iddev: retire

iddev was a instance running ipsilon, with a fas plugin. It was usefull
for developers to point to when developing new apps to be able to test
authentication. However, when we moved to new account system the only
way we could make iddev work is by adding it to the VPN and enrolling it
in IPA like a normal machine. We don't want to do that as it would allow
way too much power to anyone who had configuration power over it.

In addition, ryan wrote a vagrant setup called 'tiny-stage' that spins
up a ipa server and a ipsilon server and developers should be able to
use that locally to test, completely disconnected from our
authentication.

See https://pagure.io/fedora-infrastructure/issue/9966 for more info.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>

inventory/cloud

@@ -8,7 +8,6 @@
 #copr-vmhost01.fedorainfracloud.org
 
 [cloud_aws]
-iddev.fedorainfracloud.org
 proxy30.fedoraproject.org
 proxy31.fedoraproject.org
 proxy32.fedoraproject.org
@@ -32,7 +31,6 @@ copr-keygen.aws.fedoraproject.org
 copr-keygen-dev.aws.fedoraproject.org
 #copr-be-dev.cloud.fedoraproject.org
 copr-dist-git-dev.fedorainfracloud.org
-iddev.fedorainfracloud.org
 f32-test.fedorainfracloud.org
 f33-test.fedorainfracloud.org
 f35-test.fedorainfracloud.org
@@ -41,8 +39,6 @@ el7-test.fedorainfracloud.org
 el8-test.fedorainfracloud.org
 aarch64-test01.fedorainfracloud.org
 #aarch64-test02.fedorainfracloud.org
-# iddev
-iddev.fedorainfracloud.org
 retrace-stg.aws.fedoraproject.org
 # This is not in aws, but here is good enough for now
 ppc64le-test.fedorainfracloud.org

inventory/inventory

@@ -299,9 +299,6 @@ ipsilon01.stg.iad2.fedoraproject.org
 ipsilon01.iad2.fedoraproject.org
 ipsilon02.iad2.fedoraproject.org
 
-[ipsilon_dev]
-iddev.fedorainfracloud.org
-
 [nagios]
 noc01.iad2.fedoraproject.org
 noc02.fedoraproject.org

main.yml

@@ -101,4 +101,3 @@
 #
 
 - import_playbook: /srv/web/infra/ansible/playbooks/hosts/cloud-noc01.fedorainfracloud.org.yml
-- import_playbook: /srv/web/infra/ansible/playbooks/hosts/iddev.fedorainfracloud.org.yml

playbooks/hosts/iddev.fedorainfracloud.org.yml

@@ -1,36 +0,0 @@
-- name: setup all the things
-  hosts: iddev.fedorainfracloud.org
-  gather_facts: True
-  vars_files:
-   - /srv/web/infra/ansible/vars/global.yml
-   - /srv/private/ansible/vars.yml
-   - /srv/private/ansible/files/openstack/passwords.yml
-   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
-
-  roles:
-  - basessh
-  - sudo
-  - hosts
-  - mod_wsgi
-  - base
-
-  pre_tasks:
-  - import_tasks: "{{ tasks_path }}/yumrepos.yml"
-
-  tasks:
-  - import_tasks: "{{ tasks_path }}/cloud_setup_basic.yml"
-  - name: set hostname (required by some services, at least postfix need it)
-    hostname: name="{{inventory_hostname}}"
-  - name: reload apache
-    ansible.builtin.service:
-      name: httpd
-      state: stopped
-  - name: Letsencrypt for iddev.fedorainfracloud.org
-    shell: /usr/bin/certbot renew --noninteractive --no-random-sleep-on-renew --force-renewal --standalone
-  - name: reload apache
-    ansible.builtin.service:
-      name: httpd
-      state: restarted
-
-  handlers:
-  - import_tasks: "{{ handlers_path }}/restart_services.yml"