:21:39 +0300[diff] [blame]82 domain: ci.local
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]83 environment: prd
Jiri Broulik25839cc2017-04-18 17:05:20 +0200[diff] [blame]84 purge_repos: true
Dzmitry Stremkouski70d09782018-11-30 16:04:59 +0100[diff] [blame]85 service:
86 apt-daily.timer:
87 status: dead
88 tgt:
89 name: tgt
90 status: running
91 enabled: True
92 override:
93 50:
94 target: tgt.service.d
95 content: |
96 [Service]
97 ExecStart=
98 ExecStart=/usr/sbin/tgtd -f --iscsi portal=127.0.0.1:5555
Filip Pytloun8b2131e2017-11-08 13:29:03 +0100[diff] [blame]99 directory:
100 /tmp/test:
101 makedirs: true
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]102 apparmor:
103 enabled: false
Filip Pytloun8296bb92016-02-19 18:42:09 +0100[diff] [blame]104 haveged:
105 enabled: true
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]106 prompt:
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]107 default: "linux.ci.local$"
Jakub Pavlikb148c8c2017-02-12 21:30:48 +0100[diff] [blame]108 kernel:
Jakub Pavlik6c9ead12017-02-16 21:53:13 +0100[diff] [blame]109 isolcpu: 1,2,3,4
Simon Schneider98f7a492017-12-07 13:18:49 +0100[diff] [blame]110 elevator: deadline
Michael Polenchukebf55522018-01-25 13:22:39 +0400[diff] [blame]111 boot_options:
112 - pti=off
113 - spectre_v2=auto
Dmitry Teselkin809834c2018-08-13 19:14:42 +0300[diff] [blame]114 module:
115 module_1:
116 install:
117 command: /bin/true
118 remove:
119 enabled: false
120 command: /bin/false
121 module_2:
122 install:
123 enabled: false
124 command: /bin/false
125 remove:
126 command: /bin/true
127 module_3:
128 blacklist: true
129 module_4:
130 blacklist: false
131 alias:
132 "module*":
133 enabled: true
134 "module_*":
135 enabled: false
136 module_5:
137 softdep:
138 pre:
139 1:
140 value: module_1
141 2:
142 value: module_2
143 enabled: false
144 post:
145 1:
146 value: module_3
147 2:
148 value: module_4
149 enabled: false
150 module_6:
151 option:
152 opt_1: 111
153 opt_2: 222
154 module_7:
155 option:
156 opt_3:
157 value: 333
158 opt_4:
159 enabled: true
160 value: 444
161 opt_5:
162 enabled: false
Jiri Broulik303905d2018-01-11 14:12:48 +0100[diff] [blame]163 cgroup:
164 group:
165 group_1:
166 controller:
167 cpu:
168 shares:
169 value: 250
170 mapping:
171 subjects:
172 - '@group1'
Filip Pytloun361096c2017-08-23 10:57:20 +0200[diff] [blame]173 sysfs:
Martin Polreich148e1b82018-09-13 15:54:25 +0200[diff] [blame]174 enable_apply: true
Filip Pytloun361096c2017-08-23 10:57:20 +0200[diff] [blame]175 scheduler:
176 block/sda/queue/scheduler: deadline
177 power:
178 mode:
179 power/state: 0660
180 owner:
181 power/state: "root:power"
182 devices/system/cpu/cpu0/cpufreq/scaling_governor: powersave
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]183 motd:
184 - warning: |
185 #!/bin/sh
186 printf "WARNING: This is tcpcloud network.\n"
187 printf " Unauthorized access is strictly prohibited.\n"
188 printf "\n"
189 - info: |
190 #!/bin/sh
191 printf -- "--[tcp cloud]---------------------------\n"
192 printf " Hostname | ${linux:system:name}\n"
193 printf " Domain | ${linux:system:domain}\n"
194 printf " System | %s\n" "$(lsb_release -s -d)"
195 printf " Kernel | %s\n" "$(uname -r)"
