puppet 0.25.1 → 0.25.2
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of puppet might be problematic. Click here for more details.
- data/CHANGELOG +159 -135
- data/Rakefile +4 -1
- data/conf/gentoo/conf.d/puppetmaster +1 -1
- data/conf/osx/createpackage.sh +12 -0
- data/conf/osx/preflight +4 -0
- data/conf/redhat/puppet.spec +12 -2
- data/conf/redhat/server.init +1 -0
- data/conf/redhat/server.sysconfig +1 -1
- data/ext/ldap/puppet.schema +5 -9
- data/ext/puppetlast +2 -1
- data/ext/rack/README +2 -2
- data/ext/regexp_nodes/classes/databases +2 -0
- data/ext/regexp_nodes/classes/webservers +2 -0
- data/ext/regexp_nodes/parameters/environment/prod +1 -0
- data/ext/regexp_nodes/parameters/environment/qa +3 -0
- data/ext/regexp_nodes/regexp_nodes.rb +215 -0
- data/lib/puppet.rb +1 -1
- data/lib/puppet/agent.rb +2 -2
- data/lib/puppet/application/puppet.rb +1 -1
- data/lib/puppet/application/puppetd.rb +1 -1
- data/lib/puppet/application/puppetdoc.rb +4 -3
- data/lib/puppet/application/puppetrun.rb +5 -14
- data/lib/puppet/application/ralsh.rb +9 -25
- data/lib/puppet/configurer.rb +2 -1
- data/lib/puppet/configurer/fact_handler.rb +8 -6
- data/lib/puppet/daemon.rb +2 -2
- data/lib/puppet/defaults.rb +21 -2
- data/lib/puppet/external/pson/common.rb +1 -1
- data/lib/puppet/external/pson/pure.rb +3 -3
- data/lib/puppet/feature/base.rb +3 -0
- data/lib/puppet/feature/selinux.rb +3 -0
- data/lib/puppet/feature/zlib.rb +6 -0
- data/lib/puppet/file_serving/base.rb +16 -1
- data/lib/puppet/file_serving/metadata.rb +46 -9
- data/lib/puppet/file_serving/mount/file.rb +4 -1
- data/lib/puppet/indirector/catalog/active_record.rb +5 -0
- data/lib/puppet/indirector/envelope.rb +1 -3
- data/lib/puppet/indirector/indirection.rb +13 -16
- data/lib/puppet/indirector/node/ldap.rb +7 -4
- data/lib/puppet/indirector/ssl_file.rb +1 -1
- data/lib/puppet/network/authstore.rb +48 -118
- data/lib/puppet/network/client/resource.rb +2 -15
- data/lib/puppet/network/format.rb +2 -12
- data/lib/puppet/network/format_handler.rb +15 -1
- data/lib/puppet/network/formats.rb +19 -4
- data/lib/puppet/network/handler/fileserver.rb +1 -0
- data/lib/puppet/network/http/handler.rb +1 -0
- data/lib/puppet/network/http/rack/httphandler.rb +0 -18
- data/lib/puppet/network/http/rack/rest.rb +4 -4
- data/lib/puppet/network/http/rack/xmlrpc.rb +4 -4
- data/lib/puppet/network/http/webrick.rb +2 -1
- data/lib/puppet/network/server.rb +1 -1
- data/lib/puppet/node/environment.rb +20 -9
- data/lib/puppet/parameter.rb +17 -1
- data/lib/puppet/parser/ast/boolean_operator.rb +2 -2
- data/lib/puppet/parser/ast/leaf.rb +5 -1
- data/lib/puppet/parser/ast/resourceparam.rb +4 -0
- data/lib/puppet/parser/ast/selector.rb +4 -0
- data/lib/puppet/parser/functions/generate.rb +2 -2
- data/lib/puppet/parser/functions/shellquote.rb +1 -1
- data/lib/puppet/property.rb +3 -11
- data/lib/puppet/provider/cron/crontab.rb +2 -0
- data/lib/puppet/provider/host/parsed.rb +9 -9
- data/lib/puppet/provider/package/blastwave.rb +7 -6
- data/lib/puppet/provider/package/portage.rb +23 -27
- data/lib/puppet/provider/package/rug.rb +1 -1
- data/lib/puppet/provider/package/sun.rb +5 -3
- data/lib/puppet/provider/service/daemontools.rb +1 -1
- data/lib/puppet/provider/service/debian.rb +1 -1
- data/lib/puppet/provider/service/runit.rb +1 -1
- data/lib/puppet/provider/ssh_authorized_key/parsed.rb +2 -1
- data/lib/puppet/provider/sshkey/parsed.rb +3 -5
- data/lib/puppet/provider/zone/solaris.rb +1 -1
- data/lib/puppet/rails.rb +9 -2
- data/lib/puppet/rails/benchmark.rb +1 -1
- data/lib/puppet/rails/host.rb +2 -7
- data/lib/puppet/rails/resource.rb +20 -26
- data/lib/puppet/resource/catalog.rb +3 -3
- data/lib/puppet/resource/reference.rb +13 -25
- data/lib/puppet/ssl/certificate.rb +3 -2
- data/lib/puppet/ssl/host.rb +14 -33
- data/lib/puppet/sslcertificates.rb +1 -5
- data/lib/puppet/sslcertificates/ca.rb +8 -7
- data/lib/puppet/transaction.rb +15 -12
- data/lib/puppet/type.rb +12 -5
- data/lib/puppet/type/file.rb +26 -32
- data/lib/puppet/type/file/content.rb +5 -5
- data/lib/puppet/type/file/ensure.rb +6 -17
- data/lib/puppet/type/file/mode.rb +18 -1
- data/lib/puppet/type/file/source.rb +12 -12
- data/lib/puppet/type/host.rb +6 -9
- data/lib/puppet/type/k5login.rb +1 -1
- data/lib/puppet/type/maillist.rb +4 -7
- data/lib/puppet/type/port.rb +6 -5
- data/lib/puppet/type/resources.rb +12 -12
- data/lib/puppet/type/sshkey.rb +5 -5
- data/lib/puppet/type/tidy.rb +9 -2
- data/lib/puppet/type/yumrepo.rb +3 -1
- data/lib/puppet/util.rb +64 -56
- data/lib/puppet/util/backups.rb +2 -1
- data/lib/puppet/util/filetype.rb +46 -0
- data/lib/puppet/util/log.rb +10 -18
- data/lib/puppet/util/log_paths.rb +14 -0
- data/lib/puppet/util/methodhelper.rb +3 -4
- data/lib/puppet/util/monkey_patches.rb +8 -0
- data/lib/puppet/util/rdoc/generators/puppet_generator.rb +5 -3
- data/lib/puppet/util/rdoc/parser.rb +32 -16
- data/lib/puppet/util/reference.rb +6 -3
- data/lib/puppet/util/selinux.rb +21 -14
- data/lib/puppet/util/settings.rb +30 -25
- data/lib/puppet/util/settings/file_setting.rb +7 -4
- data/lib/puppet/util/subclass_loader.rb +1 -1
- data/lib/puppet/util/suidmanager.rb +11 -1
- data/lib/puppet/util/tagging.rb +22 -4
- data/man/man8/filebucket.8 +23 -18
- data/man/man8/pi.8 +42 -20
- data/man/man8/puppet.8 +47 -32
- data/man/man8/puppet.conf.8 +807 -764
- data/man/man8/puppetca.8 +24 -14
- data/man/man8/puppetd.8 +33 -16
- data/man/man8/puppetdoc.8 +71 -18
- data/man/man8/puppetmasterd.8 +18 -25
- data/man/man8/puppetqd.8 +60 -0
- data/man/man8/puppetrun.8 +27 -14
- data/man/man8/ralsh.8 +33 -40
- data/spec/integration/bin/puppetmasterd.rb +3 -2
- data/spec/integration/defaults.rb +11 -0
- data/spec/integration/file_serving/metadata.rb +1 -0
- data/spec/integration/indirector/file_content/file_server.rb +2 -1
- data/spec/integration/ssl/certificate_request.rb +2 -0
- data/spec/integration/type/file.rb +20 -1
- data/spec/shared_behaviours/file_serving.rb +1 -1
- data/spec/spec_helper.rb +1 -1
- data/spec/unit/application/puppet.rb +11 -30
- data/spec/unit/application/puppetd.rb +1 -0
- data/spec/unit/application/puppetdoc.rb +13 -4
- data/spec/unit/application/puppetmasterd.rb +1 -0
- data/spec/unit/application/puppetrun.rb +12 -2
- data/spec/unit/application/ralsh.rb +39 -22
- data/spec/unit/configurer.rb +6 -0
- data/spec/unit/configurer/fact_handler.rb +15 -1
- data/spec/unit/file_serving/metadata.rb +128 -16
- data/spec/unit/file_serving/mount/file.rb +8 -0
- data/spec/unit/indirector/catalog/active_record.rb +20 -1
- data/spec/unit/indirector/catalog/compiler.rb +2 -1
- data/spec/unit/indirector/indirection.rb +29 -18
- data/spec/unit/indirector/node/ldap.rb +20 -6
- data/spec/unit/network/authstore.rb +197 -0
- data/spec/unit/network/format_handler.rb +28 -8
- data/spec/unit/network/formats.rb +31 -0
- data/spec/unit/network/http/handler.rb +10 -0
- data/spec/unit/network/http/webrick.rb +2 -2
- data/spec/unit/network/rest_authconfig.rb +2 -2
- data/spec/unit/network/rights.rb +1 -1
- data/spec/unit/node/environment.rb +39 -23
- data/spec/unit/other/selinux.rb +2 -2
- data/spec/unit/parameter.rb +8 -0
- data/spec/unit/parser/ast/leaf.rb +9 -0
- data/spec/unit/parser/ast/selector.rb +8 -1
- data/spec/unit/parser/lexer.rb +1 -1
- data/spec/unit/parser/resource.rb +11 -0
- data/spec/unit/parser/resource/reference.rb +13 -1
- data/spec/unit/property.rb +6 -0
- data/spec/unit/provider/mount/parsed.rb +3 -1
- data/spec/unit/provider/service/debian.rb +1 -1
- data/spec/unit/provider/ssh_authorized_key/parsed.rb +9 -1
- data/spec/unit/provider/sshkey/parsed.rb +19 -0
- data/spec/unit/rails.rb +22 -9
- data/spec/unit/rails/resource.rb +20 -0
- data/spec/unit/ssl/host.rb +19 -57
- data/spec/unit/transaction.rb +39 -4
- data/spec/unit/type.rb +9 -0
- data/spec/unit/type/file/content.rb +29 -0
- data/spec/unit/type/maillist.rb +42 -0
- data/spec/unit/type/resources.rb +66 -1
- data/spec/unit/type/tidy.rb +14 -1
- data/spec/unit/util/autoload.rb +2 -0
- data/spec/unit/util/ldap/connection.rb +1 -1
- data/spec/unit/util/log.rb +14 -0
- data/spec/unit/util/monkey_patches.rb +103 -0
- data/spec/unit/util/queue.rb +10 -2
- data/spec/unit/util/selinux.rb +61 -2
- data/spec/unit/util/settings.rb +19 -0
- data/spec/unit/util/settings/file_setting.rb +25 -0
- data/spec/unit/util/tagging.rb +10 -0
- data/tasks/rake/changelog.rake +15 -0
- data/tasks/rake/ci.rake +22 -0
- data/tasks/rake/dailybuild.rake +9 -0
- data/tasks/rake/gem.rake +46 -0
- data/tasks/rake/git_workflow.rake +121 -0
- data/tasks/rake/metrics.rake +6 -0
- data/tasks/rake/sign.rake +14 -0
- data/tasks/rake/testbranch.rake +16 -0
- data/tasks/rake/tracdocs.rake +8 -0
- data/test/data/providers/ssh_authorized_key/parsed/authorized_keys +1 -0
- metadata +1042 -1288
- data/ext/bin/sleeper +0 -67
- data/ext/module_puppet +0 -209
data/man/man8/filebucket.8
CHANGED
@@ -1,7 +1,6 @@
|
|
1
1
|
.TH "" "" ""
|
2
2
|
.SH NAME
|
3
|
-
\-
|
4
|
-
|
3
|
+
\-
|
5
4
|
.\" Man page generated from reStructeredText.
|
6
5
|
|
7
6
|
.SH SYNOPSIS
|
@@ -9,16 +8,18 @@ A stand\-alone Puppet filebucket client.
|
|
9
8
|
|
10
9
|
|
11
10
|
.SH USAGE
|
12
|
-
|
13
|
-
|
11
|
+
.INDENT 0.0
|
12
|
+
.INDENT 3.5
|
13
|
+
.INDENT 0.0
|
14
14
|
|
15
15
|
.TP
|
16
16
|
.B filebucket [\-h|\-\-help] [\-V|\-\-version] [\-d|\-\-debug] [\-v|\-\-verbose]
|
17
17
|
[\-l|\-\-local] [\-r|\-\-remote]
|
18
18
|
[\-s|\-\-server <server>] [\-b|\-\-bucket <directory>] <file> <file> ...
|
19
19
|
|
20
|
-
|
21
|
-
|
20
|
+
.UNINDENT
|
21
|
+
.UNINDENT
|
22
|
+
.UNINDENT
|
22
23
|
|
23
24
|
.SH DESCRIPTION
|
24
25
|
This is a stand\-alone filebucket client for sending files to a local or
|
@@ -28,6 +29,7 @@ central filebucket.
|
|
28
29
|
.SH USAGE
|
29
30
|
This client can operate in three modes, with only one mode per call:
|
30
31
|
|
32
|
+
.INDENT 0.0
|
31
33
|
|
32
34
|
.TP
|
33
35
|
.B backup: Send one or more files to the specified file bucket. Each sent
|
@@ -45,6 +47,7 @@ with the sum into the specified file path. You can specify an
|
|
45
47
|
entirely new path to this argument; you are not restricted to
|
46
48
|
restoring the content to its original location.
|
47
49
|
|
50
|
+
.UNINDENT
|
48
51
|
Note that +filebucket+ defaults to using a network\-based filebucket
|
49
52
|
available on the server named +puppet+. To use this, you\'ll have to be
|
50
53
|
running as a user with valid Puppet certificates. Alternatively, you can
|
@@ -52,15 +55,15 @@ use your local file bucket by specifying +\-\-local+.
|
|
52
55
|
|
53
56
|
|
54
57
|
.SH EXAMPLE
|
55
|
-
|
56
|
-
|
58
|
+
.INDENT 0.0
|
59
|
+
.INDENT 3.5
|
57
60
|
$ filebucket backup /etc/passwd
|
58
61
|
/etc/passwd: 429b225650b912a2ee067b0a4cf1e949
|
59
62
|
$ filebucket restore /tmp/passwd 429b225650b912a2ee067b0a4cf1e949
|
60
63
|
$
|
61
64
|
|
62
|
-
|
63
|
-
|
65
|
+
.UNINDENT
|
66
|
+
.UNINDENT
|
64
67
|
|
65
68
|
.SH OPTIONS
|
66
69
|
Note that any configuration parameter that\'s valid in the configuration
|
@@ -69,8 +72,8 @@ configuration parameter, so you can specify \'\-\-ssldir <directory>\' as an
|
|
69
72
|
argument.
|
70
73
|
|
71
74
|
See the configuration file documentation at
|
72
|
-
http://reductivelabs.com/
|
73
|
-
|
75
|
+
\fI\%http://reductivelabs.com/trac/puppet/wiki/ConfigurationReference\fP for the
|
76
|
+
full list of acceptable parameters. A commented list of all
|
74
77
|
configuration options can also be generated by running puppet with
|
75
78
|
\'\-\-genconfig\'.
|
76
79
|
|
@@ -78,6 +81,7 @@ debug: Enable full debugging.
|
|
78
81
|
|
79
82
|
help: Print this help message
|
80
83
|
|
84
|
+
.INDENT 0.0
|
81
85
|
|
82
86
|
.TP
|
83
87
|
.B local: Use the local filebucket. This will use the default
|
@@ -88,6 +92,7 @@ configuration information.
|
|
88
92
|
.B remote: Use a remote filebucket. This will use the default
|
89
93
|
configuration information.
|
90
94
|
|
95
|
+
.UNINDENT
|
91
96
|
server: The server to send the file to, instead of locally.
|
92
97
|
|
93
98
|
verbose: Print extra information.
|
@@ -96,12 +101,12 @@ version: Print version information.
