Removes bootless templates, adds node secret template

author: Silvio Rhatto <rhatto@riseup.net> 2016-09-19 10:55:43 -0300
committer: Silvio Rhatto <rhatto@riseup.net> 2016-09-19 10:55:43 -0300
commit: a7ca30e854f845f670c852a2edd5ef13656c774f (patch)
tree: 17036cff4f766f1cbe4b45ab80c492969bd78d5f /share/config
parent: 2bd9d5bbf6a41d4d47cd52d9ee9471a906b3849b (diff)
download: hydra-a7ca30e854f845f670c852a2edd5ef13656c774f.tar.gz
hydra-a7ca30e854f845f670c852a2edd5ef13656c774f.tar.bz2
5 files changed, 3 insertions, 141 deletions
diff --git a/share/config/puppet/nodo.example.org.yaml b/share/config/puppet/nodo.example.org.yaml
new file mode 100644
index 0000000..65aee56
--- /dev/null
+++ b/share/config/puppet/nodo.example.org.yaml
@@ -0,0 +1,2 @@
+---
+nodo::role: 'virtual'
diff --git a/share/config/templates/node/nodo.example.org.yaml b/share/config/puppet/secrets/nodo.example.org.yaml
index 02a3bea..79b15c1 100644
--- a/share/config/templates/node/nodo.example.org.yaml
+++ b/share/config/puppet/secrets/nodo.example.org.yaml
@@ -5,4 +5,4 @@ nodo::role: 'virtual'
 # Backup
 #
 nodo::subsystem::backup::encryptkey: "FIXME"
-nodo::subsystem::backup::password: 'FIXME'
+nodo::subsystem::backup::password: 'FIXME using hiera-eyaml'
diff --git a/share/config/templates/bootless/custom.cfg b/share/config/templates/bootless/custom.cfg
deleted file mode 100644
index 87de184..0000000
--- a/share/config/templates/bootless/custom.cfg
+++ /dev/null
@@ -1,26 +0,0 @@
-#
-# Menu appearance
-#
-set menu_color_normal=white/blue
-set menu_color_highlight=yellow/red
-
-#
-# Example: imagens stored in the USB stick: just put your images under custom/debian/images.
-#
-menuentry 'Example: Darkstar' {
-  set     volume=/dev/sda5
-  set     version=3.16.0-4-amd64
-  set     target=sda5_crypt
-  set     rootfs=darkstar--vg-root
-  set     distro=debian
-  bootimg ${volume} ${version} ${source} ${target} ${distro}
-}
-
-#
-# Example: Full Disk Encryption: images are loaded from encrypted partition.
-#
-menuentry 'Example: Darkstar FDE' {
-  set     volume=darkstar
-  set     version=3.16.0-4-amd64
-  bootfde ${volume} ${version}
-}
diff --git a/share/config/templates/bootless/grub.cfg b/share/config/templates/bootless/grub.cfg
deleted file mode 100644
index 35827db..0000000
--- a/share/config/templates/bootless/grub.cfg
+++ /dev/null
@@ -1,111 +0,0 @@
-#
-# Bootless: evil-maid mitigator.
-#
-
-#
-# Load environment
-#
-if [ -s $prefix/grubenv ]; then
-  load_env
-fi
-
-#
-# Basic config
-#
-set default="0"
-set timeout=5
-
-#
-# Menu appearance
-#
-set menu_color_normal=white/blue
-set menu_color_highlight=yellow/red
-
-#
-# Handles boot from fully encrypted /boot volumes.
-# Usage: bootfde <volume> <kernel-version> [source] [target]
-#
-function bootfde {
-  insmod luks
-  insmod lvm
-
-  set volume=${1}
-
-  if [ "${2}" ]; then
-    set version=${2}
-  else
-    set version=3.16.0-4-amd64
-  fi
-
-  if [ "${3}" ]; then
-    set source=${3}
-  else
-    set source=/dev/mapper/${1}
-  fi
-
-  if [ "${4}" ]; then
-    set target=${4}
-  else
-    set target=root
-  fi
-
-  cryptomount lvm/${volume}
-  set         root=(crypto0)
-  echo        "Loading ${volume}..."
-  linux       /boot/vmlinuz-${version} root=/dev/mapper/${target} cryptopts=target=${target},source=${source} ro quiet
-  echo        'Loading initial ramdisk ...'
-  initrd      /boot/initrd.img-${version}
-}
-
-#
-# Handles boot from images stored in the USB stick.
-# Usage: bootfde <volume> <kernel-version> [target] [rootfs] [distro]
-#
-function bootimg {
-  set volume=${1}
-
-  if [ "${2}" ]; then
-    set version=${2}
-  else
-    set version=3.16.0-4-amd64
-  fi
-
-  if [ "${3}" ]; then
-    set target=${3}
-  else
-    set target=root
-  fi
-
-  if [ "${4}" ]; then
-    set rootfs=${4}
-  else
-    set rootfs=${target}
-  fi
-
-  if [ "${5}" ]; then
-    set distro=${5}
-  else
-    set distro=debian
-  fi
-
-  echo   "Loading ${1}..."
-  linux  /boot/custom/${distro}/vmlinuz-${version} root=/dev/mapper/${rootfs} cryptopts=target=${target},source=${volume} ro quiet apparmor=1 security=apparmor
-  echo   'Loading initial ramdisk ...'
-  initrd /boot/custom/${distro}/initrd.img-${version}
-}
-
-#
-# Default menu entry
-#
-menuentry "Memtest86+" {
-  linux16 /boot/default/memtest/memtest86+.bin
-}
-
-#
-# Custom menu entries
-#
-if [ -e "/boot/custom/custom.cfg" ]; then
-  menuentry "Custom configurations" {
-    configfile /boot/custom/custom.cfg
-  }
-fi
diff --git a/share/config/templates/node/nodo.example.org.pp b/share/config/templates/node/nodo.example.org.pp
deleted file mode 100644
index 1d6cdf6..0000000
--- a/share/config/templates/node/nodo.example.org.pp
+++ /dev/null
@@ -1,3 +0,0 @@
-node 'nodename.example.org' {
-  include nodo
-}
author	Silvio Rhatto <rhatto@riseup.net>	2016-09-19 10:55:43 -0300
committer	Silvio Rhatto <rhatto@riseup.net>	2016-09-19 10:55:43 -0300
commit	a7ca30e854f845f670c852a2edd5ef13656c774f (patch)
tree	17036cff4f766f1cbe4b45ab80c492969bd78d5f /share/config
parent	2bd9d5bbf6a41d4d47cd52d9ee9471a906b3849b (diff)
download	hydra-a7ca30e854f845f670c852a2edd5ef13656c774f.tar.gz hydra-a7ca30e854f845f670c852a2edd5ef13656c774f.tar.bz2