opuppet/module-apt
4
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
module-apt/templates/50unattended-upgrades.erb

35 lines
1.2 KiB
Text
Raw Permalink Normal View History

50unattended-upgrades: lenny version
2012-12-15 12:49:20 +01:00
// this file is managed by puppet !
make it possible to opt out of MailOnlyOnError This combines all files into one template. It should make maintenance easier.
2013-07-27 19:38:27 +02:00
<% if scope.lookupvar('::operatingsystem') == 'Ubuntu' -%>
Fix 50unattended-upgrades template for squeeze, better pattern for later release
2015-05-06 23:14:53 +02:00
Unattended-Upgrade::Allowed-Origins {
using distribution sprecific files again
2013-04-14 14:54:10 +02:00
"${distro_id}:${distro_codename}-security";
"${distro_id}:${distro_codename}-updates";
"${distro_id}:${distro_codename}-backports";
Improve unattended-upgrades origin selectors * On squeeze, use release fact instead of hardcoded release name * On wheezy, special-case because codename selector is not available * On jessie and up, start pulling in point-release updates. The codename selector ensures that we won't be upgrading to a new release automatically.
2015-10-09 22:39:19 +02:00
<% elsif scope.lookupvar('::operatingsystem') == 'Debian' and scope.lookupvar('::debian_codename') == 'wheezy' -%>
Fix 50unattended-upgrades template for squeeze, better pattern for later release
2015-05-06 23:14:53 +02:00
Unattended-Upgrade::Origins-Pattern {
Replace debian_*() parser functions with facts * Removes dependency on lsb-release and/or Facter >1.7 (values are based on $::lsbdistcodename, when available) * Simplifies maintenance: only lib/facter/util/* require updates as new releases are made Caveats: * apt::codename is removed; to override debian_* facts, set the FACTER_debian_codename environment variable for puppet * If tracking unstable, make sure lsb-release is installed, as other methods can't tell between testing and unstable
2015-05-11 16:49:27 +02:00
"origin=Debian,archive=<%= scope.lookupvar('::debian_release') %>,label=Debian-Security";
Avoid unattended security upgrades from stable if running oldstable
2015-05-11 15:55:26 +02:00
"origin=Debian,archive=${distro_codename}-lts";
Improve unattended-upgrades origin selectors * On squeeze, use release fact instead of hardcoded release name * On wheezy, special-case because codename selector is not available * On jessie and up, start pulling in point-release updates. The codename selector ensures that we won't be upgrading to a new release automatically.
2015-10-09 22:39:19 +02:00
<% else -%>
Unattended-Upgrade::Origins-Pattern {
"origin=Debian,codename=${distro_codename},label=Debian";
"origin=Debian,codename=${distro_codename},label=Debian-Security";
make it possible to opt out of MailOnlyOnError This combines all files into one template. It should make maintenance easier.
2013-07-27 19:38:27 +02:00
<% end -%>
50unattended-upgrades: lenny version
2012-12-15 12:49:20 +01:00
};
Add parameter for blacklisting a list of packages. This functionality was lost because we stopped using a source file for the 50unattended-upgrades file that would previously let one override the configuration per release or per host.
2015-04-17 22:43:26 +02:00
<% if not @blacklisted_packages.empty? -%>
Unattended-Upgrade::Package-Blacklist {
<% @blacklisted_packages.each do |pkg| -%>
"<%= pkg %>";
<% end -%>
Fix typos in unattended-upgrades template
2015-05-07 18:52:25 +02:00
};
Add parameter for blacklisting a list of packages. This functionality was lost because we stopped using a source file for the 50unattended-upgrades file that would previously let one override the configuration per release or per host.
2015-04-17 22:43:26 +02:00
<% end -%>
use oldstable for lenny, force unattended upgrades
2012-12-16 10:43:43 +01:00
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Download-Upgradeable-Packages "1";
APT::Periodic::Unattended-Upgrade "1";
unattended-upgrades: use an @ prefix for template variables
2015-04-17 22:42:22 +02:00
Unattended-Upgrade::Mail "<%= @mail_recipient -%>";
<% if @mailonlyonerror -%>
using distribution sprecific files again
2013-04-14 14:54:10 +02:00
Unattended-Upgrade::MailOnlyOnError "true";
make it possible to opt out of MailOnlyOnError This combines all files into one template. It should make maintenance easier.
2013-07-27 19:38:27 +02:00
<% end -%>
Reference in a new issue Copy permalink