|
|
96
101
|
|
97
102
|
|
98
103
|
.SH EXAMPLE
|
99
|
-
|
100
|
-
|
104
|
+
.INDENT 0.0
|
105
|
+
.INDENT 3.5
|
101
106
|
filebucket \-b /tmp/filebucket /my/file
|
102
107
|
|
103
|
-
|
104
|
-
|
108
|
+
.UNINDENT
|
109
|
+
.UNINDENT
|
105
110
|
|
106
111
|
.SH AUTHOR
|
107
112
|
Luke Kanies
|
@@ -112,5 +117,5 @@ Copyright (c) 2005 Reductive Labs, LLC Licensed under the GNU Public
|
|
112
117
|
License
|
113
118
|
|
114
119
|
|
115
|
-
.\" Generated by docutils manpage writer on
|
116
|
-
.\"
|
120
|
+
.\" Generated by docutils manpage writer on 2009-12-30 19:24.
|
121
|
+
.\"
|
data/man/man8/pi.8
CHANGED
@@ -1,34 +1,56 @@
|
|
1
1
|
.TH "" "" ""
|
2
2
|
.SH NAME
|
3
|
-
\-
|
4
|
-
|
3
|
+
\-
|
5
4
|
.\" Man page generated from reStructeredText.
|
6
5
|
|
7
|
-
.
|
8
|
-
.
|
6
|
+
.SH SYNOPSIS
|
7
|
+
Print help about puppet types on the console. Run with \'\-h\' to get
|
8
|
+
detailed help.
|
9
|
+
|
10
|
+
|
11
|
+
.SH USAGE
|
12
|
+
.INDENT 0.0
|
13
|
+
.INDENT 3.5
|
14
|
+
pi [\-h|\-\-help] [\-s|\-\-short] [\-p|\-\-providers] [\-l|\-\-list] [\-m|\-\-meta]
|
15
|
+
|
16
|
+
.UNINDENT
|
17
|
+
.UNINDENT
|
18
|
+
|
19
|
+
.SH DESCRIPTION
|
20
|
+
Prints details of Puppet types, providers and metaparameters on the
|
21
|
+
console.
|
22
|
+
|
23
|
+
|
24
|
+
.SH OPTIONS
|
25
|
+
help: Print this help text
|
26
|
+
|
27
|
+
providers: Describe providers in detail for each type
|
28
|
+
|
29
|
+
list: List all types
|
9
30
|
|
10
|
-
|
11
|
-
.B Print documentation for puppet types and their parameters
|
31
|
+
meta: List all metaparameters
|
12
32
|
|
13
|
-
|
14
|
-
.B \-l , \-\-list
|
15
|
-
List all types
|
33
|
+
short: List only parameters without detail
|
16
34
|
|
17
35
|
|
18
|
-
.
|
19
|
-
.
|
20
|
-
|
36
|
+
.SH EXAMPLE
|
37
|
+
.INDENT 0.0
|
38
|
+
.INDENT 3.5
|
39
|
+
pi \-\-list
|
40
|
+
pi file \-\-providers
|
41
|
+
pi user \-s \-m
|
21
42
|
|
43
|
+
.UNINDENT
|
44
|
+
.UNINDENT
|
22
45
|
|
23
|
-
.
|
24
|
-
|
25
|
-
Only list parameters without detail
|
46
|
+
.SH AUTHOR
|
47
|
+
David Lutterkort
|
26
48
|
|
27
49
|
|
28
|
-
.
|
29
|
-
|
30
|
-
|
50
|
+
.SH COPYRIGHT
|
51
|
+
Copyright (c) 2005 Reductive Labs, LLC Licensed under the GNU Public
|
52
|
+
License
|
31
53
|
|
32
54
|
|
33
|
-
.\" Generated by docutils manpage writer on
|
34
|
-
.\"
|
55
|
+
.\" Generated by docutils manpage writer on 2009-12-30 19:24.
|
56
|
+
.\"
|
data/man/man8/puppet.8
CHANGED
@@ -1,28 +1,29 @@
|
|
1
1
|
.TH "" "" ""
|
2
2
|
.SH NAME
|
3
|
-
\-
|
4
|
-
|
3
|
+
\-
|
5
4
|
.\" Man page generated from reStructeredText.
|
6
5
|
|
7
6
|
.SH SYNOPSIS
|
8
|
-
Run a stand\-alone +puppet+
|
7
|
+
Run a stand\-alone +puppet+ manifest.
|
9
8
|
|
10
9
|
|
11
10
|
.SH USAGE
|
12
|
-
|
13
|
-
|
11
|
+
.INDENT 0.0
|
12
|
+
.INDENT 3.5
|
13
|
+
.INDENT 0.0
|
14
14
|
|
15
15
|
.TP
|
16
|
-
.B puppet [\-h|\-\-help] [\-V|\-\-version] [\-d|\-\-debug] [\-v|\-\-verbose]
|
17
|
-
[\-l|\-\-logdest <file>] <file>
|
18
|
-
|
16
|
+
.B puppet [\-h|\-\-help] [\-V|\-\-version] [\-d|\-\-debug] [\-v|\-\-verbose] [\-e|\-\-execute]
|
17
|
+
[\-\-detailed\-exitcodes] [\-l|\-\-logdest <file>] <file>
|
19
18
|
|
20
|
-
|
19
|
+
.UNINDENT
|
20
|
+
.UNINDENT
|
21
|
+
.UNINDENT
|
21
22
|
|
22
23
|
.SH DESCRIPTION
|
23
|
-
This is the standalone puppet execution
|
24
|
-
individual
|
25
|
-
|
24
|
+
This is the standalone puppet execution tool; use it to execute
|
25
|
+
individual manifests that you write. If you need to execute site\-wide
|
26
|
+
manifests, use +puppetd+ and +puppetmasterd+.
|
26
27
|
|
27
28
|
|
28
29
|
.SH OPTIONS
|
@@ -32,46 +33,60 @@ configuration parameter, so you can specify \'\-\-ssldir <directory>\' as an
|
|
32
33
|
argument.
|
33
34
|
|
34
35
|
See the configuration file documentation at
|
35
|
-
http://reductivelabs.com/
|
36
|
-
|
36
|
+
\fI\%http://reductivelabs.com/trac/puppet/wiki/ConfigurationReference\fP for the
|
37
|
+
full list of acceptable parameters. A commented list of all
|
37
38
|
configuration options can also be generated by running puppet with
|
38
39
|
\'\-\-genconfig\'.
|
39
40
|
|
40
|
-
debug:
|
41
|
-
|
42
|
-
help: Print this help message
|
41
|
+
debug: Enable full debugging.
|
43
42
|
|
43
|
+
.INDENT 0.0
|
44
44
|
|
45
45
|
.TP
|
46
|
-
.B
|
47
|
-
|
48
|
-
|
49
|
-
|
46
|
+
.B detailed\-exitcodes: Provide transaction information via exit codes. If
|
47
|
+
this is enabled, an exit code of \'2\' means there
|
48
|
+
were changes, and an exit code of \'4\' means that
|
49
|
+
there were failures during the transaction.
|
50
|
+
|
51
|
+
.UNINDENT
|
52
|
+
help: Print this help message
|
50
53
|
|
54
|
+
.INDENT 0.0
|
51
55
|
|
52
56
|
.TP
|
53
|
-
.B
|
54
|
-
|
55
|
-
|
57
|
+
.B loadclasses: Load any stored classes. +puppetd+ caches configured
|
58
|
+
classes (usually at /etc/puppet/classes.txt), and
|
59
|
+
setting this option causes all of those classes to
|
60
|
+
be set in your +puppet+ manifest.
|
56
61
|
|
57
|
-
verbose: Print extra information.
|
58
62
|
|
63
|
+
.TP
|
64
|
+
.B logdest: Where to send messages. Choose between syslog, the
|
65
|
+
console, and a log file. Defaults to sending
|
66
|
+
messages to the console.
|
59
67
|
|
60
|
-
.
|
68
|
+
.UNINDENT
|
69
|
+
execute: Execute a specific piece of Puppet code
|
70
|
+
|
71
|
+
verbose: Print extra information.
|
61
72
|
|
62
|
-
.\" visit_block_quote
|
63
|
-
puppet \-l /tmp/script.log script.pp
|
64
73
|
|
74
|
+
.SH EXAMPLE
|
75
|
+
.INDENT 0.0
|
76
|
+
.INDENT 3.5
|
77
|
+
puppet \-l /tmp/manifest.log manifest.pp
|
65
78
|
|
66
|
-
|
79
|
+
.UNINDENT
|
80
|
+
.UNINDENT
|
67
81
|
|
68
82
|
.SH AUTHOR
|
69
83
|
Luke Kanies
|
70
|
-
|
84
|
+
|
85
|
+
|
71
86
|
.SH COPYRIGHT
|
72
87
|
Copyright (c) 2005 Reductive Labs, LLC Licensed under the GNU Public
|
73
88
|
License
|
74
89
|
|
75
90
|
|
76
|
-
.\" Generated by docutils manpage writer on
|
77
|
-
.\"
|
91
|
+
.\" Generated by docutils manpage writer on 2009-12-30 19:24.
|
92
|
+
.\"
|
data/man/man8/puppet.conf.8
CHANGED
@@ -1,53 +1,30 @@
|
|
1
1
|
.TH Configuration Reference "" "" ""
|
2
2
|
.SH NAME
|
3
|
-
Configuration Reference \-
|
4
|
-
|
3
|
+
Configuration Reference \-
|
5
4
|
.\" Man page generated from reStructeredText.
|
6
|
-
|
7
|
-
.I (last generated on Mon May 05 09:33:01 +1000 2008)
|
8
|
-
|
5
|
+
\fPThis page is autogenerated; any changes will get overwritten\fP \fI(last generated on Wed Dec 30 19:31:12 \-0500 2009)\fP
|
9
6
|
|
10
7
|
|
11
8
|
.\" topic: Contents
|
12
|
-
.\"
|
9
|
+
.\"
|
13
10
|
.\" Specifying Configuration Parameters
|
14
|
-
.\"
|
11
|
+
.\"
|
15
12
|
.\" Signals
|
16
|
-
.\"
|
13
|
+
.\"
|
17
14
|
.\" Configuration Parameter Reference
|
18
15
|
|
19
16
|
.SH Specifying Configuration Parameters
|
20
17
|
|
21
18
|
.SS On The Command\-Line
|
22
|
-
Every Puppet executable (with the exception of
|
23
|
-
.\" visit_literal
|
24
|
-
puppetdoc
|
25
|
-
.\" depart_literal
|
26
|
-
) accepts all of
|
19
|
+
Every Puppet executable (with the exception of \fBpuppetdoc\fP) accepts all of
|
27
20
|
the parameters below, but not all of the arguments make sense for every executable.
|
28
|
-
Each parameter has a section listed with it in parentheses; often, that section
|
29
|
-
will map to an executable (e.g.,
|
30
|
-
.\" visit_literal
|
31
|
-
puppetd
|
32
|
-
.\" depart_literal
|
33
|
-
), in which case it probably only
|
34
|
-
makes sense for that one executable. If
|
35
|
-
.\" visit_literal
|
36
|
-
main
|
37
|
-
.\" depart_literal
|
38
|
-
is listed as the section,
|
39
|
-
it is most likely an option that is valid for everyone.
|
40
21
|
|
41
22
|
I have tried to be as thorough as possible in the descriptions of the
|
42
23
|
arguments, so it should be obvious whether an argument is appropriate or not.
|
43
24
|
|
44
25
|
These parameters can be supplied to the executables either as command\-line
|
45
26
|
options or in the configuration file. For instance, the command\-line
|
46
|
-
invocation below would set the configuration directory to
|
47
|
-
.\" visit_literal
|
48
|
-
/private/puppet
|
49
|
-
.\" depart_literal
|
50
|
-
:
|
27
|
+
invocation below would set the configuration directory to \fB/private/puppet\fP:
|
51
28
|
|
52
29
|
|
53
30
|
.nf
|
@@ -69,72 +46,24 @@ the client configuration.
|
|
69
46
|
.SS Configuration Files
|
70
47
|
As mentioned above, the configuration parameters can also be stored in a
|
71
48
|
configuration file, located in the configuration directory. As root, the
|
72
|
-
default configuration directory is
|
73
|
-
|
74
|
-
|
75
|
-
.\" depart_literal
|
76
|
-
, and as a regular user, the
|
77
|
-
default configuration directory is
|
78
|
-
.\" visit_literal
|
79
|
-
~user/.puppet
|
80
|
-
.\" depart_literal
|
81
|
-
. As of 0.23.0, all
|
82
|
-
executables look for
|
83
|
-
.\" visit_literal
|
84
|
-
puppet.conf
|
85
|
-
.\" depart_literal
|
86
|
-
in their configuration directory
|
49
|
+
default configuration directory is \fB/etc/puppet\fP, and as a regular user, the
|
50
|
+
default configuration directory is \fB~user/.puppet\fP. As of 0.23.0, all
|
51
|
+
executables look for \fBpuppet.conf\fP in their configuration directory
|
87
52
|
(although they previously looked for separate files). For example,
|
53
|
+
\fBpuppet.conf\fP is located at \fB/etc/puppet/puppet.conf\fP as root and
|
54
|
+
\fB~user/.puppet/puppet.conf\fP as a regular user by default.
|
88
55
|
|
89
|
-
|
90
|
-
puppet.conf
|
91
|
-
.\" depart_literal
|
92
|
-
is located at
|
93
|
-
.\" visit_literal
|
94
|
-
/etc/puppet/puppet.conf
|
95
|
-
.\" depart_literal
|
96
|
-
as root and
|
97
|
-
|
98
|
-
.\" visit_literal
|
99
|
-
~user/.puppet/puppet.conf
|
100
|
-
.\" depart_literal
|
101
|
-
as a regular user by default.
|
102
|
-
|
103
|
-
All executables will set any parameters set within the
|
104
|
-
.\" visit_literal
|
105
|
-
main
|
106
|
-
.\" depart_literal
|
107
|
-
section,
|
56
|
+
All executables will set any parameters set within the \fBmain\fP section,
|
108
57
|
while each executable will also look for a section named for the executable
|
109
|
-
and load those parameters. For example,
|
110
|
-
|
111
|
-
|
112
|
-
.\" depart_literal
|
113
|
-
will look for a
|
114
|
-
section named
|
115
|
-
.\" visit_literal
|
116
|
-
puppetd
|
117
|
-
.\" depart_literal
|
118
|
-
, and
|
119
|
-
.\" visit_literal
|
120
|
-
puppetmasterd
|
121
|
-
.\" depart_literal
|
122
|
-
looks for a section
|
123
|
-
named
|
124
|
-
.\" visit_literal
|
125
|
-
puppetmasterd
|
126
|
-
.\" depart_literal
|
127
|
-
. This allows you to use a single configuration file
|
58
|
+
and load those parameters. For example, \fBpuppetd\fP will look for a
|
59
|
+
section named \fBpuppetd\fP, and \fBpuppetmasterd\fP looks for a section
|
60
|
+
named \fBpuppetmasterd\fP. This allows you to use a single configuration file
|
128
61
|
to customize the settings for all of your executables.
|
129
62
|
|
130
63
|
|
131
64
|
.SS File Format
|
132
65
|
The file follows INI\-style formatting. Here is an example of a very simple
|
133
|
-
|
134
|
-
.\" visit_literal
|
135
|
-
puppet.conf
|
136
|
-
.\" depart_literal
|
137
|
-
file:
|
66
|
+
\fBpuppet.conf\fP file:
|
138
67
|
|
139
68
|
|
140
69
|
.nf
|
@@ -142,12 +71,8 @@ puppet.conf
|
|
142
71
|
confdir = /private/puppet
|
143
72
|
storeconfigs = true
|
144
73
|
.fi
|
145
|
-
Note that boolean parameters must be explicitly specified as
|
146
|
-
.
|
147
|
-
or
|
148
|
-
|
149
|
-
.I false
|
150
|
-
as seen above.
|
74
|
+
Note that boolean parameters must be explicitly specified as \fItrue\fP or
|
75
|
+
\fIfalse\fP as seen above.