196 printf -- "----------------------------------------\n"
197 printf "\n"
198 user:
199 root:
200 enabled: true
201 home: /root
202 name: root
Dmitry Teselkin47e41f42018-09-27 14:10:09 +0300[diff] [blame]203 maxdays: 365
Filip Pytloun54cb3632017-06-14 11:56:59 +0200[diff] [blame]204 testuser:
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]205 enabled: true
Filip Pytloun54cb3632017-06-14 11:56:59 +0200[diff] [blame]206 name: testuser
Martin Polreich72f61c42018-01-19 13:55:09 +0100[diff] [blame]207 password: passw0rd
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]208 sudo: true
209 uid: 9999
210 full_name: Test User
211 home: /home/test
Dzmitry Stremkouskia0d8b2d2018-10-22 14:12:05 +0200[diff] [blame]212 unique: false
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]213 groups:
Filip Pytlound281d292017-05-30 15:55:37 +0200[diff] [blame]214 - db-ops
215 - salt-ops
Dzmitry Stremkouskifae59fb2018-11-21 10:10:10 +0100[diff] [blame]216 optional_groups:
217 - docker
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]218 salt_user1:
219 enabled: true
220 name: saltuser1
221 sudo: false
222 uid: 9991
223 full_name: Salt User1
224 home: /home/saltuser1
Martin Polreich4fcd5c02018-07-16 09:41:51 +0200[diff] [blame]225 home_dir_mode: 755
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]226 salt_user2:
227 enabled: true
228 name: saltuser2
229 sudo: false
230 uid: 9992
231 full_name: Salt Sudo User2
232 home: /home/saltuser2
Filip Pytlound281d292017-05-30 15:55:37 +0200[diff] [blame]233 groups:
234 - sudogroup1
Dzmitry Stremkouski6839f542019-09-04 14:15:09 +0200[diff] [blame]235 example:
236 enabled: false
237 name: example
238 sudo: false
239 full_name: disabled
240 home: /home/example
241 email: disabled
242 force_delete: True
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]243 group:
Filip Pytloun54cb3632017-06-14 11:56:59 +0200[diff] [blame]244 testgroup:
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]245 enabled: true
Filip Pytloun54cb3632017-06-14 11:56:59 +0200[diff] [blame]246 name: testgroup
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]247 gid: 9999
248 system: true
Petr Michalec3cd4cb72017-08-01 11:50:42 +0200[diff] [blame]249 addusers:
250 - salt_user1
251 - salt_user2
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]252 db-ops:
253 enabled: true
Petr Michalec3cd4cb72017-08-01 11:50:42 +0200[diff] [blame]254 delusers:
255 - salt_user1
Petr Michaleca17ea5a2017-08-08 15:46:03 +0200[diff] [blame]256 - dontexistatall
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]257 salt-ops:
258 enabled: true
Filip Pytlound281d292017-05-30 15:55:37 +0200[diff] [blame]259 name: salt-ops
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]260 sudogroup1:
261 enabled: true
262 name: sudogroup1
263 sudogroup2:
264 enabled: true
265 name: sudogroup2
266 sudogroup3:
267 enabled: false
268 name: sudogroup3
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]269 job:
270 test:
271 enabled: true
272 command: "/bin/sleep 3"
Filip Pytloun54cb3632017-06-14 11:56:59 +0200[diff] [blame]273 user: testuser
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]274 minute: 0
275 hour: 13
276 package:
277 htop:
278 version: latest
279 repo:
azvyagintsev45cf4522018-08-03 15:04:40 +0200[diff] [blame]280 disabled_repo:
281 source: "deb [arch=amd64] https://download.docker.com/linux/ubuntu xenial stable"
282 enabled: false
283 disabled_repo_left_proxy:
284 source: "deb [arch=amd64] https://download.docker.com/linux/ubuntu xenial stable"
285 enabled: false
286 proxy:
287 enabled: true
288 https: https://127.0.5.1:443
azvyagintsev4494a472018-09-14 19:19:23 +0300[diff] [blame]289 saltstack:
Nikolas Brittonc631b2e2020-04-21 13:23:03 -0500[diff] [blame]290 source: "deb [arch=amd64] http://mirror.mirantis.com/update/2019.2.0/saltstack-2017.7/xenial xenial main"
291 key_url: "http://mirror.mirantis.com/update/2019.2.0/saltstack-2017.7/xenial/SALTSTACK-GPG-KEY.pub"
azvyagintseva3a73d02018-12-06 14:49:58 +0200[diff] [blame]292 name: 'human readable saltstack reponame'
azvyagintsev4494a472018-09-14 19:19:23 +0300[diff] [blame]293 architectures: amd64
294 clean_file: true
295 pinning:
296 10:
297 enabled: true
298 pin: 'release o=SaltStack'
299 priority: 50
300 package: 'libsodium18'
301 20:
302 enabled: true
303 pin: 'release o=SaltStack'
304 priority: 1100
305 package: '*'
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]306 opencontrail:
Petr Michalec10462bb2017-03-23 19:18:08 +0100[diff] [blame]307 source: "deb http://ppa.launchpad.net/tcpcloud/contrail-3.0/ubuntu xenial main"
308 keyid: E79EE90C
309 keyserver: keyserver.ubuntu.com
310 architectures: amd64
311 proxy:
312 enabled: true
313 https: https://127.0.5.1:443
314 #http: http://127.0.5.2:8080
Dennis Dmitriev4bf87622017-07-06 21:07:27 +0300[diff] [blame]315 apt-salt-nightly:
Oleksii Molchanovb57fc212020-10-06 15:31:14 +0300[diff] [blame^]316 source: "deb http://mirror.mirantis.com/update/nightly/salt-2017.7.8/xenial xenial main"
317 key_url: http://mirror.mirantis.com/update/nightly/salt-2017.7.8/xenial/archive-salt-2017.7.8.key
Petr Michalec10462bb2017-03-23 19:18:08 +0100[diff] [blame]318 architectures: amd64
319 proxy:
320 enabled: false
Dennis Dmitriev4bf87622017-07-06 21:07:27 +0300[diff] [blame]321 apt-extra-nightly:
Oleksii Molchanovb57fc212020-10-06 15:31:14 +0300[diff] [blame^]322 source: "deb http://mirror.mirantis.com/update/nightly/extra/xenial xenial main"
323 key_url: http://mirror.mirantis.com/update/nightly/extra/xenial/archive-extra.key
Filip Pytlouna1898572016-01-25 22:35:13 +0100[diff] [blame]324 architectures: amd64
Filip Pytlounc49445a2016-04-04 14:23:20 +0200[diff] [blame]325 locale:
Jakub Josef495245a2018-03-05 15:41:01 +0100[diff] [blame]326 en_US:
Filip Pytlounc49445a2016-04-04 14:23:20 +0200[diff] [blame]327 enabled: true
328 default: true
Jakub Josef495245a2018-03-05 15:41:01 +0100[diff] [blame]329 cs_CZ:
Filip Pytlounc49445a2016-04-04 14:23:20 +0200[diff] [blame]330 enabled: true
Filip Pytlounc665ee22017-02-17 12:17:32 +0100[diff] [blame]331 autoupdates:
332 enabled: true
Petr Michalec1c4c8d82017-02-28 19:09:21 +0100[diff] [blame]333 sudo:
334 enabled: true
335 alias:
336 runas:
337 DBA:
338 - postgres
339 - mysql
340 SALT:
341 - root
342 host:
343 LOCAL:
344 - localhost
345 PRODUCTION:
346 - db1
347 - db2
348 command:
349 SUDO_RESTRICTED_SU:
