Forge Home

gitlab

Installs and configures Omnibus Gitlab and provides custom types for creating projects and users

10,090 downloads

9,703 latest version

3.9 quality score

We run a couple of automated
scans to help you access a
module's quality. Each module is
given a score based on how well
the author has formatted their
code and documentation and
modules are also checked for
malware using VirusTotal.

Please note, the information below
is for guidance only and neither of
these methods should be considered
an endorsement by Puppet.

Support the Puppet Community by contributing to this module

You are welcome to contribute to this module by suggesting new features, currency updates, or fixes. Every contribution is valuable to help ensure that the module remains compatible with the latest Puppet versions and continues to meet community needs. Complete the following steps:

  1. Review the module’s contribution guidelines and any licenses. Ensure that your planned contribution aligns with the author’s standards and any legal requirements.
  2. Fork the repository on GitHub, make changes on a branch of your fork, and submit a pull request. The pull request must clearly document your proposed change.

For questions about updating the module, contact the module’s author.

Version information

  • 1.0.2 (latest)
  • 1.0.1
  • 1.0.0
released Jan 4th 2015
This version is compatible with:
  • , ,

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'dmcnicks-gitlab', '1.0.2'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add dmcnicks-gitlab
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install dmcnicks-gitlab --version 1.0.2

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download

Documentation

dmcnicks/gitlab — version 1.0.2 Jan 4th 2015

The gitlab module

Table of Contents

  1. Overview
  2. Description
  3. Effects
  4. Usage
  5. Reference
  6. Limitations
  7. Development

Overview

The gitlab Puppet module installs and configures Omnibus Gitlab and provides custom types for creating projects and users.

Description

The gitlab Puppet module installs and configures Omnibus Gitlab. The module is currently configured to install Gitlab 7.6.2 using the omnibus.5.3.0.ci.1-1 omnibus package.

The module also provides a number of custom types that use the Gitlab API to create projects, groups, users and keys. See the Custom Types section for details.

Dependencies

Tested on

  • Debian 7 (wheezy)
  • Ubuntu 14 (trusty)
  • CentOS 7

The module should work on Ubuntu 12 (precise) and CentOS 6. It should also work with other derivatives of RedHat Enterprise Linux.

Effects

  • Installs the Omnibus version of Gitlab.
  • Changes the Gitlab admin user password.
  • (Optional) Adds the node's root user SSH public key to Gitlab.
  • (Optiona) Custom types can be used to create projects, groups, users and keys.

Dependencies

  • Gitlab expects to be able to send verification emails to users so your node must be able to send emails. I use Mandrill for this because it is avoids having to deal with SMTP blacklists. I have a Mandrill Puppet module that can configure a variety of mailers to use Mandrill.

Usage

Declare the gitlab class to install Gitlab:

class { 'gitlab':
  admin_password => 'newpassword'
}

To run Gitlab on an alternate port:

class { 'gitlab':
  admin_password => 'newpassword',
  port => 8080,
  ssl_port => 8443
}

Note that the standard HTTP port must be specified even if SSL is enabled because Gitlab configures HTTP -> HTTPS redirection.

SSL is enabled by default using a created, self-signed certificate but it can be disabled:

class { 'gitlab':
  admin_password => 'newpassword',
  port => 8080,
  ssl => false
}

Custom Types

Cautionary note: any resources created by these custom types should be managed solely by Puppet. Changes made to projects, groups, users etc created by Puppet inside Gitlab itself will be lost the next time the Puppet agent runs.

All of the defined types use the Gitlab REST API and require the rest-client ruby gem to be installed:

package { 'rest-client':
  ensure   => 'present',
  provider => 'gem'
}

This package is declared by the gitlab module so it will be installed. However, it will not be available to the custom types on the first Puppet agent run, since custom types are loaded before package declarations are processed.