|
151
76
|
|
152
77
|
If you need to change file parameters (e.g., reset the mode or owner), do
|
153
78
|
so within curly braces on the same line:
|
@@ -159,9 +84,7 @@ so within curly braces on the same line:
|
|
159
84
|
.fi
|
160
85
|
If you\'re starting out with a fresh configuration, you may wish to let
|
161
86
|
the executable generate a template configuration file for you by invoking
|
162
|
-
the executable in question with the
|
163
|
-
.I \-\-genconfig
|
164
|
-
command. The executable
|
87
|
+
the executable in question with the \fI\-\-genconfig\fP command. The executable
|
165
88
|
will print a template configuration to standard output, which can be
|
166
89
|
redirected to a file like so:
|
167
90
|
|
@@ -170,19 +93,10 @@ redirected to a file like so:
|
|
170
93
|
$ puppetd \-\-genconfig > /etc/puppet/puppet.conf
|
171
94
|
.fi
|
172
95
|
Note that this invocation will replace the contents of any pre\-existing
|
173
|
-
|
174
|
-
.I puppet.conf
|
175
|
-
file, so make a backup of your present config if it contains
|
96
|
+
\fIpuppet.conf\fP file, so make a backup of your present config if it contains
|
176
97
|
valuable information.
|
177
98
|
|
178
|
-
|
179
|
-
the process used to generate the configuraiton (\'puppetd\', in this case).
|
180
|
-
|
181
|
-
Like the
|
182
|
-
.I \-\-genconfig
|
183
|
-
argument, the executables also accept a
|
184
|
-
.I \-\-genmanifest
|
185
|
-
|
99
|
+
Like the \fI\-\-genconfig\fP argument, the executables also accept a \fI\-\-genmanifest\fP
|
186
100
|
argument, which will generate a manifest that can be used to manage all of
|
187
101
|
Puppet\'s directories and files and prints it to standard output. This can
|
188
102
|
likewise be redirected to a file:
|
@@ -191,16 +105,8 @@ likewise be redirected to a file:
|
|
191
105
|
.nf
|
192
106
|
$ puppetd \-\-genmanifest > /etc/puppet/manifests/site.pp
|
193
107
|
.fi
|
194
|
-
Puppet can also create user and group accounts for itself (one
|
195
|
-
|
196
|
-
group
|
197
|
-
and one
|
198
|
-
.I puppet
|
199
|
-
user) if it is invoked as
|
200
|
-
.I root
|
201
|
-
with the
|
202
|
-
.I \-\-mkusers
|
203
|
-
argument:
|
108
|
+
Puppet can also create user and group accounts for itself (one \fIpuppet\fP group
|
109
|
+
and one \fIpuppet\fP user) if it is invoked as \fIroot\fP with the \fI\-\-mkusers\fP argument:
|
204
110
|
|
205
111
|
|
206
112
|
.nf
|
@@ -208,54 +114,14 @@ $ puppetd \-\-mkusers
|
|
208
114
|
.fi
|
209
115
|
|
210
116
|
.SH Signals
|
211
|
-
The
|
212
|
-
|
213
|
-
|
214
|
-
|
215
|
-
|
216
|
-
|
217
|
-
puppetmasterd
|
218
|
-
.\" depart_literal
|
219
|
-
executables catch some signals for special
|
220
|
-
handling. Both daemons catch (
|
221
|
-
.\" visit_literal
|
222
|
-
SIGHUP
|
223
|
-
.\" depart_literal
|
224
|
-
), which forces the server to restart
|
225
|
-
tself. Predictably, interrupt and terminate (
|
226
|
-
.\" visit_literal
|
227
|
-
SIGINT
|
228
|
-
.\" depart_literal
|
229
|
-
and
|
230
|
-
.\" visit_literal
|
231
|
-
SIGHUP
|
232
|
-
.\" depart_literal
|
233
|
-
) will shut
|
234
|
-
down the server, whether it be an instance of
|
235
|
-
.\" visit_literal
|
236
|
-
puppetd
|
237
|
-
.\" depart_literal
|
238
|
-
or
|
239
|
-
.\" visit_literal
|
240
|
-
puppetmasterd
|
241
|
-
.\" depart_literal
|
242
|
-
.
|
243
|
-
|
244
|
-
Sending the
|
245
|
-
.\" visit_literal
|
246
|
-
SIGUSR1
|
247
|
-
.\" depart_literal
|
248
|
-
signal to an instance of
|
249
|
-
.\" visit_literal
|
250
|
-
puppetd
|
251
|
-
.\" depart_literal
|
252
|
-
will cause it to
|
117
|
+
The \fBpuppetd\fP and \fBpuppetmasterd\fP executables catch some signals for special
|
118
|
+
handling. Both daemons catch (\fBSIGHUP\fP), which forces the server to restart
|
119
|
+
tself. Predictably, interrupt and terminate (\fBSIGINT\fP and \fBSIGTERM\fP) will shut
|
120
|
+
down the server, whether it be an instance of \fBpuppetd\fP or \fBpuppetmasterd\fP.
|
121
|
+
|
122
|
+
Sending the \fBSIGUSR1\fP signal to an instance of \fBpuppetd\fP will cause it to
|
253
123
|
immediately begin a new configuration transaction with the server. This
|
254
|
-
signal has no effect on
|
255
|
-
.\" visit_literal
|
256
|
-
puppetmasterd
|
257
|
-
.\" depart_literal
|
258
|
-
.
|
124
|
+
signal has no effect on \fBpuppetmasterd\fP.
|
259
125
|
|
260
126
|
|
261
127
|
.SH Configuration Parameter Reference
|
@@ -263,192 +129,217 @@ Below is a list of all documented parameters. Not all of them are valid with al
|
|
263
129
|
Puppet executables, but the executables will ignore any inappropriate values.
|
264
130
|
|
265
131
|
|
132
|
+
.SS async_storeconfigs
|
133
|
+
Whether to use a queueing system to provide asynchronous database integration. Requires that \fBpuppetqd\fP be running and that \'PSON\' support for ruby be installed.
|
134
|
+
|
135
|
+
.INDENT 0.0
|
136
|
+
|
137
|
+
.IP \(bu 2
|
138
|
+
\fPDefault\fP: false
|
139
|
+
|
140
|
+
.UNINDENT
|
141
|
+
|
266
142
|
.SS authconfig
|
267
|
-
The configuration file that defines the rights to the different namespaces and methods. This can be used as a coarse\-grained authorization system for both
|
268
|
-
.\" visit_literal
|
269
|
-
puppetd
|
270
|
-
.\" depart_literal
|
271
|
-
and
|
272
|
-
.\" visit_literal
|
273
|
-
puppetmasterd
|
274
|
-
.\" depart_literal
|
275
|
-
.
|
143
|
+
The configuration file that defines the rights to the different namespaces and methods. This can be used as a coarse\-grained authorization system for both \fBpuppetd\fP and \fBpuppetmasterd\fP.
|
276
144
|
|
145
|
+
.INDENT 0.0
|
277
146
|
|
278
|
-
.
|
279
|
-
\
|
280
|
-
Default: $confdir/namespaceauth.conf
|
147
|
+
.IP \(bu 2
|
148
|
+
\fPDefault\fP: $confdir/namespaceauth.conf
|
281
149
|
|
150
|
+
.UNINDENT
|
282
151
|
|
283
152
|
.SS autoflush
|
284
153
|
Whether log files should always flush to disk.
|
285
154
|
|
155
|
+
.INDENT 0.0
|
286
156
|
|
287
|
-
.
|
288
|
-
\
|
289
|
-
Default: false
|
157
|
+
.IP \(bu 2
|
158
|
+
\fPDefault\fP: false
|
290
159
|
|
160
|
+
.UNINDENT
|
291
161
|
|
292
162
|
.SS autosign
|
293
163
|
Whether to enable autosign. Valid values are true (which autosigns any key request, and is a very bad idea), false (which never autosigns any key request), and the path to a file, which uses that configuration file to determine which keys to sign.
|
294
164
|
|
165
|
+
.INDENT 0.0
|
295
166
|
|
296
|
-
.
|
297
|
-
\
|
298
|
-
Default: $confdir/autosign.conf
|
167
|
+
.IP \(bu 2
|
168
|
+
\fPDefault\fP: $confdir/autosign.conf
|
299
169
|
|
170
|
+
.UNINDENT
|
300
171
|
|
301
172
|
.SS bindaddress
|
302
|
-
The address
|
173
|
+
The address a listening server should bind to. Mongrel servers default to 127.0.0.1 and WEBrick defaults to 0.0.0.0.
|
303
174
|
|
304
175
|
|
305
176
|
.SS bucketdir
|
306
177
|
Where FileBucket files are stored.
|
307
178
|
|
179
|
+
.INDENT 0.0
|
308
180
|
|
309
|
-
.
|
310
|
-
\
|
311
|
-
Default: $vardir/bucket
|
181
|
+
.IP \(bu 2
|
182
|
+
\fPDefault\fP: $vardir/bucket
|
312
183
|
|
184
|
+
.UNINDENT
|
313
185
|
|
314
186
|
.SS ca
|
315
187
|
Wether the master should function as a certificate authority.
|
316
188
|
|
189
|
+
.INDENT 0.0
|
317
190
|
|
318
|
-
.
|
319
|
-
\
|
320
|
-
Default: true
|
191
|
+
.IP \(bu 2
|
192
|
+
\fPDefault\fP: true
|
321
193
|
|
194
|
+
.UNINDENT
|
322
195
|
|
323
196
|
.SS ca_days
|
324
|
-
How long a certificate should be valid.
|
197
|
+
How long a certificate should be valid. This parameter is deprecated, use ca_ttl instead
|
325
198
|
|
326
199
|
|
327
200
|
.SS ca_md
|
328
201
|
The type of hash used in certificates.
|
329
202
|
|
203
|
+
.INDENT 0.0
|
330
204
|
|
331
|
-
.
|
332
|
-
\
|
333
|
-
Default: md5
|
205
|
+
.IP \(bu 2
|
206
|
+
\fPDefault\fP: md5
|
334
207
|
|
208
|
+
.UNINDENT
|
335
209
|
|
336
210
|
.SS ca_port
|
337
211
|
The port to use for the certificate authority.
|
338
212
|
|
213
|
+
.INDENT 0.0
|
339
214
|
|
340
|
-
.
|
341
|
-
\
|
342
|
-
Default: $masterport
|
215
|
+
.IP \(bu 2
|
216
|
+
\fPDefault\fP: $masterport
|
343
217
|
|
218
|
+
.UNINDENT
|
344
219
|
|
345
220
|
.SS ca_server
|
346
221
|
The server to use for certificate authority requests. It\'s a separate server because it cannot and does not need to horizontally scale.
|
347
222
|
|
223
|
+
.INDENT 0.0
|
348
224
|
|
349
|
-
.
|
350
|
-
\
|
351
|
-
Default: $server
|
225
|
+
.IP \(bu 2
|
226
|
+
\fPDefault\fP: $server
|
352
227
|
|
228
|
+
.UNINDENT
|
353
229
|
|
354
230
|
.SS ca_ttl
|
355
|
-
The default TTL for new certificates; valid values
|
231
|
+
The default TTL for new certificates; valid values must be an integer, optionally followed by one of the units \'y\' (years of 365 days), \'d\' (days), \'h\' (hours), or \'s\' (seconds). The unit defaults to seconds. If this parameter is set, ca_days is ignored. Examples are \'3600\' (one hour) and \'1825d\', which is the same as \'5y\' (5 years)
|
356
232
|
|
233
|
+
.INDENT 0.0
|
357
234
|
|
358
|
-
.
|
359
|
-
\
|
360
|
-
Default: 5y
|
235
|
+
.IP \(bu 2
|
236
|
+
\fPDefault\fP: 5y
|
361
237
|
|
238
|
+
.UNINDENT
|
362
239
|
|
363
240
|
.SS cacert
|
364
241
|
The CA certificate.
|
365
242
|
|
243
|
+
.INDENT 0.0
|
366
244
|
|
367
|
-
.
|
368
|
-
\
|
369
|
-
Default: $cadir/ca_crt.pem
|
245
|
+
.IP \(bu 2
|
246
|
+
\fPDefault\fP: $cadir/ca_crt.pem
|
370
247
|
|
248
|
+
.UNINDENT
|
371
249
|
|
372
250
|
.SS cacrl
|
373
|
-
The certificate revocation list (CRL) for the CA.
|
251
|
+
The certificate revocation list (CRL) for the CA. Will be used if present but otherwise ignored.
|
374
252
|
|
253
|
+
.INDENT 0.0
|
375
254
|
|
376
|
-
.
|
377
|
-
\
|
378
|
-
Default: $cadir/ca_crl.pem
|
255
|
+
.IP \(bu 2
|
256
|
+
\fPDefault\fP: $cadir/ca_crl.pem
|
379
257
|
|
258
|
+
.UNINDENT
|
380
259
|
|
381
260
|
.SS cadir
|
382
261
|
The root directory for the certificate authority.
|
383
262
|
|
263
|
+
.INDENT 0.0
|
384
264
|
|
385
|
-
.
|
386
|
-
\
|
387
|
-
Default: $ssldir/ca
|
265
|
+
.IP \(bu 2
|
266
|
+
\fPDefault\fP: $ssldir/ca
|
388
267
|
|
268
|
+
.UNINDENT
|
389
269
|
|
390
270
|
.SS cakey
|
391
271
|
The CA private key.
|
392
272
|
|
273
|
+
.INDENT 0.0
|
393
274
|
|
394
|
-
.
|
395
|
-
\
|
396
|
-
Default: $cadir/ca_key.pem
|
275
|
+
.IP \(bu 2
|
276
|
+
\fPDefault\fP: $cadir/ca_key.pem
|
397
277
|
|
278
|
+
.UNINDENT
|
398
279
|
|
399
280
|
.SS capass
|
400
281
|
Where the CA stores the password for the private key
|
401
282
|
|
283
|
+
.INDENT 0.0
|
402
284
|
|
403
|
-
.
|
404
|
-
\
|
405
|
-
Default: $caprivatedir/ca.pass
|
285
|
+
.IP \(bu 2
|
286
|
+
\fPDefault\fP: $caprivatedir/ca.pass
|
406
287
|
|
288
|
+
.UNINDENT
|
407
289
|
|
408
290
|
.SS caprivatedir
|
409
291
|
Where the CA stores private certificate information.
|
410
292
|
|
293
|
+
.INDENT 0.0
|
411
294
|
|
412
|
-
.
|
413
|
-
\
|
414
|
-
Default: $cadir/private
|
295
|
+
.IP \(bu 2
|
296
|
+
\fPDefault\fP: $cadir/private
|
415
297
|
|
298
|
+
.UNINDENT
|
416
299
|
|
417
300
|
.SS capub
|
418
301
|
The CA public key.
|
419
302
|
|
303
|
+
.INDENT 0.0
|
420
304
|
|
421
|
-
.
|
422
|
-
\
|
423
|
-
Default: $cadir/ca_pub.pem
|
305
|
+
.IP \(bu 2
|
306
|
+
\fPDefault\fP: $cadir/ca_pub.pem
|
424
307
|
|
308
|
+
.UNINDENT
|
425
309
|
|
426
310
|
.SS casesensitive
|
427
311
|
Whether matching in case statements and selectors should be case\-sensitive. Case insensitivity is handled by downcasing all values before comparison.
|
428
312
|
|
313
|
+
.INDENT 0.0
|
429
314
|
|
430
|
-
.
|
431
|
-
\
|
432
|
-
|
315
|
+
.IP \(bu 2
|
316
|
+
\fPDefault\fP: false
|
317
|
+
|
318
|
+
.UNINDENT
|
319
|
+
|
320
|
+
.SS catalog_format
|
321
|
+
(Deprecated for \'preferred_serialization_format\') What format to use to dump the catalog. Only supports \'marshal\' and \'yaml\'. Only matters on the client, since it asks the server for a specific format.
|
433
322
|
|
434
323
|
|
435
324
|
.SS cert_inventory
|
436
325
|
A Complete listing of all certificates
|
437
326
|
|
327
|
+
.INDENT 0.0
|
438
328
|
|
439
|
-
.
|
440
|
-
\
|
441
|
-
Default: $cadir/inventory.txt
|
329
|
+
.IP \(bu 2
|
330
|
+
\fPDefault\fP: $cadir/inventory.txt
|
442
331
|
|
332
|
+
.UNINDENT
|
443
333
|
|
444
334
|
.SS certdir
|
445
335
|
The certificate directory.
|
446
336
|
|
337
|
+
.INDENT 0.0
|
447
338
|
|
448
|
-
.
