Add puppetforge ACL for puppet
[cacert-puppet.git] / hieradata / nodes / proxyout.yaml
1 ---
2 classes:
3 - roles::proxyout
4 profiles::base::admins:
5 - jandd
6 - law
7 profiles::squid::acls:
8 - "localnet src 10.0.0.0/24"
9 - "localnet src 172.16.2.0/24"
10 - "jenkins src 172.16.2.115"
11 - "puppet src 172.16.2.10"
12 - "debmirror dstdomain .debian.org"
13 - "debpgsql dstdomain apt.postgresql.org"
14 - "debmariadb dstdomain mirror2.hs-esslingen.de"
15 - "debpuppet dstdomain apt.puppetlabs.com"
16 - "debjenkins dstdomain pkg.jenkins-ci.org"
17 - "debjenkins dstdomain mirrors.jenkins.io"
18 - "debjenkins dstdomain ftp-chi.osuosl.org"
19 - "debjenkins dstdomain ftp-nyc.osuosl.org"
20 - "debjenkins dstdomain archives.jenkins-ci.org"
21 - "debjenkins dstdomain mirrors.seville-jam.es"
22 - "debjenkins dstdomain mirror.esuni.jp"
23 - "debjenkins dstdomain ftp.yz.yamagata-u.ac.jp"
24 - "debjenkins dstdomain mirrors.tuna.tsinghua.edu.cn"
25 - "rubygems dstdomain api.rubygems.org"
26 - "puppetforge dstdomain forgeapi.puppetlabs.com"
27 profiles::squid::http_access:
28 - "allow localnet debmirror"
29 - "allow localnet debpuppet"
30 - "allow localnet debmariadb"
31 - "allow jenkins debjenkins"
32 - "allow puppet rubygems"
33 - "allow puppet puppetforge"