somedude@util01.aws ~ $ cat /etc/apache2/mods-enabled/passenger3.conf # PUPPET

1. somedude@util01.aws ~ $ cat /etc/apache2/mods-enabled/passenger3.conf
2. # PUPPETHEADER: This file is owned by Puppet.
3.  
4. PassengerRoot /home/deploy/.rvm/gems/ruby-1.8.7-p330/gems/passenger-2.2.15
5. PassengerRuby /home/deploy/.rvm/wrappers/ruby-1.8.7-p330/ruby
6.  
7. PassengerMaxPoolSize 6
8. PassengerMaxRequests 10000
9. PassengerStatThrottleRate 10
10.  
11.  
12. somedude@util01.aws ~ $ cat /etc/apache2/mods-enabled/passenger3.load
13. # PUPPETHEADER: This file is owned by Puppet.
14.  
15. LoadModule passenger_module /home/deploy/.rvm/gems/ruby-1.8.7-p330/gems/passenger-2.2.15/ext/apache2/mod_passenger.so
16.  
17.  
18. somedude@util01.aws ~ $ cat /etc/apache2/sites-enabled/00_puppet.mydomain.com
19. Listen 8140
20.  
21. <VirtualHost *:8140>
22.  
23. # logging
24. CustomLog /var/log/apache2/puppet.mydomain.com-access.log combined
25. ErrorLog /var/log/apache2/puppet.mydomain.com-error.log
26.  
27. # logging settings
28. LogLevel crit
29.  
30. SSLEngine on
31. SSLProtocol -ALL +SSLv3 +TLSv1
32. SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
33.  
34. SSLCertificateFile /home/deploy/puppet/var/ssl/certs/puppet.mydomain.com.pem
35. SSLCertificateKeyFile /home/deploy/puppet/var/ssl/private_keys/puppet.mydomain.com.pem
36. SSLCertificateChainFile /home/deploy/puppet/var/ssl/certs/ca.pem
37. SSLCACertificateFile /home/deploy/puppet/var/ssl/certs/ca.pem
38. SSLCARevocationFile /home/deploy/puppet/var/ssl/ca/ca_crl.pem
39. SSLVerifyClient optional
40. SSLVerifyDepth 1
41. SSLOptions +StdEnvVars
42.  
43. DocumentRoot /home/deploy/puppet/rack/public
44. RackBaseURI /
45. <Directory /home/deploy/puppet/rack/public>
46. Options None
47. AllowOverride None
48. Order allow,deny
49. allow from all
50. </Directory>
51.  
52. </VirtualHost>
53.  
54. somedude@util01.aws ~ $ cat /home/deploy/puppet/puppet.conf
55. [main]
56. confdir=/home/deploy/puppet/etc
57. logdir=/home/deploy/puppet/logs
58. vardir=/home/deploy/puppet/var
59. ssldir=$vardir/ssl
60. rundir=/home/deploy/puppet/run
61. factpath=$vardir/lib/facter
62. templatedir=$confdir/templates
63.  
64. [puppetmasterd]
65. # These are needed when the puppetmaster is run by passenger
66. # and can safely be removed if webrick is used.
67. ssl_client_header = SSL_CLIENT_S_DN
68. ssl_client_verify_header = SSL_CLIENT_VERIFY
69.  
70. # certnames
71. certname=puppet.mydomain.com
72. certdnsnames=puppet
73.  
74. manifest=$confdir/manifests/site.pp
75.  
76. # database config
77. storeconfigs = true
78. dbadapter = mysql
79. dbuser = puppetry
80. dbpassword = IamaPassword
81. dbserver = localhost
82. downcasefacts = true
83. reports = store,log,foreman
84.  
85. somedude@util01.aws ~ $ cat /home/deploy/puppet/rack/config.ru
86. # a config.ru, for use with every rack-compatible webserver.
87. # SSL needs to be handled outside this, though.
88.  
89. # if puppet is not in your RUBYLIB:
90. # $:.unshift('/opt/puppet/lib')
91.  
92. $0 = "puppetmasterd"
93. require 'puppet'
94.  
95. # if you want debugging:
96. # ARGV << "--debug"
97.  
98. ARGV << "--rack"
99. ARGV << "--config=/home/deploy/puppet/puppet.conf"
100. require 'puppet/application/puppetmasterd'
101. # we're usually running inside a Rack::Builder.new {} block,
102. # therefore we need to call run *here*.
103. run Puppet::Application[:puppetmasterd].run