Introduce itzks-systems-puppetserver. Out-source puppetserver into separate machines, which is more ideal for upgrading Debian Edu + ITZkS sites to the next Debian Edu version.

3 files changed, 99 insertions, 0 deletions

diff --git a/debian/control b/debian/control
index 5bb1f58..405b611 100644
--- a/debian/control
+++ b/debian/control
@@ -62,6 +62,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-faiserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -74,6 +75,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-faiserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -141,6 +143,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -155,6 +158,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -402,6 +406,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -414,6 +419,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -550,6 +556,7 @@ Replaces:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -561,6 +568,7 @@ Breaks:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -615,6 +623,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -626,6 +635,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -684,6 +694,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-faiserver,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -696,6 +707,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-faiserver,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -752,6 +764,7 @@ Replaces:
  itzks-systems-display,
  itzks-systems-displayserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-roamingworkstation,
  itzks-systems-tablet,
  itzks-systems-virtman,
@@ -765,6 +778,7 @@ Breaks:
  itzks-systems-display,
  itzks-systems-displayserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-roamingworkstation,
  itzks-systems-tablet,
  itzks-systems-virtman,
@@ -839,6 +853,75 @@ Description: Profiling for ITZkS-MainServer Systems
  ITZkS (IT-Zukunft Schule) is a Northern German project and based
  on Debian Edu / Skolelinux.
 
+Package: itzks-systems-puppetserver
+Architecture: all
+Replaces:
+ debian-edu-artwork-joy,
+ gnu-fdisk,
+ itzks-systems-mainserver,
+ itzks-systems-backup,
+ itzks-systems-diskless,
+ itzks-systems-disklserver,
+ itzks-systems-display,
+ itzks-systems-displayserver,
+ itzks-systems-filter,
+ itzks-systems-roamingworkstation,
+ itzks-systems-tablet,
+ itzks-systems-virtman,
+ itzks-systems-workstation,
+ xul-ext-adblock-plus,
+Breaks:
+ itzks-systems-mainserver,
+ itzks-systems-backup,
+ itzks-systems-diskless,
+ itzks-systems-disklserver,
+ itzks-systems-display,
+ itzks-systems-displayserver,
+ itzks-systems-filter,
+ itzks-systems-roamingworkstation,
+ itzks-systems-tablet,
+ itzks-systems-virtman,
+ itzks-systems-workstation,
+ xul-ext-adblock-plus,
+Depends:
+ apt-file,
+ debian-edu-artwork-spacefun,
+ debian-edu-config (>= 2.11.56+deb11u4~),
+ dnsutils,
+ gdisk,
+ htop,
+ itzks-keyring,
+ itzks-systems-common (>= ${source:Version}),
+ libmonitoring-plugin-perl,
+ links,
+ linuxlogo,
+ lsb-base,
+ mc,
+ nload,
+ nmap,
+ ocsinventory-agent,
+ openvpn,
+ puppet,
+ puppet-module-puppetlabs-apt,
+ puppet-module-puppetlabs-concat,
+ puppet-module-puppetlabs-inifile,
+ puppet-module-puppetlabs-stdlib,
+ puppetserver | puppet-master-passenger | puppet-master | puppetmaster,
+ shutdown-at-night (>= 0.19~),
+ sysstat,
+ tree,
+ unzip,
+ vim,
+ zip,
+ ${misc:Depends},
+Description: Profiling for ITZkS-PuppetServer Systems
+ Install this package to pull in recommended dependencies
+ on a Debian Edu minimal server used as puppet configuration
+ management server.
+ .
+ ITZkS (IT-Zukunft Schule) is a Northern German project and based
+ on Debian Edu / Skolelinux.
+
 Package: itzks-systems-smartboard
 Architecture: all
 Depends: schroot, ${misc:Depends}
@@ -869,6 +952,7 @@ Replaces:
  itzks-systems-display,
  itzks-systems-displayserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -882,6 +966,7 @@ Breaks:
  itzks-systems-display,
  itzks-systems-displayserver,
  itzks-systems-filter,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-virtman,
  itzks-systems-workstation,
@@ -1120,6 +1205,7 @@ Replaces:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-workstation,
@@ -1134,6 +1220,7 @@ Breaks:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-workstation,
@@ -1209,6 +1296,7 @@ Breaks:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -1224,6 +1312,7 @@ Replaces:
  itzks-systems-displayserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-tablet,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -1514,6 +1603,7 @@ Breaks:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-roamingworkstation,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
@@ -1534,6 +1624,7 @@ Replaces:
  itzks-systems-faiserver,
  itzks-systems-filter,
  itzks-systems-mainserver,
+ itzks-systems-puppetserver,
  itzks-systems-roamingworkstation,
  itzks-systems-terminalserver,
  itzks-systems-virtman,
diff --git a/debian/itzks-systems-puppetserver.install b/debian/itzks-systems-puppetserver.install
new file mode 100644
index 0000000..12f70f5
--- /dev/null
+++ b/debian/itzks-systems-puppetserver.install
@@ -0,0 +1,3 @@
+bin/itzks-puppet-list-known-hosts usr/bin/
+etc/cron.d/itzks-systems-puppetserver
+sbin/itzks-puppet-autosign-new-host-certificates usr/sbin/
diff --git a/etc/cron.d/itzks-systems-puppetserver b/etc/cron.d/itzks-systems-puppetserver
new file mode 100644
index 0000000..341d0f2
--- /dev/null
+++ b/etc/cron.d/itzks-systems-puppetserver
@@ -0,0 +1,5 @@
+MAILTO=root
+PATH=/usr/bin:/bin:/usr/sbin:/sbin
+
+# run puppet auto-CSR signing hourly
+0 7,8,9,10,11,12,13,14,15,16,17  * * * root  [ -d /etc/puppet ] && [ -x /usr/sbin/itzks-puppet-autosign-new-host-certificates ] && /usr/sbin/itzks-puppet-autosign-new-host-certificates