|
449
|
-
\
|
450
|
-
Default: $ssldir/certs
|
339
|
+
.IP \(bu 2
|
340
|
+
\fPDefault\fP: $ssldir/certs
|
451
341
|
|
342
|
+
.UNINDENT
|
452
343
|
|
453
344
|
.SS certdnsnames
|
454
345
|
The DNS names on the Server certificate as a colon\-separated list. If it\'s anything other than an empty string, it will be used as an alias in the created certificate. By default, only the server gets an alias set up, and only for \'puppet\'.
|
@@ -457,95 +348,79 @@ The DNS names on the Server certificate as a colon\-separated list. If it\'s any
|
|
457
348
|
.SS certname
|
458
349
|
The name to use when handling certificates. Defaults to the fully qualified domain name.
|
459
350
|
|
351
|
+
.INDENT 0.0
|
460
352
|
|
461
|
-
.
|
462
|
-
\
|
463
|
-
Default: absinthe.lovedthanlost.net
|
353
|
+
.IP \(bu 2
|
354
|
+
\fPDefault\fP: pelin.lovedthanlost.net
|
464
355
|
|
356
|
+
.UNINDENT
|
465
357
|
|
466
358
|
.SS classfile
|
467
|
-
The file in which puppetd stores a list of the classes associated with the retrieved configuration. Can be loaded in the separate
|
468
|
-
.\" visit_literal
|
469
|
-
puppet
|
470
|
-
.\" depart_literal
|
471
|
-
executable using the
|
472
|
-
.\" visit_literal
|
473
|
-
\-\-loadclasses
|
474
|
-
.\" depart_literal
|
475
|
-
option.
|
359
|
+
The file in which puppetd stores a list of the classes associated with the retrieved configuration. Can be loaded in the separate \fBpuppet\fP executable using the \fB\-\-loadclasses\fP option.
|
476
360
|
|
361
|
+
.INDENT 0.0
|
477
362
|
|
478
|
-
.
|
479
|
-
\
|
480
|
-
Default: $statedir/classes.txt
|
363
|
+
.IP \(bu 2
|
364
|
+
\fPDefault\fP: $statedir/classes.txt
|
481
365
|
|
366
|
+
.UNINDENT
|
482
367
|
|
483
368
|
.SS clientbucketdir
|
484
369
|
Where FileBucket files are stored locally.
|
485
370
|
|
371
|
+
.INDENT 0.0
|
372
|
+
|
373
|
+
.IP \(bu 2
|
374
|
+
\fPDefault\fP: $vardir/clientbucket
|
375
|
+
|
376
|
+
.UNINDENT
|
377
|
+
|
378
|
+
.SS clientyamldir
|
379
|
+
The directory in which client\-side YAML data is stored.
|
380
|
+
|
381
|
+
.INDENT 0.0
|
486
382
|
|
487
|
-
.
|
488
|
-
\
|
489
|
-
Default: $vardir/clientbucket
|
383
|
+
.IP \(bu 2
|
384
|
+
\fPDefault\fP: $vardir/client_yaml
|
490
385
|
|
386
|
+
.UNINDENT
|
491
387
|
|
492
388
|
.SS code
|
493
|
-
Code to parse directly. This is essentially only used by
|
494
|
-
.\" visit_literal
|
495
|
-
puppet
|
496
|
-
.\" depart_literal
|
497
|
-
, and should only be set if you\'re writing your own Puppet executable
|
389
|
+
Code to parse directly. This is essentially only used by \fBpuppet\fP, and should only be set if you\'re writing your own Puppet executable
|
498
390
|
|
499
391
|
|
500
392
|
.SS color
|
501
|
-
Whether to use colors when logging to the console. Valid values are
|
502
|
-
.\" visit_literal
|
503
|
-
ansi
|
504
|
-
.\" depart_literal
|
505
|
-
(equivalent to
|
506
|
-
.\" visit_literal
|
507
|
-
true
|
508
|
-
.\" depart_literal
|
509
|
-
),
|
510
|
-
.\" visit_literal
|
511
|
-
html
|
512
|
-
.\" depart_literal
|
513
|
-
(mostly used during testing with TextMate), and
|
514
|
-
.\" visit_literal
|
515
|
-
false
|
516
|
-
.\" depart_literal
|
517
|
-
, which produces no color.
|
518
|
-
|
519
|
-
|
520
|
-
.TP 2
|
521
|
-
\(bu
|
522
|
-
Default: ansi
|
393
|
+
Whether to use colors when logging to the console. Valid values are \fBansi\fP (equivalent to \fBtrue\fP), \fBhtml\fP (mostly used during testing with TextMate), and \fBfalse\fP, which produces no color.
|
523
394
|
|
395
|
+
.INDENT 0.0
|
396
|
+
|
397
|
+
.IP \(bu 2
|
398
|
+
\fPDefault\fP: ansi
|
399
|
+
|
400
|
+
.UNINDENT
|
524
401
|
|
525
402
|
.SS confdir
|
526
|
-
The main Puppet configuration directory. The default for this parameter is calculated based on the user. If the process is runnig as root or the user that
|
527
|
-
.\" visit_literal
|
528
|
-
puppetmasterd
|
529
|
-
.\" depart_literal
|
530
|
-
is supposed to run as, it defaults to a system directory, but if it\'s running as any other user, it defaults to being in
|
531
|
-
.\" visit_literal
|
532
|
-
~
|
533
|
-
.\" depart_literal
|
534
|
-
.
|
403
|
+
The main Puppet configuration directory. The default for this parameter is calculated based on the user. If the process is runnig as root or the user that \fBpuppetmasterd\fP is supposed to run as, it defaults to a system directory, but if it\'s running as any other user, it defaults to being in \fB~\fP.
|
535
404
|
|
405
|
+
.INDENT 0.0
|
536
406
|
|
537
|
-
.
|
538
|
-
\
|
539
|
-
Default: /etc/puppet
|
407
|
+
.IP \(bu 2
|
408
|
+
\fPDefault\fP: /etc/puppet
|
540
409
|
|
410
|
+
.UNINDENT
|
541
411
|
|
542
412
|
.SS config
|
543
413
|
The configuration file for puppetdoc.
|
544
414
|
|
415
|
+
.INDENT 0.0
|
416
|
+
|
417
|
+
.IP \(bu 2
|
418
|
+
\fPDefault\fP: $confdir/puppet.conf
|
545
419
|
|
546
|
-
.
|
547
|
-
|
548
|
-
|
420
|
+
.UNINDENT
|
421
|
+
|
422
|
+
.SS config_version
|
423
|
+
How to determine the configuration version. By default, it will be the time that the configuration is parsed, but you can provide a shell script to override how the version is determined. The output of this script will be added to every log message in the reports, allowing you to correlate changes on your hosts to the source version on the server.
|
549
424
|
|
550
425
|
|
551
426
|
.SS configprint
|
@@ -555,83 +430,92 @@ Print the value of a specific configuration parameter. If a parameter is provid
|
|
555
430
|
.SS configtimeout
|
556
431
|
How long the client should wait for the configuration to be retrieved before considering it a failure. This can help reduce flapping if too many clients contact the server at one time.
|
557
432
|
|
433
|
+
.INDENT 0.0
|
558
434
|
|
559
|
-
.
|
560
|
-
\
|
561
|
-
Default: 120
|
435
|
+
.IP \(bu 2
|
436
|
+
\fPDefault\fP: 120
|
562
437
|
|
438
|
+
.UNINDENT
|
563
439
|
|
564
440
|
.SS csrdir
|
565
441
|
Where the CA stores certificate requests
|
566
442
|
|
443
|
+
.INDENT 0.0
|
567
444
|
|
568
|
-
.
|
569
|
-
\
|
570
|
-
Default: $cadir/requests
|
445
|
+
.IP \(bu 2
|
446
|
+
\fPDefault\fP: $cadir/requests
|
571
447
|
|
448
|
+
.UNINDENT
|
572
449
|
|
573
450
|
.SS daemonize
|
574
451
|
Send the process into the background. This is the default.
|
575
452
|
|
453
|
+
.INDENT 0.0
|
576
454
|
|
577
|
-
.
|
578
|
-
\
|
579
|
-
Default: true
|
455
|
+
.IP \(bu 2
|
456
|
+
\fPDefault\fP: true
|
580
457
|
|
458
|
+
.UNINDENT
|
581
459
|
|
582
460
|
.SS dbadapter
|
583
461
|
The type of database to use.
|
584
462
|
|
463
|
+
.INDENT 0.0
|
585
464
|
|
586
|
-
.
|
587
|
-
\
|
588
|
-
Default: sqlite3
|
465
|
+
.IP \(bu 2
|
466
|
+
\fPDefault\fP: sqlite3
|
589
467
|
|
468
|
+
.UNINDENT
|
590
469
|
|
591
470
|
.SS dblocation
|
592
471
|
The database cache for client configurations. Used for querying within the language.
|
593
472
|
|
473
|
+
.INDENT 0.0
|
594
474
|
|
595
|
-
.
|
596
|
-
\
|
597
|
-
Default: $statedir/clientconfigs.sqlite3
|
475
|
+
.IP \(bu 2
|
476
|
+
\fPDefault\fP: $statedir/clientconfigs.sqlite3
|
598
477
|
|
478
|
+
.UNINDENT
|
599
479
|
|
600
480
|
.SS dbmigrate
|
601
481
|
Whether to automatically migrate the database.
|
602
482
|
|
483
|
+
.INDENT 0.0
|
603
484
|
|
604
|
-
.
|
605
|
-
\
|
606
|
-
Default: false
|
485
|
+
.IP \(bu 2
|
486
|
+
\fPDefault\fP: false
|
607
487
|
|
488
|
+
.UNINDENT
|
608
489
|
|
609
490
|
.SS dbname
|
610
491
|
The name of the database to use.
|
611
492
|
|
493
|
+
.INDENT 0.0
|
612
494
|
|
613
|
-
.
|
614
|
-
\
|
615
|
-
Default: puppet
|
495
|
+
.IP \(bu 2
|
496
|
+
\fPDefault\fP: puppet
|
616
497
|
|
498
|
+
.UNINDENT
|
617
499
|
|
618
500
|
.SS dbpassword
|
619
501
|
The database password for Client caching. Only used when networked databases are used.
|
620
502
|
|
503
|
+
.INDENT 0.0
|
621
504
|
|
622
|
-
.
|
623
|
-
\
|
624
|
-
Default: puppet
|
505
|
+
.IP \(bu 2
|
506
|
+
\fPDefault\fP: puppet
|
625
507
|
|
508
|
+
.UNINDENT
|
626
509
|
|
627
510
|
.SS dbserver
|
628
511
|
The database server for Client caching. Only used when networked databases are used.
|
629
512
|
|
513
|
+
.INDENT 0.0
|
630
514
|
|
631
|
-
.
|
632
|
-
\
|
633
|
-
Default: localhost
|
515
|
+
.IP \(bu 2
|
516
|
+
\fPDefault\fP: localhost
|
634
517
|
|
518
|
+
.UNINDENT
|
635
519
|
|
636
520
|
.SS dbsocket
|
637
521
|
The database socket location. Only used when networked databases are used. Will be ignored if the value is an empty string.
|
@@ -640,331 +524,342 @@ The database socket location. Only used when networked databases are used. Will
|
|
640
524
|
.SS dbuser
|
641
525
|
The database user for Client caching. Only used when networked databases are used.
|
642
526
|
|
527
|
+
.INDENT 0.0
|
643
528
|
|
644
|
-
.
|
645
|
-
\
|
646
|
-
Default: puppet
|
529
|
+
.IP \(bu 2
|
530
|
+
\fPDefault\fP: puppet
|
647
531
|
|
532
|
+
.UNINDENT
|
648
533
|
|
649
534
|
.SS diff
|
650
535
|
Which diff command to use when printing differences between files.
|
651
536
|
|
537
|
+
.INDENT 0.0
|
652
538
|
|
653
|
-
.
|
654
|
-
\
|
655
|
-
Default: diff
|
539
|
+
.IP \(bu 2
|
540
|
+
\fPDefault\fP: diff
|
656
541
|
|
542
|
+
.UNINDENT
|
657
543
|
|
658
544
|
.SS diff_args
|
659
545
|
Which arguments to pass to the diff command when printing differences between files.
|
660
546
|
|
547
|
+
.INDENT 0.0
|
548
|
+
|
549
|
+
.IP \(bu 2
|
550
|
+
\fPDefault\fP: \-u
|
551
|
+
|
552
|
+
.UNINDENT
|
661
553
|
|
662
554
|
.SS downcasefacts
|
663
555
|
Whether facts should be made all lowercase when sent to the server.
|
664
556
|
|
557
|
+
.INDENT 0.0
|
665
558
|
|
666
|
-
.
|
667
|
-
\
|
668
|
-
Default: false
|
559
|
+
.IP \(bu 2
|
560
|
+
\fPDefault\fP: false
|
669
561
|
|
562
|
+
.UNINDENT
|
670
563
|
|
671
564
|
.SS dynamicfacts
|
672
565
|
Facts that are dynamic; these facts will be ignored when deciding whether changed facts should result in a recompile. Multiple facts should be comma\-separated.
|
673
566
|
|
567
|
+
.INDENT 0.0
|
674
568
|
|
675
|
-
.
|
676
|
-
\
|
677
|
-
Default: memorysize,memoryfree,swapsize,swapfree
|
569
|
+
.IP \(bu 2
|
570
|
+
\fPDefault\fP: memorysize,memoryfree,swapsize,swapfree
|
678
571
|
|
572
|
+
.UNINDENT
|
679
573
|
|
680
574
|
.SS environment
|
681
|
-
The environment Puppet is running in. For clients (e.g.,
|
682
|
-
.\" visit_literal
|
683
|
-
puppetd
|
684
|
-
.\" depart_literal
|
685
|
-
) this determines the environment itself, which is used to find modules and much more. For servers (i.e.,
|
686
|
-
.\" visit_literal
|
687
|
-
puppetmasterd
|
688
|
-
.\" depart_literal
|
689
|
-
) this provides the default environment for nodes we know nothing about.
|
575
|
+
The environment Puppet is running in. For clients (e.g., \fBpuppetd\fP) this determines the environment itself, which is used to find modules and much more. For servers (i.e., \fBpuppetmasterd\fP) this provides the default environment for nodes we know nothing about.
|
690
576
|
|
577
|
+
.INDENT 0.0
|
691
578
|
|
692
|
-
.
|
693
|
-
\
|
694
|
-
Default: production
|
695
|
-
|
696
|
-
|
697
|
-
.SS environments
|
698
|
-
The valid environments for Puppet clients. This is more useful as a server\-side setting than client, but any environment chosen must be in this list. Values should be separated by a comma.
|
699
|
-
|
700
|
-
|
701
|
-
.TP 2
|
702
|
-
\(bu
|
703
|
-
Default: production,development
|
579
|
+
.IP \(bu 2
|
580
|
+
\fPDefault\fP: production
|
704
581
|
|
582
|
+
.UNINDENT
|
705
583
|
|
706
584
|
.SS evaltrace
|
707
585
|
Whether each resource should log when it is being evaluated. This allows you to interactively see exactly what is being done.
|
708
586
|
|
587
|
+
.INDENT 0.0
|
709
588
|
|
710
|
-
.
|
711
|
-
\
|
712
|
-
Default: false
|
589
|
+
.IP \(bu 2
|
590
|
+
\fPDefault\fP: false
|
713
591
|
|
592
|
+
.UNINDENT
|
714
593
|
|
715
594
|
.SS external_nodes
|
716
|
-
An external command that can produce node information. The output must be a YAML dump of a hash, and that hash must have one or both of
|
717
|
-
|
718
|
-
|
719
|
-
|
720
|
-
|
721
|
-
|
722
|
-
parameters
|
723
|
-
.\" depart_literal
|
724
|
-
, where
|
725
|
-
.\" visit_literal
|
726
|
-
classes
|
727
|
-
.\" depart_literal
|
728
|
-
is an array and
|
729
|
-
.\" visit_literal
|
730
|
-
parameters
|
731
|
-
.\" depart_literal
|
732
|
-
is a hash. For unknown nodes, the commands should exit with a non\-zero exit code. This command makes it straightforward to store your node mapping information in other data sources like databases.
|
733
|
-
|
734
|
-
|
735
|
-
.TP 2
|
736
|
-
\(bu
|
737
|
-
Default: none
|
595
|
+
An external command that can produce node information. The output must be a YAML dump of a hash, and that hash must have one or both of \fBclasses\fP and \fBparameters\fP, where \fBclasses\fP is an array and \fBparameters\fP is a hash. For unknown nodes, the commands should exit with a non\-zero exit code. This command makes it straightforward to store your node mapping information in other data sources like databases.