350 - /bin/vi /etc/sudoers
351 - /bin/su - root
352 - /bin/su -
353 - /bin/su
354 - /usr/sbin/visudo
355 SUDO_SHELLS:
356 - /bin/sh
357 - /bin/ksh
358 - /bin/bash
359 - /bin/rbash
360 - /bin/dash
361 - /bin/zsh
362 - /bin/csh
363 - /bin/fish
364 - /bin/tcsh
365 - /usr/bin/login
366 - /usr/bin/su
367 - /usr/su
368 SUDO_SALT_SAFE:
369 - /usr/bin/salt state*
370 - /usr/bin/salt service*
371 - /usr/bin/salt pillar*
372 - /usr/bin/salt grains*
373 - /usr/bin/salt saltutil*
374 - /usr/bin/salt-call state*
375 - /usr/bin/salt-call service*
376 - /usr/bin/salt-call pillar*
377 - /usr/bin/salt-call grains*
378 - /usr/bin/salt-call saltutil*
379 SUDO_SALT_TRUSTED:
380 - /usr/bin/salt*
381 users:
382 saltuser1: {}
383 saltuser2:
384 hosts:
385 - LOCAL
386 # User Alias:
387 DBA:
388 hosts:
389 - ALL
390 commands:
391 - SUDO_SALT_SAFE
392 groups:
393 db-ops:
394 hosts:
395 - ALL
396 - '!PRODUCTION'
397 runas:
398 - DBA
399 commands:
400 - /bin/cat *
401 - /bin/less *
402 - /bin/ls *
403 - SUDO_SALT_SAFE
404 - '!SUDO_SHELLS'
405 - '!SUDO_RESTRICTED_SU'
406 salt-ops:
407 hosts:
408 - 'ALL'
409 runas:
410 - SALT
411 commands:
412 - SUDO_SALT_TRUSTED
413 salt-ops2:
414 name: salt-ops
415 runas:
416 - DBA
417 commands:
418 - SUDO_SHELLS
419 sudogroup1:
420 commands:
421 - ALL
422 sudogroup2:
423 commands:
424 - ALL
425 hosts:
426 - localhost
427 users:
428 - test
429 nopasswd: false
430 sudogroup3:
431 commands:
432 - ALL
Petr Michalec10462bb2017-03-23 19:18:08 +0100[diff] [blame]433 env:
434 BOB_VARIABLE: Alice
435 BOB_PATH:
436 - /srv/alice/bin
437 - /srv/bob/bin
438 HTTPS_PROXY: https://127.0.4.1:443
439 http_proxy: http://127.0.4.2:80
440 ftp_proxy: ftp://127.0.4.3:2121
441 no_proxy:
442 - 192.168.0.1
443 - 192.168.0.2
444 - .saltstack.com
445 - .ubuntu.com
446 - .mirantis.com
447 - .launchpad.net
448 - .dummy.net
449 - .local
450 LANG: C
451 LC_ALL: C
Dmitry Teselkina0d31d12018-09-04 14:43:09 +0300[diff] [blame]452 login_defs:
453 PASS_MAX_DAYS:
454 value: 99
Dmitry Teselkinba028c32018-09-04 13:01:13 +0300[diff] [blame]455 shell:
456 umask: '027'
457 timeout: 900
Petr Michalec10462bb2017-03-23 19:18:08 +0100[diff] [blame]458 profile:
459 vi_flavors.sh: |
460 export PAGER=view
461 alias vi=vim
462 locales: |
463 export LANG=en_US
464 export LC_ALL=en_US.UTF-8
465
466 # pillar for proxy configuration
467 proxy:
468 # for package managers
469 pkg:
470 enabled: true
471 https: https://127.0.2.1:4443
472 #http: http://127.0.2.2
473 ftp: none
474 # fallback, system defaults
475 https: https://127.0.1.1:443
476 #http: http://127.0.1.2
477 ftp: ftp://127.0.1.3
478 noproxy:
479 - host1
480 - host2
481 - .local
Vladimir Ereminccf28842017-04-10 23:52:10 +0300[diff] [blame]482
483 # pillars for netconsole setup
484 netconsole:
485 enabled: true
486 port: 514
487 loglevel: debug
488 target:
489 192.168.0.1:
490 mac: "ff:ff:ff:ff:ff:ff"
491 interface: bond0
Serhiy Ovsianikov67bd56a2017-08-11 15:56:01 +0300[diff] [blame]492 atop:
493 enabled: true
494 interval: 20
495 logpath: "/var/mylog/atop"
496 outfile: "/var/mylog/atop/daily.log"
Oleksii Chupryn144432b2018-05-22 10:34:48 +0300[diff] [blame]497 mcelog:
498 enabled: true
499 logging:
500 syslog: true
501 syslog_error: true