@hlindberg Henrik Lindberg hlindberg

@hlindberg hlindberg / lookup_sensitive.pp
Created Jun 15, 2017
View lookup_sensitive.pp
function mymodule::my_privates (
Variant[String, Numeric] $key,
Hash $options,
Puppet::LookupContext $context,
) {
case $key {
'mymodule::secret1' : { Sensitive('There is no Santa on the evening coach') }
'mymodule::secret2' : { Sensitive('All your base are belong to us') }
default: { $context.not_found }
}
@hlindberg hlindberg / rewritten.epp
Last active Mar 2, 2017
View rewritten.epp
<%-
$pin = "release a=${name}" # default value
if $pin_release.length > 0
$options = [
if $release.length > 0 { "a=${release}" },
if $codename.length > 0 { "n=${codename}" },
if $release_version.length > 0 { "v=${release_version}"},
if $component.length > 0 { "c=${component}" },
if $originator.length > 0 { "o=${originator}" },
if $label.length > 0 { "l=${label}" },
@hlindberg hlindberg / default_content(1.8.7).rb
Created Feb 24, 2017
View default_content(1.8.7).rb
Puppet::Parser::Functions.newfunction(:default_content,
:type => :rvalue,
:doc => <<-'ENDOFDOC'
Takes an optional content and an optional template name and returns the
contents of a file.
Examples:
$config_file_content = default_content($file_content, $template_location)
file { '/tmp/x':
@hlindberg hlindberg / exampleepp.pp
Created Dec 2, 2016
An example of using a local variable in EPP
View exampleepp.pp
# Example of local variables set inside of an EPP template
#
$template = @(EOF)
<%
# this is an element with arbitrary puppet code
$hash = { a => 1, b => 2, c => 3 }
-%>
The keys are:
<%- $hash.each |$key, $value| { -%>
@hlindberg hlindberg / my_first_puppet_validator.rb
Created Nov 29, 2016
This is an example puppet AST validator for Puppet 4.x showing various use of the Puppet AST and Parser APIs
View my_first_puppet_validator.rb
require 'puppet'
# Example of a module setting everything up to perform custom
# validation of an AST model produced by parsing puppet source.
#
module MyValidation
module Issues
# (see Puppet::Pops::Issues#issue)
# This is boiler plate code
def self.issue (issue_code, *args, &block)
@hlindberg hlindberg / gist:c300d021fee43f13779a7d5217e20820
Created Nov 19, 2016
example puppet nested naming equivalence and non nested names
View gist:c300d021fee43f13779a7d5217e20820
a::x {
define b {}
}
should be written (as the 100% equivalent):
class a::x{
}
define a::x::b {
@hlindberg hlindberg / abc_metric.rb
Created Oct 19, 2016
Start of ABC metric for Puppet
View abc_metric.rb
# AbcMetric sample - obviously in the wrong name space...
module Puppet::Pops
module Validation
class AbcMetric
attr_reader :assignment_count
def initialize()
@@abc_visitor ||= Visitor.new(nil, "abc", 0, 0)
@assignment_count = 0
@hlindberg hlindberg / master-agent-from-source.md
Last active May 20, 2016
How to run puppet agent-t and master from source on same machine for tracing/debugging
View master-agent-from-source.md

Run Agent and Master from source on same machine

bundle exec puppet master --no-daemonize --certname localhost --dns_alt_names localhost --verbose
bundle exec puppet agent -t --certname localhost --server localhost

To re-set the CSR process for an agent:

@hlindberg hlindberg / blog.pp
Created May 6, 2016
digging out data in style with puppet 4.5.0
View blog.pp
$data = {
persons => {
'Henrik' => {
mother => 'Anna-Greta',
father => 'Bengt',
},
'Anna-Greta' => {
mother => 'Margareta',
father => 'Harald',
children => ['Henrik', 'Annika']
@hlindberg hlindberg / gist:3ee308e5470b98f563c7
Created Mar 8, 2016
View gist:3ee308e5470b98f563c7
$limited_sudo = hiera('staff::allowed::sudo', undef)
if ( $limited_sudo ) {
$allowed_sudo = $limited_sudo.reduce( false ) |$allowed_sudo, $entry[ {
$team = $entry[1]
case [$allowed_sudo, $team, $username in hiera($team)] {
[ false, /::team::/, true] : {
warning ("Allowing sudo")
warning ("1: true")
true
}