|
596
|
+
|
597
|
+
.INDENT 0.0
|
598
|
+
|
599
|
+
.IP \(bu 2
|
600
|
+
\fPDefault\fP: none
|
738
601
|
|
602
|
+
.UNINDENT
|
739
603
|
|
740
604
|
.SS factdest
|
741
605
|
Where Puppet should store facts that it pulls down from the central server.
|
742
606
|
|
607
|
+
.INDENT 0.0
|
743
608
|
|
744
|
-
.
|
745
|
-
\
|
746
|
-
Default: $vardir/facts
|
609
|
+
.IP \(bu 2
|
610
|
+
\fPDefault\fP: $vardir/facts/
|
747
611
|
|
612
|
+
.UNINDENT
|
748
613
|
|
749
614
|
.SS factpath
|
750
615
|
Where Puppet should look for facts. Multiple directories should be colon\-separated, like normal PATH variables.
|
751
616
|
|
617
|
+
.INDENT 0.0
|
752
618
|
|
753
|
-
.
|
754
|
-
\
|
755
|
-
Default: $vardir/facts
|
619
|
+
.IP \(bu 2
|
620
|
+
\fPDefault\fP: $vardir/facts/
|
756
621
|
|
622
|
+
.UNINDENT
|
757
623
|
|
758
624
|
.SS factsignore
|
759
625
|
What files to ignore when pulling down facts.
|
760
626
|
|
627
|
+
.INDENT 0.0
|
761
628
|
|
762
|
-
.
|
763
|
-
\
|
764
|
-
Default: .svn CVS
|
629
|
+
.IP \(bu 2
|
630
|
+
\fPDefault\fP: .svn CVS
|
765
631
|
|
632
|
+
.UNINDENT
|
766
633
|
|
767
634
|
.SS factsource
|
768
|
-
From where to retrieve facts. The standard Puppet
|
769
|
-
.\" visit_literal
|
770
|
-
file
|
771
|
-
.\" depart_literal
|
772
|
-
type is used for retrieval, so anything that is a valid file source can be used here.
|
635
|
+
From where to retrieve facts. The standard Puppet \fBfile\fP type is used for retrieval, so anything that is a valid file source can be used here.
|
773
636
|
|
637
|
+
.INDENT 0.0
|
774
638
|
|
775
|
-
.
|
776
|
-
\
|
777
|
-
Default: puppet://$server/facts
|
639
|
+
.IP \(bu 2
|
640
|
+
\fPDefault\fP: puppet://$server/facts/
|
778
641
|
|
642
|
+
.UNINDENT
|
779
643
|
|
780
644
|
.SS factsync
|
781
645
|
Whether facts should be synced with the central server.
|
782
646
|
|
647
|
+
.INDENT 0.0
|
783
648
|
|
784
|
-
.
|
785
|
-
\
|
786
|
-
Default: false
|
649
|
+
.IP \(bu 2
|
650
|
+
\fPDefault\fP: false
|
787
651
|
|
652
|
+
.UNINDENT
|
788
653
|
|
789
654
|
.SS fileserverconfig
|
790
655
|
Where the fileserver configuration is stored.
|
791
656
|
|
657
|
+
.INDENT 0.0
|
792
658
|
|
793
|
-
.
|
794
|
-
\
|
795
|
-
Default: $confdir/fileserver.conf
|
659
|
+
.IP \(bu 2
|
660
|
+
\fPDefault\fP: $confdir/fileserver.conf
|
796
661
|
|
662
|
+
.UNINDENT
|
797
663
|
|
798
664
|
.SS filetimeout
|
799
665
|
The minimum time to wait (in seconds) between checking for updates in configuration files. This timeout determines how quickly Puppet checks whether a file (such as manifests or templates) has changed on disk.
|
800
666
|
|
667
|
+
.INDENT 0.0
|
801
668
|
|
802
|
-
.
|
803
|
-
\
|
804
|
-
Default: 15
|
669
|
+
.IP \(bu 2
|
670
|
+
\fPDefault\fP: 15
|
805
671
|
|
672
|
+
.UNINDENT
|
806
673
|
|
807
674
|
.SS genconfig
|
808
675
|
Whether to just print a configuration to stdout and exit. Only makes sense when used interactively. Takes into account arguments specified on the CLI.
|
809
676
|
|
677
|
+
.INDENT 0.0
|
810
678
|
|
811
|
-
.
|
812
|
-
\
|
813
|
-
Default: false
|
679
|
+
.IP \(bu 2
|
680
|
+
\fPDefault\fP: false
|
814
681
|
|
682
|
+
.UNINDENT
|
815
683
|
|
816
684
|
.SS genmanifest
|
817
685
|
Whether to just print a manifest to stdout and exit. Only makes sense when used interactively. Takes into account arguments specified on the CLI.
|
818
686
|
|
687
|
+
.INDENT 0.0
|
819
688
|
|
820
|
-
.
|
821
|
-
\
|
822
|
-
Default: false
|
689
|
+
.IP \(bu 2
|
690
|
+
\fPDefault\fP: false
|
823
691
|
|
692
|
+
.UNINDENT
|
824
693
|
|
825
694
|
.SS graph
|
826
695
|
Whether to create dot graph files for the different configuration graphs. These dot files can be interpreted by tools like OmniGraffle or dot (which is part of ImageMagick).
|
827
696
|
|
697
|
+
.INDENT 0.0
|
828
698
|
|
829
|
-
.
|
830
|
-
\
|
831
|
-
Default: false
|
699
|
+
.IP \(bu 2
|
700
|
+
\fPDefault\fP: false
|
832
701
|
|
702
|
+
.UNINDENT
|
833
703
|
|
834
704
|
.SS graphdir
|
835
705
|
Where to store dot\-outputted graphs.
|
836
706
|
|
707
|
+
.INDENT 0.0
|
837
708
|
|
838
|
-
.
|
839
|
-
\
|
840
|
-
Default: $statedir/graphs
|
709
|
+
.IP \(bu 2
|
710
|
+
\fPDefault\fP: $statedir/graphs
|
841
711
|
|
712
|
+
.UNINDENT
|
842
713
|
|
843
714
|
.SS group
|
844
715
|
The group puppetmasterd should run as.
|
845
716
|
|
717
|
+
.INDENT 0.0
|
846
718
|
|
847
|
-
.
|
848
|
-
\
|
849
|
-
Default: puppet
|
719
|
+
.IP \(bu 2
|
720
|
+
\fPDefault\fP: puppet
|
850
721
|
|
722
|
+
.UNINDENT
|
851
723
|
|
852
724
|
.SS hostcert
|
853
725
|
Where individual hosts store and look for their certificates.
|
854
726
|
|
727
|
+
.INDENT 0.0
|
855
728
|
|
856
|
-
.
|
857
|
-
\
|
858
|
-
Default: $certdir/$certname.pem
|
729
|
+
.IP \(bu 2
|
730
|
+
\fPDefault\fP: $certdir/$certname.pem
|
859
731
|
|
732
|
+
.UNINDENT
|
733
|
+
|
734
|
+
.SS hostcrl
|
735
|
+
Where the host\'s certificate revocation list can be found. This is distinct from the certificate authority\'s CRL.
|
736
|
+
|
737
|
+
.INDENT 0.0
|
738
|
+
|
739
|
+
.IP \(bu 2
|
740
|
+
\fPDefault\fP: $ssldir/crl.pem
|
741
|
+
|
742
|
+
.UNINDENT
|
860
743
|
|
861
744
|
.SS hostcsr
|
862
|
-
Where individual hosts store and look for their
|
745
|
+
Where individual hosts store and look for their certificate requests.
|
863
746
|
|
747
|
+
.INDENT 0.0
|
864
748
|
|
865
|
-
.
|
866
|
-
\
|
867
|
-
Default: $ssldir/csr_$certname.pem
|
749
|
+
.IP \(bu 2
|
750
|
+
\fPDefault\fP: $ssldir/csr_$certname.pem
|
868
751
|
|
752
|
+
.UNINDENT
|
869
753
|
|
870
754
|
.SS hostprivkey
|
871
755
|
Where individual hosts store and look for their private key.
|
872
756
|
|
757
|
+
.INDENT 0.0
|
873
758
|
|
874
|
-
.
|
875
|
-
\
|
876
|
-
Default: $privatekeydir/$certname.pem
|
759
|
+
.IP \(bu 2
|
760
|
+
\fPDefault\fP: $privatekeydir/$certname.pem
|
877
761
|
|
762
|
+
.UNINDENT
|
878
763
|
|
879
764
|
.SS hostpubkey
|
880
765
|
Where individual hosts store and look for their public key.
|
881
766
|
|
767
|
+
.INDENT 0.0
|
882
768
|
|
883
|
-
.
|
884
|
-
\
|
885
|
-
Default: $publickeydir/$certname.pem
|
769
|
+
.IP \(bu 2
|
770
|
+
\fPDefault\fP: $publickeydir/$certname.pem
|
886
771
|
|
772
|
+
.UNINDENT
|
887
773
|
|
888
774
|
.SS http_enable_post_connection_check
|
889
775
|
Boolean; wheter or not puppetd should validate the server SSL certificate against the request hostname.
|
890
776
|
|
777
|
+
.INDENT 0.0
|
891
778
|
|
892
|
-
.
|
893
|
-
\
|
894
|
-
Default: true
|
779
|
+
.IP \(bu 2
|
780
|
+
\fPDefault\fP: true
|
895
781
|
|
782
|
+
.UNINDENT
|
896
783
|
|
897
784
|
.SS http_proxy_host
|
898
785
|
The HTTP proxy host to use for outgoing connections. Note: You may need to use a FQDN for the server hostname when using a proxy.
|
899
786
|
|
787
|
+
.INDENT 0.0
|
900
788
|
|
901
|
-
.
|
902
|
-
\
|
903
|
-
Default: none
|
789
|
+
.IP \(bu 2
|
790
|
+
\fPDefault\fP: none
|
904
791
|
|
792
|
+
.UNINDENT
|
905
793
|
|
906
794
|
.SS http_proxy_port
|
907
795
|
The HTTP proxy port to use for outgoing connections
|
908
796
|
|
797
|
+
.INDENT 0.0
|
909
798
|
|
910
|
-
.
|
911
|
-
\
|
912
|
-
Default: 3128
|
799
|
+
.IP \(bu 2
|
800
|
+
\fPDefault\fP: 3128
|
913
801
|
|
802
|
+
.UNINDENT
|
914
803
|
|
915
804
|
.SS httplog
|
916
805
|
Where the puppetd web server logs.
|
917
806
|
|
807
|
+
.INDENT 0.0
|
918
808
|
|
919
|
-
.
|
920
|
-
\
|
921
|
-
Default: $logdir/http.log
|
809
|
+
.IP \(bu 2
|
810
|
+
\fPDefault\fP: $logdir/http.log
|
922
811
|
|
812
|
+
.UNINDENT
|
923
813
|
|
924
814
|
.SS ignorecache
|
925
815
|
Ignore cache and always recompile the configuration. This is useful for testing new configurations, where the local cache may in fact be stale even if the timestamps are up to date \- if the facts change or if the server changes.
|
926
816
|
|
817
|
+
.INDENT 0.0
|
927
818
|
|
928
|
-
.
|
929
|
-
\
|
930
|
-
Default: false
|
819
|
+
.IP \(bu 2
|
820
|
+
\fPDefault\fP: false
|
931
821
|
|
822
|
+
.UNINDENT
|
932
823
|
|
933
824
|
.SS ignoreimport
|
934
825
|
A parameter that can be used in commit hooks, since it enables you to parse\-check a single file rather than requiring that all files exist.
|
935
826
|
|
827
|
+
.INDENT 0.0
|
936
828
|
|
937
|
-
.
|
938
|
-
\
|
939
|
-
Default: false
|
829
|
+
.IP \(bu 2
|
830
|
+
\fPDefault\fP: false
|
940
831
|
|
832
|
+
.UNINDENT
|
941
833
|
|
942
834
|
.SS ignoreschedules
|
943
835
|
Boolean; whether puppetd should ignore schedules. This is useful for initial puppetd runs.
|
944
836
|
|
837
|
+
.INDENT 0.0
|
945
838
|
|
946
|
-
.
|
947
|
-
\
|
948
|
-
Default: false
|
839
|
+
.IP \(bu 2
|
840
|
+
\fPDefault\fP: false
|
949
841
|
|
842
|
+
.UNINDENT
|
950
843
|
|
951
844
|
.SS keylength
|
952
845
|
The bit length of keys.
|
953
846
|
|
847
|
+
.INDENT 0.0
|
954
848
|
|
955
|
-
.
|
956
|
-
\
|
957
|
-
Default: 1024
|
849
|
+
.IP \(bu 2
|
850
|
+
\fPDefault\fP: 1024
|
958
851
|
|
852
|
+
.UNINDENT
|
959
853
|
|
960
854
|
.SS ldapattrs
|
961
855
|
The LDAP attributes to include when querying LDAP for nodes. All returned attributes are set as variables in the top\-level scope. Multiple values should be comma\-separated. The value \'all\' returns all attributes.
|
962
856
|
|
857
|
+
.INDENT 0.0
|
963
858
|
|
964
|
-
.
|
965
|
-
\
|
966
|
-
Default: all
|
859
|
+
.IP \(bu 2
|
860
|
+
\fPDefault\fP: all
|
967
861
|
|
862
|
+
.UNINDENT
|
968
863
|
|
969
864
|
.SS ldapbase
|
970
865
|
The search base for LDAP searches. It\'s impossible to provide a meaningful default here, although the LDAP libraries might have one already set. Generally, it should be the \'ou=Hosts\' branch under your main directory.
|
@@ -973,86 +868,96 @@ The search base for LDAP searches. It\'s impossible to provide a meaningful def
|
|
973
868
|
.SS ldapclassattrs
|
974
869
|
The LDAP attributes to use to define Puppet classes. Values should be comma\-separated.
|
975
870
|
|
871
|
+
.INDENT 0.0
|
976
872
|
|
977
|
-
.
|
978
|
-
\
|
979
|
-
Default: puppetclass
|
873
|
+
.IP \(bu 2
|
874
|
+
\fPDefault\fP: puppetclass
|
980
875
|
|
876
|
+
.UNINDENT
|
981
877
|
|
982
878
|
.SS ldapnodes
|
983
|
-
Whether to search for node configurations in LDAP. See http://reductivelabs.com/puppet/
|
879
|
+
Whether to search for node configurations in LDAP. See \fI\%http://reductivelabs.com/trac/puppet/wiki/LDAPNodes\fP for more information.
|
984
880
|
|
881
|
+
.INDENT 0.0
|
985
882
|
|
986
|
-
.
|
987
|
-
\
|
988
|
-
Default: false
|
883
|
+
.IP \(bu 2
|
884
|
+
\fPDefault\fP: false
|
989
885
|
|
886
|
+
.UNINDENT
|
990
887
|
|
991
888
|
.SS ldapparentattr
|
992
889
|
The attribute to use to define the parent node.
|
993
890
|
|
891
|
+
.INDENT 0.0
|
994
892
|
|
995
|
-
.
|
996
|
-
\
|
997
|
-
Default: parentnode
|
893
|
+
.IP \(bu 2
|
894
|
+
\fPDefault\fP: parentnode
|
998
895
|
|
896
|
+
.UNINDENT
|
999
897
|
|
1000
898
|
.SS ldappassword
|
1001
899
|
The password to use to connect to LDAP.
|
1002
900
|
|
1003
901
|
|
1004
902
|
.SS ldapport
|
1005
|
-
The LDAP port. Only used if
|
1006
|
-
.\" visit_literal
|
1007
|
-
ldapnodes
|
1008
|
-
.\" depart_literal
|
1009
|
-
is enabled.
|
903
|
+
The LDAP port. Only used if \fBldapnodes\fP is enabled.
|
1010
904
|
|
905
|
+
.INDENT 0.0
|
1011
906
|
|
1012
|
-
.
|
1013
|
-
\
|
1014
|
-
Default: 389
|
907
|
+
.IP \(bu 2
|
908
|
+
\fPDefault\fP: 389
|
1015
909
|
|
910
|
+
.UNINDENT
|
1016
911
|
|
1017
912
|
.SS ldapserver
|
1018
|
-
The LDAP server. Only used if
|
1019
|
-
.\" visit_literal
|
1020
|
-
ldapnodes
|
1021
|
-
.\" depart_literal
|
1022
|
-
is enabled.