The gitlab_session type

The gitlab_session type logs into the Gitlab API and stores a returned token so that other types can connect to the API as needed.

gitlab_session { 'sessionname':
  login    => 'root',
  password => 'rootpassword',
  url      => 'http://gitlab.site'
}

The login parameter can be any user that has administrative privileges on the Gitlab site. The url should be the top-level URL of the site.

The name of the session is used to form dependencies between any other of the type declarations and the session declaration. Every other type declaration will include a session parameter for this purpose.

Note that this type does not require an ensure parameter because it does not change any resources itself.

The gitlab_user type

The gitlab_user type creates a new user in Gitlab.

gitlab_user { 'newusername':
  ensure   => 'present',
  session  => 'sessionname',
  email    => 'valid@email.address',
  fullname => 'New User',
  password => 'userpassword'
}

The gitlab_user_key type

The gitlab_user_key type adds an SSH public key to an existing Gitlab user. Any number of keys can be added to a single user

gitlab_user_key { 'key-for-newuser':
  ensure   => 'present',
  session  => 'config',
  username => 'newusername',
  key      => 'ssh-rsa NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNN user@laptop.isp.com'
}

The key value must be unbroken on a single line. It has been split up in the example above for legibility.

The gitlab_group type

The gitlab_group type creates a new group in Gitlab.

gitlab_group { 'My Group':
  ensure  => 'present',
  session => 'sessionname',
  owner   => 'newusername'
}

The optional owner parameter makes sure that the specified user is a member of the group with owner privileges. Changing this value will not remove old owners.

The gitlab_project type

The gitlab_project type creates a project in Gitlab.

gitlab_project { 'My Big Project':
  ensure  => 'present',
  session => 'sessionname',
  owner   => 'My Group'
}

The owner parameter can be the name of a group or a user. If the owner parameter is not specified the new project will be owned by the user that is logged into the API.

The gitlab_deploy_key type

The gitlab_deploy_key type adds an SSH public key as a deploy key to a project, giving the key owner read access.

gitlab_deploy_key { 'key-for-some-app':
  ensure   => 'present',
  session  => 'config',
  project  => 'My Big Project',
  key      => 'ssh-rsa NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNN user@laptop.isp.com'
}

As with the gitlab_user_key type, the key value must be unbroken on a single line.

Reference

The gitlab class

The gitlab class installs and configured Gitlab omnibus edition.

Parameters

admin_password

(Required) The new password for the Gitlab admin user.

download_url

(Optional) the download URL for the Gitlab omnibus package. You can use this to install the latest version if the default URLs in the module are out of date.

installer_file

(Optional) The name of the local file that the downloaded Gitlab package will be saved as (Defaults to gitlab-<os>.deb or gitlab-<os>.rpm depending on OS).

installer_dir

(Optional) The local directory that the downloaded Gitlab package will be saved to.

site

(Optional) The name of the Gitlab site (defaults to FQDN of the node).

port

(Optional) The HTTP port Gitlab will listen on (defaults to 80).

ssl_port

(Optional) The SSL port Gitlab will listen on (defaults to 443).

ssl

(Optional) Enables SSL (defaults to true).

worker_processes

(Optional) The number of Gitlab worker processes to run (defaults to 1).

add_root_pubkey

(Optional) Adds the SSH public key of the node's root user to the Gitlab admin account, giving the node's root user access to all Gitlab projects. This will create an SSH key pair for the node's root user if one does not already exist (defaults to false).

api_login

(Optional) The login used to connect to the Gitlab API (defaults to root).

api_password

(Optional) The password used to connect to the Gitlab API (defaults to the default Gitlab admin user password).

Limitations

The module has the download URLs for the 7.6.2 release of Gitlab omnibus and will default to downloading that version. If later releases are available you can specify the download URL as a parameter - you will have to choose the appropriate version for your node OS.

While the custom types are useful for creating users and projects in Gitlab, they will reverse any changes that you make inside Gitlab itself. For that reason, the custom times are best used for absolutely necessary Gitlab users and projects (for example, a Puppet user and a set of repositories for managing Puppet). Real users should be created in Gitlab itself.

Development

I am happy to receive pull requests.