Blame - aptly/server/single.yml - salt-models/reclass-system

blob: d5ff8fcb54273569e58b3667fb3675f1e6fef6b3 [file] [log] [blame]

Ales Komarek	3f76e68	2016-12-05 11:53:00 +0100	[diff] [blame]	1	classes:
				2	- service.aptly.server.single
				3	- system.nginx.server.single
				4	- service.iptables.server
				5	parameters:
				6	_param:
Ales Komarek	3f76e68	2016-12-05 11:53:00 +0100	[diff] [blame]	7	nginx_aptly_server_host: ${linux:network:fqdn}
				8	iptables:
				9	service:
				10	enabled: true
				11	chain:
				12	INPUT:
				13	rules:
				14	# Only local network can access WebDav and aptly API
				15	- destination_port: 8088
				16	protocol: tcp
				17	source_network: 10.0.107.0/24
				18	jump: ACCEPT
				19	- destination_port: 8088
				20	protocol: tcp
				21	source_network: 185.22.96.0/22
				22	jump: ACCEPT
				23	- destination_port: 8088
				24	protocol: tcp
				25	source_network: 10.0.174.0/23
				26	jump: ACCEPT
				27	- destination_port: 8088
				28	protocol: tcp
				29	source_network: 10.0.175.0/23
				30	jump: ACCEPT
				31	- destination_port: 8088
				32	protocol: tcp
				33	jump: DROP
				34	- destination_port: 8081
				35	protocol: tcp
				36	source_network: 10.0.107.0/24
				37	jump: ACCEPT
				38	- destination_port: 8081
				39	protocol: tcp
				40	source_network: 10.0.174.0/23
				41	jump: ACCEPT
				42	- destination_port: 8081
				43	protocol: tcp
				44	source_network: 10.0.175.0/23
				45	jump: ACCEPT
				46	- destination_port: 8081
				47	protocol: tcp
				48	jump: DROP
				49	nginx:
				50	server:
				51	site:
				52	aptly_server:
				53	enabled: true
				54	type: aptly
				55	name: server
				56	host:
				57	name: ${_param:nginx_aptly_server_host}
				58	aptly_api:
				59	enabled: true
				60	check: false
				61	type: nginx_proxy
				62	name: aptly_api
				63	proxy:
				64	host: 127.0.0.1
				65	port: 8080
				66	protocol: http
				67	size: 1G
				68	host:
				69	name: ${_param:nginx_aptly_server_host}
				70	port: 8081
				71	aptly:
				72	server:
				73	enabled: true
				74	secure: true
				75	gpg_keypair_id: ${_param:aptly_gpg_keypair_id}
Ales Komarek	3f76e68	2016-12-05 11:53:00 +0100	[diff] [blame]	76	gpg_public_key: ${_param:aptly_gpg_public_key}
				77	gpg_private_key: ${_param:aptly_gpg_private_key}