|
913
|
+
The LDAP server. Only used if \fBldapnodes\fP is enabled.
|
1023
914
|
|
915
|
+
.INDENT 0.0
|
1024
916
|
|
1025
|
-
.
|
1026
|
-
\
|
1027
|
-
Default: ldap
|
917
|
+
.IP \(bu 2
|
918
|
+
\fPDefault\fP: ldap
|
1028
919
|
|
920
|
+
.UNINDENT
|
1029
921
|
|
1030
922
|
.SS ldapssl
|
1031
923
|
Whether SSL should be used when searching for nodes. Defaults to false because SSL usually requires certificates to be set up on the client side.
|
1032
924
|
|
925
|
+
.INDENT 0.0
|
926
|
+
|
927
|
+
.IP \(bu 2
|
928
|
+
\fPDefault\fP: false
|
1033
929
|
|
1034
|
-
.
|
1035
|
-
\(bu
|
1036
|
-
Default: false
|
930
|
+
.UNINDENT
|
1037
931
|
|
932
|
+
.SS ldapstackedattrs
|
933
|
+
The LDAP attributes that should be stacked to arrays by adding the values in all hierarchy elements of the tree. Values should be comma\-separated.
|
934
|
+
|
935
|
+
.INDENT 0.0
|
936
|
+
|
937
|
+
.IP \(bu 2
|
938
|
+
\fPDefault\fP: puppetvar
|
939
|
+
|
940
|
+
.UNINDENT
|
1038
941
|
|
1039
942
|
.SS ldapstring
|
1040
943
|
The search string used to find an LDAP node.
|
1041
944
|
|
945
|
+
.INDENT 0.0
|
1042
946
|
|
1043
|
-
.
|
1044
|
-
\(
|
1045
|
-
Default: (&(objectclass=puppetClient)(cn=%s))
|
947
|
+
.IP \(bu 2
|
948
|
+
\fPDefault\fP: (&(objectclass=puppetClient)(cn=%s))
|
1046
949
|
|
950
|
+
.UNINDENT
|
1047
951
|
|
1048
952
|
.SS ldaptls
|
1049
953
|
Whether TLS should be used when searching for nodes. Defaults to false because TLS usually requires certificates to be set up on the client side.
|
1050
954
|
|
955
|
+
.INDENT 0.0
|
1051
956
|
|
1052
|
-
.
|
1053
|
-
\
|
1054
|
-
Default: false
|
957
|
+
.IP \(bu 2
|
958
|
+
\fPDefault\fP: false
|
1055
959
|
|
960
|
+
.UNINDENT
|
1056
961
|
|
1057
962
|
.SS ldapuser
|
1058
963
|
The user to use to connect to LDAP. Must be specified as a full DN.
|
@@ -1061,676 +966,816 @@ The user to use to connect to LDAP. Must be specified as a full DN.
|
|
1061
966
|
.SS lexical
|
1062
967
|
Whether to use lexical scoping (vs. dynamic).
|
1063
968
|
|
969
|
+
.INDENT 0.0
|
1064
970
|
|
1065
|
-
.
|
1066
|
-
\
|
1067
|
-
Default: false
|
971
|
+
.IP \(bu 2
|
972
|
+
\fPDefault\fP: false
|
1068
973
|
|
974
|
+
.UNINDENT
|
1069
975
|
|
1070
976
|
.SS libdir
|
1071
977
|
An extra search path for Puppet. This is only useful for those files that Puppet will load on demand, and is only guaranteed to work for those cases. In fact, the autoload mechanism is responsible for making sure this directory is in Ruby\'s search path
|
1072
978
|
|
979
|
+
.INDENT 0.0
|
1073
980
|
|
1074
|
-
.
|
1075
|
-
\
|
1076
|
-
Default: $vardir/lib
|
981
|
+
.IP \(bu 2
|
982
|
+
\fPDefault\fP: $vardir/lib
|
1077
983
|
|
984
|
+
.UNINDENT
|
1078
985
|
|
1079
986
|
.SS listen
|
1080
|
-
Whether puppetd should listen for connections. If this is true, then by default only the
|
1081
|
-
.\" visit_literal
|
1082
|
-
runner
|
1083
|
-
.\" depart_literal
|
1084
|
-
server is started, which allows remote authorized and authenticated nodes to connect and trigger
|
1085
|
-
.\" visit_literal
|
1086
|
-
puppetd
|
1087
|
-
.\" depart_literal
|
1088
|
-
runs.
|
987
|
+
Whether puppetd should listen for connections. If this is true, then by default only the \fBrunner\fP server is started, which allows remote authorized and authenticated nodes to connect and trigger \fBpuppetd\fP runs.
|
1089
988
|
|
989
|
+
.INDENT 0.0
|
1090
990
|
|
1091
|
-
.
|
1092
|
-
\
|
1093
|
-
Default: false
|
991
|
+
.IP \(bu 2
|
992
|
+
\fPDefault\fP: false
|
1094
993
|
|
994
|
+
.UNINDENT
|
1095
995
|
|
1096
996
|
.SS localcacert
|
1097
997
|
Where each client stores the CA certificate.
|
1098
998
|
|
999
|
+
.INDENT 0.0
|
1099
1000
|
|
1100
|
-
.
|
1101
|
-
\
|
1102
|
-
Default: $certdir/ca.pem
|
1001
|
+
.IP \(bu 2
|
1002
|
+
\fPDefault\fP: $certdir/ca.pem
|
1103
1003
|
|
1004
|
+
.UNINDENT
|
1104
1005
|
|
1105
1006
|
.SS localconfig
|
1106
1007
|
Where puppetd caches the local configuration. An extension indicating the cache format is added automatically.
|
1107
1008
|
|
1009
|
+
.INDENT 0.0
|
1108
1010
|
|
1109
|
-
.
|
1110
|
-
\
|
1111
|
-
Default: $statedir/localconfig
|
1011
|
+
.IP \(bu 2
|
1012
|
+
\fPDefault\fP: $statedir/localconfig
|
1112
1013
|
|
1014
|
+
.UNINDENT
|
1113
1015
|
|
1114
1016
|
.SS logdir
|
1115
1017
|
The Puppet log directory.
|
1116
1018
|
|
1019
|
+
.INDENT 0.0
|
1020
|
+
|
1021
|
+
.IP \(bu 2
|
1022
|
+
\fPDefault\fP: $vardir/log
|
1023
|
+
|
1024
|
+
.UNINDENT
|
1025
|
+
|
1026
|
+
.SS manage_internal_file_permissions
|
1027
|
+
Whether Puppet should manage the owner, group, and mode of files it uses internally
|
1117
1028
|
|
1118
|
-
.
|
1119
|
-
\(bu
|
1120
|
-
Default: $vardir/log
|
1029
|
+
.INDENT 0.0
|
1121
1030
|
|
1031
|
+
.IP \(bu 2
|
1032
|
+
\fPDefault\fP: true
|
1033
|
+
|
1034
|
+
.UNINDENT
|
1122
1035
|
|
1123
1036
|
.SS manifest
|
1124
1037
|
The entry\-point manifest for puppetmasterd.
|
1125
1038
|
|
1039
|
+
.INDENT 0.0
|
1126
1040
|
|
1127
|
-
.
|
1128
|
-
\
|
1129
|
-
Default: $manifestdir/site.pp
|
1041
|
+
.IP \(bu 2
|
1042
|
+
\fPDefault\fP: $manifestdir/site.pp
|
1130
1043
|
|
1044
|
+
.UNINDENT
|
1131
1045
|
|
1132
1046
|
.SS manifestdir
|
1133
1047
|
Where puppetmasterd looks for its manifests.
|
1134
1048
|
|
1049
|
+
.INDENT 0.0
|
1135
1050
|
|
1136
|
-
.
|
1137
|
-
\
|
1138
|
-
Default: $confdir/manifests
|
1051
|
+
.IP \(bu 2
|
1052
|
+
\fPDefault\fP: $confdir/manifests
|
1139
1053
|
|
1054
|
+
.UNINDENT
|
1140
1055
|
|
1141
1056
|
.SS masterhttplog
|
1142
1057
|
Where the puppetmasterd web server logs.
|
1143
1058
|
|
1059
|
+
.INDENT 0.0
|
1144
1060
|
|
1145
|
-
.
|
1146
|
-
\
|
1147
|
-
Default: $logdir/masterhttp.log
|
1061
|
+
.IP \(bu 2
|
1062
|
+
\fPDefault\fP: $logdir/masterhttp.log
|
1148
1063
|
|
1064
|
+
.UNINDENT
|
1149
1065
|
|
1150
1066
|
.SS masterlog
|
1151
1067
|
Where puppetmasterd logs. This is generally not used, since syslog is the default log destination.
|
1152
1068
|
|
1069
|
+
.INDENT 0.0
|
1153
1070
|
|
1154
|
-
.
|
1155
|
-
\
|
1156
|
-
Default: $logdir/puppetmaster.log
|
1071
|
+
.IP \(bu 2
|
1072
|
+
\fPDefault\fP: $logdir/puppetmaster.log
|
1157
1073
|
|
1074
|
+
.UNINDENT
|
1158
1075
|
|
1159
1076
|
.SS masterport
|
1160
1077
|
Which port puppetmasterd listens on.
|
1161
1078
|
|
1079
|
+
.INDENT 0.0
|
1162
1080
|
|
1163
|
-
.
|
1164
|
-
\
|
1165
|
-
Default: 8140
|
1081
|
+
.IP \(bu 2
|
1082
|
+
\fPDefault\fP: 8140
|
1166
1083
|
|
1084
|
+
.UNINDENT
|
1167
1085
|
|
1168
1086
|
.SS maximum_uid
|
1169
1087
|
The maximum allowed UID. Some platforms use negative UIDs but then ship with tools that do not know how to handle signed ints, so the UIDs show up as huge numbers that can then not be fed back into the system. This is a hackish way to fail in a slightly more useful way when that happens.
|
1170
1088
|
|
1089
|
+
.INDENT 0.0
|
1171
1090
|
|
1172
|
-
.
|
1173
|
-
\
|
1174
|
-
Default: 4294967290
|
1091
|
+
.IP \(bu 2
|
1092
|
+
\fPDefault\fP: 4294967290
|
1175
1093
|
|
1094
|
+
.UNINDENT
|
1176
1095
|
|
1177
1096
|
.SS mkusers
|
1178
1097
|
Whether to create the necessary user and group that puppetd will run as.
|
1179
1098
|
|
1099
|
+
.INDENT 0.0
|
1180
1100
|
|
1181
|
-
.
|
1182
|
-
\
|
1183
|
-
Default: false
|
1101
|
+
.IP \(bu 2
|
1102
|
+
\fPDefault\fP: false
|
1184
1103
|
|
1104
|
+
.UNINDENT
|
1185
1105
|
|
1186
1106
|
.SS modulepath
|
1187
1107
|
The search path for modules as a colon\-separated list of directories.
|
1188
1108
|
|
1109
|
+
.INDENT 0.0
|
1189
1110
|
|
1190
|
-
.
|
1191
|
-
\
|
1192
|
-
Default: $confdir/modules:/usr/share/puppet/modules
|
1111
|
+
.IP \(bu 2
|
1112
|
+
\fPDefault\fP: $confdir/modules:/usr/share/puppet/modules
|
1193
1113
|
|
1114
|
+
.UNINDENT
|
1194
1115
|
|
1195
1116
|
.SS name
|
1196
|
-
The name of the service, if we are running as one. The default is essentially $0 without the path or
|
1197
|
-
.\" visit_literal
|
1198
|
-
.rb
|
1199
|
-
.\" depart_literal
|
1200
|
-
.
|
1117
|
+
The name of the service, if we are running as one. The default is essentially $0 without the path or \fB.rb\fP.
|
1201
1118
|
|
1119
|
+
.INDENT 0.0
|
1202
1120
|
|
1203
|
-
.
|
1204
|
-
\
|
1205
|
-
Default: puppetdoc
|
1121
|
+
.IP \(bu 2
|
1122
|
+
\fPDefault\fP: puppetdoc
|
1206
1123
|
|
1124
|
+
.UNINDENT
|
1207
1125
|
|
1208
1126
|
.SS node_name
|
1209
|
-
How the puppetmaster determines the client\'s identity
|
1127
|
+
How the puppetmaster determines the client\'s identity and sets the \'hostname\', \'fqdn\' and \'domain\' facts for use in the manifest, in particular for determining which \'node\' statement applies to the client. Possible values are \'cert\' (use the subject\'s CN in the client\'s certificate) and \'facter\' (use the hostname that the client reported in its facts)
|
1210
1128
|
|
1129
|
+
.INDENT 0.0
|
1211
1130
|
|
1212
|
-
.
|
1213
|
-
\
|
1214
|
-
Default: cert
|
1131
|
+
.IP \(bu 2
|
1132
|
+
\fPDefault\fP: cert
|
1215
1133
|
|
1134
|
+
.UNINDENT
|
1216
1135
|
|
1217
1136
|
.SS node_terminus
|
1218
1137
|
Where to find information about nodes.
|
1219
1138
|
|
1139
|
+
.INDENT 0.0
|
1220
1140
|
|
1221
|
-
.
|
1222
|
-
\
|
1223
|
-
Default: plain
|
1141
|
+
.IP \(bu 2
|
1142
|
+
\fPDefault\fP: plain
|
1224
1143
|
|
1144
|
+
.UNINDENT
|
1225
1145
|
|
1226
1146
|
.SS noop
|
1227
1147
|
Whether puppetd should be run in noop mode.
|
1228
1148
|
|
1149
|
+
.INDENT 0.0
|
1229
1150
|
|
1230
|
-
.
|
1231
|
-
\
|
1232
|
-
Default: false
|
1151
|
+
.IP \(bu 2
|
1152
|
+
\fPDefault\fP: false
|
1233
1153
|
|
1154
|
+
.UNINDENT
|
1234
1155
|
|
1235
1156
|
.SS paramcheck
|
1236
1157
|
Whether to validate parameters during parsing.
|
1237
1158
|
|
1159
|
+
.INDENT 0.0
|
1238
1160
|
|
1239
|
-
.
|
1240
|
-
\
|
1241
|
-
Default: true
|
1161
|
+
.IP \(bu 2
|
1162
|
+
\fPDefault\fP: true
|
1242
1163
|
|
1164
|
+
.UNINDENT
|
1243
1165
|
|
1244
1166
|
.SS parseonly
|
1245
1167
|
Just check the syntax of the manifests.
|
1246
1168
|
|
1169
|
+
.INDENT 0.0
|
1247
1170
|
|
1248
|
-
.
|
1249
|
-
\
|
1250
|
-
Default: false
|
1171
|
+
.IP \(bu 2
|
1172
|
+
\fPDefault\fP: false
|
1251
1173
|
|
1174
|
+
.UNINDENT
|
1252
1175
|
|
1253
1176
|
.SS passfile
|
1254
1177
|
Where puppetd stores the password for its private key. Generally unused.
|
1255
1178
|
|
1179
|
+
.INDENT 0.0
|
1256
1180
|
|
1257
|
-
.
|
1258
|
-
\
|
1259
|
-
Default: $privatedir/password
|
1181
|
+
.IP \(bu 2
|
1182
|
+
\fPDefault\fP: $privatedir/password
|
1260
1183
|
|
1184
|
+
.UNINDENT
|
1261
1185
|
|
1262
1186
|
.SS path
|
1263
1187
|
The shell search path. Defaults to whatever is inherited from the parent process.
|
1264
1188
|
|
1189
|
+
.INDENT 0.0
|
1265
1190
|
|
1266
|
-
.
|
1267
|
-
\
|
1268
|
-
Default: none
|
1191
|
+
.IP \(bu 2
|
1192
|
+
\fPDefault\fP: none
|
1269
1193
|
|
1194
|
+
.UNINDENT
|
1270
1195
|
|
1271
1196
|
.SS pidfile
|
1272
1197
|
The pid file
|
1273
1198
|
|
1199
|
+
.INDENT 0.0
|
1274
1200
|
|
1275
|
-
.
|
1276
|
-
|
1277
|
-
|
1278
|
-
|
1279
|
-
.TP 2
|
1280
|
-
\(bu
|
1281
|
-
Default: $libdir
|
1201
|
+
.IP \(bu 2
|
1202
|
+
\fPDefault\fP: $rundir/$name.pid
|
1282
1203
|
|
1204
|
+
.UNINDENT
|
1283
1205
|
|
1284
|
-
.SS
|
1285
|
-
Where Puppet should
|
1206
|
+
.SS plugindest
|
1207
|
+
Where Puppet should store plugins that it pulls down from the central server.
|
1286
1208
|
|
1209
|
+
.INDENT 0.0
|
1287
1210
|
|
1288
|
-
.
|
1289
|
-
\
|
1290
|
-
Default: $vardir/plugins
|
1211
|
+
.IP \(bu 2
|
1212
|
+
\fPDefault\fP: $libdir
|
1291
1213
|
|
1214
|
+
.UNINDENT
|
1292
1215
|
|
1293
1216
|
.SS pluginsignore
|
1294
1217
|
What files to ignore when pulling down plugins.
|
1295
1218
|
|
1219
|
+
.INDENT 0.0
|
1296
1220
|
|
1297
|
-
.
|
1298
|
-
\
|
1299
|
-
Default: .svn CVS
|
1221
|
+
.IP \(bu 2
|
1222
|
+
\fPDefault\fP: .svn CVS .git
|
1300
1223
|
|
1224
|
+
.UNINDENT
|
1301
1225
|
|
1302
1226
|
.SS pluginsource
|
1303
|
-
From where to retrieve plugins. The standard Puppet
|
1304
|
-
.\" visit_literal
|
1305
|
-
file
|
1306
|
-
.\" depart_literal
|
1307
|
-
type is used for retrieval, so anything that is a valid file source can be used here.
|
1227
|
+
From where to retrieve plugins. The standard Puppet \fBfile\fP type is used for retrieval, so anything that is a valid file source can be used here.
|
1308
1228
|
|
1229
|
+
.INDENT 0.0
|
1309
1230
|
|
1310
|
-
.
|
1311
|
-
\
|
1312
|
-
Default: puppet://$server/plugins
|
1231
|
+
.IP \(bu 2
|
1232
|
+
\fPDefault\fP: puppet://$server/plugins
|
1313
1233
|
|
1234
|
+
.UNINDENT
|
1314
1235
|
|
1315
1236
|
.SS pluginsync
|
1316
1237
|
Whether plugins should be synced with the central server.
|
1317
1238
|
|
1239
|
+
.INDENT 0.0
|
1240
|
+
|
1241
|
+
.IP \(bu 2
|
1242
|
+
\fPDefault\fP: false
|
1243
|
+
|
1244
|
+
.UNINDENT
|
1318
1245
|
|
1319
|
-
.
|
1320
|
-
\
|
1321
|
-
Default: false
|
1246
|
+
.SS preferred_serialization_format
|
1247
|
+
The preferred means of serializing ruby instances for passing over the wire. This won\'t guarantee that all instances will be serialized using this method, since not all classes can be guaranteed to support this format, but it will be used for all classes that support it.
|
1322
1248
|
|
1249
|
+
.INDENT 0.0
|
1250
|
+
|
1251
|
+
.IP \(bu 2
|
1252
|
+
\fPDefault\fP: pson
|
1253
|
+
|
1254
|
+
.UNINDENT
|
1323
1255
|
|
1324
1256
|
.SS privatedir
|
1325
1257
|
Where the client stores private certificate information.
|
1326
1258
|
|
1259
|
+
.INDENT 0.0
|
1327
1260
|
|
1328
|
-
.
|
1329
|
-
\
|
1330
|
-
Default: $ssldir/private
|
1261
|
+
.IP \(bu 2
|
1262
|
+
\fPDefault\fP: $ssldir/private
|
1331
1263
|
|
1264
|
+
.UNINDENT
|
1332
1265
|
|
1333
1266
|
.SS privatekeydir
|
1334
1267
|
The private key directory.
|
1335
1268
|
|
1269
|
+
.INDENT 0.0
|
1336
1270
|
|
1337
|
-
.
|
1338
|
-
\
|
1339
|
-
Default: $ssldir/private_keys
|
1271
|
+
.IP \(bu 2
|
1272
|
+
\fPDefault\fP: $ssldir/private_keys
|
1340
1273
|
|
1274
|
+
.UNINDENT
|
1341
1275
|
|
1342
1276
|
.SS publickeydir
|
1343
1277
|
The public key directory.
|
1344
1278
|
|
1279
|
+
.INDENT 0.0
|
1345
1280
|
|
1346
|
-
.
|
1347
|
-
\
|
1348
|
-
Default: $ssldir/public_keys
|
1281
|
+
.IP \(bu 2
|
1282
|
+
\fPDefault\fP: $ssldir/public_keys
|
1349
1283
|
|
1284
|
+
.UNINDENT
|
1350
1285
|
|
1351
1286
|
.SS puppetdlockfile
|
1352
1287
|
A lock file to temporarily stop puppetd from doing anything.
|
1353
1288
|
|
1289
|
+
.INDENT 0.0
|
1354
1290
|
|
1355
|
-
.
|
1356
|
-
\
|
1357
|
-
Default: $statedir/puppetdlock
|
1291
|
+
.IP \(bu 2
|
1292
|
+
\fPDefault\fP: $statedir/puppetdlock
|
1358
1293
|
|
1294
|
+
.UNINDENT
|
1359
1295
|
|
1360
1296
|
.SS puppetdlog
|
1361
1297
|
The log file for puppetd. This is generally not used.
|
1362
1298
|
|
1299
|
+
.INDENT 0.0
|
1363
1300
|
|
1364
|
-
.
|
1365
|
-
\
|
1366
|
-
Default: $logdir/puppetd.log
|
1301
|
+
.IP \(bu 2
|
1302
|
+
\fPDefault\fP: $logdir/puppetd.log
|
1367
1303
|
|
1304
|
+
.UNINDENT
|
1368
1305
|
|
1369
1306
|
.SS puppetport
|
1370
1307
|
Which port puppetd listens on.
|
1371
1308
|
|
1309
|
+
.INDENT 0.0
|
1310
|
+
|
1311
|
+
.IP \(bu 2
|
1312
|
+
\fPDefault\fP: 8139
|
1313
|
+
|
1314
|
+
.UNINDENT
|
1315
|
+
|
1316
|
+
.SS queue_source
|
1317
|
+
Which type of queue to use for asynchronous processing. If your stomp server requires authentication, you can include it in the URI as long as your stomp client library is at least 1.1.1
|
1318
|
+
|
1319
|
+
.INDENT 0.0
|
1320
|
+
|
1321
|
+
.IP \(bu 2
|
1322
|
+
\fPDefault\fP: stomp://localhost:61613/
|
1323
|
+
|
1324
|
+
.UNINDENT
|
1325
|
+
|
1326
|
+
.SS queue_type
|
1327
|
+
Which type of queue to use for asynchronous processing.
|
1372
1328
|
|
1373
|
-
.
|
1374
|
-
\(bu
|
1375
|
-
Default: 8139
|
1329
|
+
.INDENT 0.0
|
1376
1330
|
|
1331
|
+
.IP \(bu 2
|
1332
|
+
\fPDefault\fP: stomp
|
1333
|
+
|
1334
|
+
.UNINDENT
|
1377
1335
|
|
1378
1336
|
.SS rails_loglevel
|
1379
|
-
The log level for Rails connections. The value must be a valid log level within Rails. Production environments normally use
|
1380
|
-
.\" visit_literal
|
1381
|
-
info
|
1382
|
-
.\" depart_literal
|
1383
|
-
and other environments normally use
|
1384
|
-
.\" visit_literal
|
1385
|
-
debug
|
1386
|
-
.\" depart_literal
|
1387
|
-
.
|
1337
|
+
The log level for Rails connections. The value must be a valid log level within Rails. Production environments normally use \fBinfo\fP and other environments normally use \fBdebug\fP.
|
1388
1338
|
|
1339
|
+
.INDENT 0.0
|
1389
1340
|
|
1390
|
-
.
|
1391
|
-
\
|
1392
|
-
Default: info
|
1341
|
+
.IP \(bu 2
|
1342
|
+
\fPDefault\fP: info
|
1393
1343
|
|
1344
|
+
.UNINDENT
|
1394
1345
|
|
1395
1346
|
.SS railslog
|
1396
1347
|
Where Rails\-specific logs are sent
|
1397
1348
|
|
1349
|
+
.INDENT 0.0
|
1398
1350
|
|
1399
|
-
.
|
1400
|
-
\
|
1401
|
-
Default: $logdir/rails.log
|
1351
|
+
.IP \(bu 2
|
1352
|
+
\fPDefault\fP: $logdir/rails.log
|
1402
1353
|
|
1354
|
+
.UNINDENT
|
1403
1355
|
|
1404
1356
|
.SS report
|
1405
1357
|
Whether to send reports after every transaction.
|
1406
1358
|
|
1359
|
+
.INDENT 0.0
|
1360
|
+
|
1361
|
+
.IP \(bu 2
|
1362
|
+
\fPDefault\fP: false
|
1363
|
+
|
1364
|
+
.UNINDENT
|
1365
|
+
|
1366
|
+
.SS report_port
|
1367
|
+
The port to communicate with the report_server.
|
1368
|
+
|
1369
|
+
.INDENT 0.0
|
1370
|
+
|
1371
|
+
.IP \(bu 2
|
1372
|
+
\fPDefault\fP: $masterport
|
1407
1373
|
|
1408
|
-
.
|
1409
|
-
\(bu
|
1410
|
-
Default: false
|
1374
|
+
.UNINDENT
|
1411
1375
|
|
1376
|
+
.SS report_server
|
1377
|
+
The server to which to send transaction reports.
|
1378
|
+
|
1379
|
+
.INDENT 0.0
|
1380
|
+
|
1381
|
+
.IP \(bu 2
|
1382
|
+
\fPDefault\fP: $server
|
1383
|
+
|
1384
|
+
.UNINDENT
|
1412
1385
|
|
1413
1386
|
.SS reportdir
|
1414
1387
|
The directory in which to store reports received from the client. Each client gets a separate subdirectory.
|
1415
1388
|
|
1389
|
+
.INDENT 0.0
|
1416
1390
|
|
1417
|
-
.
|
1418
|
-
\
|
1419
|
-
Default: $vardir/reports
|
1391
|
+
.IP \(bu 2
|
1392
|
+
\fPDefault\fP: $vardir/reports
|
1420
1393
|
|
1394
|
+
.UNINDENT
|
1421
1395
|
|
1422
1396
|
.SS reportfrom
|
1423
1397
|
The \'from\' email address for the reports.
|
1424
1398
|
|
1399
|
+
.INDENT 0.0
|
1425
1400
|
|
1426
|
-
.
|
1427
|
-
\
|
1428
|
-
Default: report@absinthe.lovedthanlost.net
|
1401
|
+
.IP \(bu 2
|
1402
|
+
\fPDefault\fP: \fI\%report@pelin.lovedthanlost.net\fP
|
1429
1403
|
|
1404
|
+
.UNINDENT
|
1430
1405
|
|
1431
1406
|
.SS reports
|
1432
1407
|
The list of reports to generate. All reports are looked for in puppet/reports/<name>.rb, and multiple report names should be comma\-separated (whitespace is okay).
|
1433
1408
|
|
1409
|
+
.INDENT 0.0
|
1434
1410
|
|
1435
|
-
.
|
1436
|
-
\
|
1437
|
-
Default: store
|
1411
|
+
.IP \(bu 2
|
1412
|
+
\fPDefault\fP: store
|
1438
1413
|
|
1414
|
+
.UNINDENT
|
1439
1415
|
|
1440
1416
|
.SS reportserver
|
1441
|
-
The server to which to send transaction reports.
|
1417
|
+
(Deprecated for \'report_server\') The server to which to send transaction reports.
|
1442
1418
|
|
1419
|
+
.INDENT 0.0
|
1443
1420
|
|
1444
|
-
.
|
1445
|
-
\
|
1446
|
-
Default: $server
|
1421
|
+
.IP \(bu 2
|
1422
|
+
\fPDefault\fP: $server
|
1447
1423
|
|
1424
|
+
.UNINDENT
|
1448
1425
|
|
1449
1426
|
.SS req_bits
|
1450
1427
|
The bit length of the certificates.
|
1451
1428
|
|
1429
|
+
.INDENT 0.0
|
1452
1430
|
|
1453
|
-
.
|
1454
|
-
\
|
1455
|
-
Default: 2048
|
1431
|
+
.IP \(bu 2
|
1432
|
+
\fPDefault\fP: 2048
|
1456
1433
|
|
1434
|
+
.UNINDENT
|
1457
1435
|
|
1458
|
-
.SS
|
1459
|
-
|
1436
|
+
.SS requestdir
|
1437
|
+
Where host certificate requests are stored.
|
1438
|
+
|
1439
|
+
.INDENT 0.0
|
1440
|
+
|
1441
|
+
.IP \(bu 2
|
1442
|
+
\fPDefault\fP: $ssldir/certificate_requests
|
1460
1443
|
|
1444
|
+
.UNINDENT
|
1461
1445
|
|
1462
|
-
.
|
1463
|
-
\
|
1464
|
-
Default: $vardir/rrd
|
1446
|
+
.SS rest_authconfig
|
1447
|
+
The configuration file that defines the rights to the different rest indirections. This can be used as a fine\-grained authorization system for \fBpuppetmasterd\fP.
|
1465
1448
|
|
1449
|
+
.INDENT 0.0
|
1466
1450
|
|
1467
|
-
.
|
1468
|
-
|
1451
|
+
.IP \(bu 2
|
1452
|
+
\fPDefault\fP: $confdir/auth.conf
|
1453
|
+
|
1454
|
+
.UNINDENT
|
1455
|
+
|
1456
|
+
.SS rrddir
|
1457
|
+
The directory where RRD database files are stored. Directories for each reporting host will be created under this directory.
|
1469
1458
|
|
1459
|
+
.INDENT 0.0
|
1470
1460
|
|
1471
|
-
.
|
1472
|
-
\
|
1473
|
-
Default: false
|
1461
|
+
.IP \(bu 2
|
1462
|
+
\fPDefault\fP: $vardir/rrd
|
1474
1463
|
|
1464
|
+
.UNINDENT
|
1475
1465
|
|
1476
1466
|
.SS rrdinterval
|
1477
1467
|
How often RRD should expect data. This should match how often the hosts report back to the server.
|
1478
1468
|
|
1469
|
+
.INDENT 0.0
|
1479
1470
|
|
1480
|
-
.
|
1481
|
-
\
|
1482
|
-
Default: $runinterval
|
1471
|
+
.IP \(bu 2
|
1472
|
+
\fPDefault\fP: $runinterval
|
1483
1473
|
|
1474
|
+
.UNINDENT
|
1484
1475
|
|
1485
1476
|
.SS rundir
|
1486
1477
|
Where Puppet PID files are kept.
|
1487
1478
|
|
1479
|
+
.INDENT 0.0
|
1488
1480
|
|
1489
|
-
.
|
1490
|
-
\
|
1491
|
-
Default: $vardir/run
|
1481
|
+
.IP \(bu 2
|
1482
|
+
\fPDefault\fP: $vardir/run
|
1492
1483
|
|
1484
|
+
.UNINDENT
|
1493
1485
|
|
1494
1486
|
.SS runinterval
|
1495
1487
|
How often puppetd applies the client configuration; in seconds.
|
1496
1488
|
|
1489
|
+
.INDENT 0.0
|
1497
1490
|
|
1498
|
-
.
|
1499
|
-
\
|
1500
|
-
Default: 1800
|
1491
|
+
.IP \(bu 2
|
1492
|
+
\fPDefault\fP: 1800
|
1501
1493
|
|
1494
|
+
.UNINDENT
|
1502
1495
|
|
1503
1496
|
.SS sendmail
|
1504
1497
|
Where to find the sendmail binary with which to send email.
|
1505
1498
|
|
1499
|
+
.INDENT 0.0
|
1500
|
+
|
1501
|
+
.IP \(bu 2
|
1502
|
+
\fPDefault\fP: /usr/sbin/sendmail
|
1503
|
+
|
1504
|
+
.UNINDENT
|
1506
1505
|
|
1507
1506
|
.SS serial
|
1508
1507
|
Where the serial number for certificates is stored.
|
1509
1508
|
|
1509
|
+
.INDENT 0.0
|
1510
1510
|
|
1511
|
-
.
|
1512
|
-
\
|
1513
|
-
Default: $cadir/serial
|
1511
|
+
.IP \(bu 2
|
1512
|
+
\fPDefault\fP: $cadir/serial
|
1514
1513
|
|
1514
|
+
.UNINDENT
|
1515
1515
|
|
1516
1516
|
.SS server
|
1517
1517
|
The server to which server puppetd should connect
|
1518
1518
|
|
1519
|
+
.INDENT 0.0
|
1519
1520
|
|
1520
|
-
.
|
1521
|
-
\
|
1522
|
-
Default: puppet
|
1521
|
+
.IP \(bu 2
|
1522
|
+
\fPDefault\fP: puppet
|
1523
1523
|
|
1524
|
+
.UNINDENT
|
1524
1525
|
|
1525
1526
|
.SS servertype
|
1526
1527
|
The type of server to use. Currently supported options are webrick and mongrel. If you use mongrel, you will need a proxy in front of the process or processes, since Mongrel cannot speak SSL.
|
1527
1528
|
|
1529
|
+
.INDENT 0.0
|
1528
1530
|
|
1529
|
-
.
|
1530
|
-
\
|
1531
|
-
Default: webrick
|
1531
|
+
.IP \(bu 2
|
1532
|
+
\fPDefault\fP: webrick
|
1532
1533
|
|
1534
|
+
.UNINDENT
|
1533
1535
|
|
1534
1536
|
.SS show_diff
|
1535
|
-
Whether to print a contextual diff when files are being replaced. The diff is printed on stdout, so this option is meaningless unless you are running Puppet interactively. This feature currently requires the
|
1536
|
-
.\" visit_literal
|
1537
|
-
diff/lcs
|
1538
|
-
.\" depart_literal
|
1539
|
-
Ruby library.
|
1537
|
+
Whether to print a contextual diff when files are being replaced. The diff is printed on stdout, so this option is meaningless unless you are running Puppet interactively. This feature currently requires the \fBdiff/lcs\fP Ruby library.
|
1540
1538
|
|
1539
|
+
.INDENT 0.0
|
1541
1540
|
|
1542
|
-
.
|
1543
|
-
\
|
1544
|
-
Default: false
|
1541
|
+
.IP \(bu 2
|
1542
|
+
\fPDefault\fP: false
|
1545
1543
|
|
1544
|
+
.UNINDENT
|
1546
1545
|
|
1547
1546
|
.SS signeddir
|
1548
1547
|
Where the CA stores signed certificates.
|
1549
1548
|
|
1549
|
+
.INDENT 0.0
|
1550
1550
|
|
1551
|
-
.
|
1552
|
-
\
|
1553
|
-
Default: $cadir/signed
|
1551
|
+
.IP \(bu 2
|
1552
|
+
\fPDefault\fP: $cadir/signed
|
1554
1553
|
|
1554
|
+
.UNINDENT
|
1555
1555
|
|
1556
1556
|
.SS smtpserver
|
1557
1557
|
The server through which to send email reports.
|
1558
1558
|
|
1559
|
+
.INDENT 0.0
|
1559
1560
|
|
1560
|
-
.
|
1561
|
-
\
|
1562
|
-
Default: none
|
1561
|
+
.IP \(bu 2
|
1562
|
+
\fPDefault\fP: none
|
1563
1563
|
|
1564
|
+
.UNINDENT
|
1564
1565
|
|
1565
1566
|
.SS splay
|
1566
1567
|
Whether to sleep for a pseudo\-random (but consistent) amount of time before a run.
|
1567
1568
|
|
1569
|
+
.INDENT 0.0
|
1568
1570
|
|
1569
|
-
.
|
1570
|
-
\
|
1571
|
-
Default: false
|
1571
|
+
.IP \(bu 2
|
1572
|
+
\fPDefault\fP: false
|
1572
1573
|
|
1574
|
+
.UNINDENT
|
1573
1575
|
|
1574
1576
|
.SS splaylimit
|
1575
1577
|
The maximum time to delay before runs. Defaults to being the same as the run interval.
|
1576
1578
|
|
1579
|
+
.INDENT 0.0
|
1577
1580
|
|
1578
|
-
.
|
1579
|
-
\
|
1580
|
-
Default: $runinterval
|
1581
|
+
.IP \(bu 2
|
1582
|
+
\fPDefault\fP: $runinterval
|
1581
1583
|
|
1584
|
+
.UNINDENT
|
1582
1585
|
|
1583
1586
|
.SS ssl_client_header
|
1584
|
-
The header containing an authenticated client\'s SSL DN. Only used with Mongrel. This header must be set by the proxy to the authenticated client\'s SSL DN (e.g.,
|
1585
|
-
.\" visit_literal
|
1586
|
-
/CN=puppet.reductivelabs.com
|
1587
|
-
.\" depart_literal
|
1588
|
-
). See http://reductivelabs.com/puppet/trac/wiki/UsingMongrel for more information.
|
1587
|
+
The header containing an authenticated client\'s SSL DN. Only used with Mongrel. This header must be set by the proxy to the authenticated client\'s SSL DN (e.g., \fB/CN=puppet.reductivelabs.com\fP). See \fI\%http://reductivelabs.com/puppet/trac/wiki/UsingMongrel\fP for more information.
|
1589
1588
|
|
1589
|
+
.INDENT 0.0
|
1590
1590
|
|
1591
|
-
.
|
1592
|
-
\
|
1593
|
-
Default: HTTP_X_CLIENT_DN
|
1591
|
+
.IP \(bu 2
|
1592
|
+
\fPDefault\fP: HTTP_X_CLIENT_DN
|
1594
1593
|
|
1594
|
+
.UNINDENT
|
1595
1595
|
|
1596
1596
|
.SS ssl_client_verify_header
|
1597
|
-
The header containing the status message of the client verification. Only used with Mongrel. This header must be set by the proxy to \'SUCCESS\' if the client successfully authenticated, and anything else otherwise. See http://reductivelabs.com/puppet/trac/wiki/UsingMongrel for more information.
|
1597
|
+
The header containing the status message of the client verification. Only used with Mongrel. This header must be set by the proxy to \'SUCCESS\' if the client successfully authenticated, and anything else otherwise. See \fI\%http://reductivelabs.com/puppet/trac/wiki/UsingMongrel\fP for more information.
|
1598
1598
|
|
1599
|
+
.INDENT 0.0
|
1599
1600
|
|
1600
|
-
.
|
1601
|
-
\
|
1602
|
-
Default: HTTP_X_CLIENT_VERIFY
|
1601
|
+
.IP \(bu 2
|
1602
|
+
\fPDefault\fP: HTTP_X_CLIENT_VERIFY
|
1603
1603
|
|
1604
|
+
.UNINDENT
|
1604
1605
|
|
1605
1606
|
.SS ssldir
|
1606
1607
|
Where SSL certificates are kept.
|
1607
1608
|
|
1609
|
+
.INDENT 0.0
|
1608
1610
|
|
1609
|
-
.
|
1610
|
-
\
|
1611
|
-
Default: $confdir/ssl
|
1611
|
+
.IP \(bu 2
|
1612
|
+
\fPDefault\fP: $confdir/ssl
|
1612
1613
|
|
1614
|
+
.UNINDENT
|
1613
1615
|
|
1614
1616
|
.SS statedir
|
1615
1617
|
The directory where Puppet state is stored. Generally, this directory can be removed without causing harm (although it might result in spurious service restarts).
|
1616
1618
|
|
1619
|
+
.INDENT 0.0
|
1617
1620
|
|
1618
|
-
.
|
1619
|
-
\
|
1620
|
-
Default: $vardir/state
|
1621
|
+
.IP \(bu 2
|
1622
|
+
\fPDefault\fP: $vardir/state
|
1621
1623
|
|
1624
|
+
.UNINDENT
|
1622
1625
|
|
1623
1626
|
.SS statefile
|
1624
1627
|
Where puppetd and puppetmasterd store state associated with the running configuration. In the case of puppetmasterd, this file reflects the state discovered through interacting with clients.
|
1625
1628
|
|
1629
|
+
.INDENT 0.0
|
1626
1630
|
|
1627
|
-
.
|
1628
|
-
\
|
1629
|
-
Default: $statedir/state.yaml
|
1631
|
+
.IP \(bu 2
|
1632
|
+
\fPDefault\fP: $statedir/state.yaml
|
1630
1633
|
|
1634
|
+
.UNINDENT
|
1631
1635
|
|
1632
1636
|
.SS storeconfigs
|
1633
1637
|
Whether to store each client\'s configuration. This requires ActiveRecord from Ruby on Rails.
|
1634
1638
|
|
1639
|
+
.INDENT 0.0
|
1640
|
+
|
1641
|
+
.IP \(bu 2
|
1642
|
+
\fPDefault\fP: false
|
1643
|
+
|
1644
|
+
.UNINDENT
|
1645
|
+
|
1646
|
+
.SS strict_hostname_checking
|
1647
|
+
Whether to only search for the complete hostname as it is in the certificate when searching for node information in the catalogs.
|
1635
1648
|
|
1636
|
-
.
|
1637
|
-
\(bu
|
1638
|
-
Default: false
|
1649
|
+
.INDENT 0.0
|
1639
1650
|
|
1651
|
+
.IP \(bu 2
|
1652
|
+
\fPDefault\fP: false
|
1653
|
+
|
1654
|
+
.UNINDENT
|
1640
1655
|
|
1641
1656
|
.SS summarize
|
1642
1657
|
Whether to print a transaction summary.
|
1643
1658
|
|
1659
|
+
.INDENT 0.0
|
1644
1660
|
|
1645
|
-
.
|
1646
|
-
\
|
1647
|
-
Default: false
|
1661
|
+
.IP \(bu 2
|
1662
|
+
\fPDefault\fP: false
|
1648
1663
|
|
1664
|
+
.UNINDENT
|
1649
1665
|
|
1650
1666
|
.SS syslogfacility
|
1651
1667
|
What syslog facility to use when logging to syslog. Syslog has a fixed list of valid facilities, and you must choose one of those; you cannot just make one up.
|
1652
1668
|
|
1669
|
+
.INDENT 0.0
|
1653
1670
|
|
1654
|
-
.
|
1655
|
-
\
|
1656
|
-
Default: daemon
|
1671
|
+
.IP \(bu 2
|
1672
|
+
\fPDefault\fP: daemon
|
1657
1673
|
|
1674
|
+
.UNINDENT
|
1658
1675
|
|
1659
1676
|
.SS tagmap
|
1660
1677
|
The mapping between reporting tags and email addresses.
|
1661
1678
|
|
1679
|
+
.INDENT 0.0
|
1662
1680
|
|
1663
|
-
.
|
1664
|
-
\
|
1665
|
-
Default: $confdir/tagmail.conf
|
1681
|
+
.IP \(bu 2
|
1682
|
+
\fPDefault\fP: $confdir/tagmail.conf
|
1666
1683
|
|
1684
|
+
.UNINDENT
|
1667
1685
|
|
1668
1686
|
.SS tags
|
1669
1687
|
Tags to use to find resources. If this is set, then only resources tagged with the specified tags will be applied. Values must be comma\-separated.
|
1670
1688
|
|
1671
1689
|
|
1672
1690
|
.SS templatedir
|
1673
|
-
Where Puppet looks for template files.
|
1691
|
+
Where Puppet looks for template files. Can be a list of colon\-seperated directories.
|
1692
|
+
|
1693
|
+
.INDENT 0.0
|
1694
|
+
|
1695
|
+
.IP \(bu 2
|
1696
|
+
\fPDefault\fP: $vardir/templates
|
1674
1697
|
|
1698
|
+
.UNINDENT
|
1675
1699
|
|
1676
|
-
.
|
1677
|
-
|
1678
|
-
Default: $vardir/templates
|
1700
|
+
.SS thin_storeconfigs
|
1701
|
+
Boolean; wether storeconfigs store in the database only the facts and exported resources. If true, then storeconfigs performance will be higher and still allow exported/collected resources, but other usage external to Puppet might not work
|
1679
1702
|
|
1703
|
+
.INDENT 0.0
|
1704
|
+
|
1705
|
+
.IP \(bu 2
|
1706
|
+
\fPDefault\fP: false
|
1707
|
+
|
1708
|
+
.UNINDENT
|
1680
1709
|
|
1681
1710
|
.SS trace
|
1682
1711
|
Whether to print stack traces on some errors
|
1683
1712
|
|
1713
|
+
.INDENT 0.0
|
1684
1714
|
|
1685
|
-
.
|
1686
|
-
\
|
1687
|
-
Default: false
|
1715
|
+
.IP \(bu 2
|
1716
|
+
\fPDefault\fP: false
|
1688
1717
|
|
1718
|
+
.UNINDENT
|
1689
1719
|
|
1690
1720
|
.SS typecheck
|
1691
1721
|
Whether to validate types during parsing.
|
1692
1722
|
|
1723
|
+
.INDENT 0.0
|
1693
1724
|
|
1694
|
-
.
|
1695
|
-
\
|
1696
|
-
Default: true
|
1725
|
+
.IP \(bu 2
|
1726
|
+
\fPDefault\fP: true
|
1697
1727
|
|
1728
|
+
.UNINDENT
|
1698
1729
|
|
1699
1730
|
.SS usecacheonfailure
|
1700
1731
|
Whether to use the cached configuration when the remote configuration will not compile. This option is useful for testing new configurations, where you want to fix the broken configuration rather than reverting to a known\-good one.
|
1701
1732
|
|
1733
|
+
.INDENT 0.0
|
1702
1734
|
|
1703
|
-
.
|
1704
|
-
\
|
1705
|
-
Default: true
|
1735
|
+
.IP \(bu 2
|
1736
|
+
\fPDefault\fP: true
|
1706
1737
|
|
1738
|
+
.UNINDENT
|
1707
1739
|
|
1708
1740
|
.SS user
|
1709
1741
|
The user puppetmasterd should run as.
|
1710
1742
|
|
1743
|
+
.INDENT 0.0
|
1711
1744
|
|
1712
|
-
.
|
1713
|
-
\
|
1714
|
-
Default: puppet
|
1745
|
+
.IP \(bu 2
|
1746
|
+
\fPDefault\fP: puppet
|
1715
1747
|
|
1748
|
+
.UNINDENT
|
1716
1749
|
|
1717
1750
|
.SS vardir
|
1718
|
-
Where Puppet stores dynamic and growing data. The default for this parameter is calculated specially, like confdir.
|
1751
|
+
Where Puppet stores dynamic and growing data. The default for this parameter is calculated specially, like \fI\%confdir\fP.
|
1719
1752
|
|
1753
|
+
.INDENT 0.0
|
1720
1754
|
|
1721
|
-
.
|
1722
|
-
\
|
1723
|
-
Default: /var/puppet
|
1755
|
+
.IP \(bu 2
|
1756
|
+
\fPDefault\fP: /var/puppet
|
1724
1757
|
|
1758
|
+
.UNINDENT
|
1725
1759
|
|
1726
1760
|
.SS yamldir
|
1727
1761
|
The directory in which YAML data is stored, usually in a subdirectory.
|
1728
1762
|
|
1763
|
+
.INDENT 0.0
|
1764
|
+
|
1765
|
+
.IP \(bu 2
|
1766
|
+
\fPDefault\fP: $vardir/yaml
|
1729
1767
|
|
1730
|
-
.
|
1731
|
-
\(bu
|
1732
|
-
Default: $vardir/yaml
|
1768
|
+
.UNINDENT
|
1733
1769
|
|
1770
|
+
.SS zlib
|
1771
|
+
Boolean; whether to use the zlib library
|
1772
|
+
|
1773
|
+
.INDENT 0.0
|
1774
|
+
|
1775
|
+
.IP \(bu 2
|
1776
|
+
\fPDefault\fP: true
|
1777
|
+
|
1778
|
+
.UNINDENT
|
1734
1779
|
|
1735
1780
|
.sp
|
1736
1781
|
.ce
|
@@ -1738,10 +1783,8 @@ Default: $vardir/yaml
|
|
1738
1783
|
|
1739
1784
|
.ce 0
|
1740
1785
|
.sp
|
1741
|
-
|
1742
|
-
.I This page autogenerated on Mon May 05 09:33:01 +1000 2008
|
1743
|
-
|
1786
|
+
\fIThis page autogenerated on Wed Dec 30 19:31:12 \-0500 2009\fP
|
1744
1787
|
|
1745
1788
|
|
1746
|
-
.\" Generated by docutils manpage writer on
|
1747
|
-
.\"
|
1789
|
+
.\" Generated by docutils manpage writer on 2009-12-30 19:31.
|
1790
|
+
.\"
|