WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-27 12:03:38 +08:00
Code Issues Packages Projects Releases Wiki Activity
20,712 Commits 9 Branches 0 Tags
15aa64b80784bbd34d7b6f85e3a9ce43cfc94de4
Commit Graph

4429 Commits

Author SHA1 Message Date
Adam Miller
8817396cb6 fix releng push key permissions on stage composer 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-30 20:00:17 +00:00
Kevin Fenzi
8b5b985e20 move repos to pre 2017-11-30 19:56:05 +00:00
Adam Miller
9cc1d2de91 Add relengpush and relengpush-int scripts for automated rebuilds 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-30 17:25:27 +00:00
Adam Miller
ff5eef2422 set releng-team group perms for container rebuild credentials in stage 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-30 15:09:30 +00:00
Adam Miller
f0571cdb2e add keytab and ssh key for releng rebuilds on composer machines in stage 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-29 17:44:45 +00:00
Patrick Uiterwijk
90878bb51d Make 5666 opening part of iptables 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-29 12:07:21 +00:00
Patrick Uiterwijk
2880217bcb We need to just fix re-entering a role rather than commenting it out 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-29 12:03:17 +00:00
Ricky Elrod
314339d79c see if this works - openshift 3.6 on prod 
Signed-off-by: Ricky Elrod <relrod@redhat.com>
 2017-11-29 02:37:09 +00:00
Stephen Smoogen
f81cb66458 put the openvpn client on bastion13 2017-11-29 02:10:26 +00:00
Patrick Uiterwijk
3790314254 COPR has had a lot of time to transfer to TLS. Now require it 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-28 23:55:32 +00:00
Kevin Fenzi
dd0744fc2c change db-koji02.stg to be a normal postgresql server running f27 2017-11-28 23:28:15 +00:00
Stephen Smoogen
09746514b8 put in bastion13 and start building 2017-11-28 20:41:28 +00:00
Pierre-Yves Chibon
8f6855eea6 Fedora-Badges renamed to fedora-badges 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2017-11-28 11:55:37 +01:00
Jan Kaluža
ec87815def Generate keytab for ODCS and use it in Koji profile. 2017-11-28 08:20:17 +00:00
Kevin Fenzi
a901cb2093 drop this since we just remove it later because we are using python3 2017-11-25 23:36:59 +00:00
Patrick Uiterwijk
afc9870755 Make fpaste.org use certgetter 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-25 00:07:42 +00:00
Patrick Uiterwijk
1225d45cfe Nuke these letsencrypt entries as well 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 23:36:41 +00:00
Patrick Uiterwijk
fbd3ed0d53 Proxies do not need to get certbot 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 23:31:34 +00:00
Patrick Uiterwijk
502b8ca509 Use standard wildcard cert for id.fp.o 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 22:56:58 +00:00
Patrick Uiterwijk
0f678956da Fix prod reverse proxies 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 22:53:44 +00:00
Patrick Uiterwijk
e1bb4e64a4 Do not includeSubDomains for id.fp.o STS 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 22:49:05 +00:00
Patrick Uiterwijk
cabbfe3015 Deploy split servers to prod 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 22:46:24 +00:00
Patrick Uiterwijk
bc95beb269 Split id.fp.o and username.id.fp.o for TLS/h2 reasons. Start with staging 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-24 22:20:25 +00:00
Patrick Uiterwijk
a52525b9e8 Stg and prod have the same role now 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-23 01:10:21 +00:00
Pierre-Yves Chibon
efe23a468b Invert the order of the role so fedmsg is there when generating the keytab file 2017-11-22 10:16:07 +01:00
Pierre-Yves Chibon
59875c96d8 Include the handlers in simple-koji-ci's playbook 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2017-11-22 10:12:34 +01:00
Kevin Fenzi
d8e2898cc7 clean up copr-dist-git hostname 2017-11-22 00:51:30 +00:00
Patrick Uiterwijk
3dff602f01 Deploy yumrepos first 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-21 22:56:21 +00:00
Patrick Uiterwijk
732824986c Deploy reg-server to prod 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-21 21:56:50 +00:00
Tim Flink
1fca20da63 moving yumrepos to pre_tasks for other taskotron playbooks 2017-11-21 21:12:42 +00:00
Pierre-Yves Chibon
675e8d93db Make the keytab belong to the fedmsg user 2017-11-21 19:40:04 +01:00
Pierre-Yves Chibon
4d29d49b2d Start working on the simple-koji-ci playbook 2017-11-21 16:11:01 +01:00
Adam Miller
084ae43c99 need python2-dockerfile-parse for container rebuild testing also 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-17 20:04:27 +00:00
Adam Miller
37f1f500ad add ansible to stage composer for container rebuild automation testing 
Signed-off-by: Adam Miller <admiller@redhat.com>
 2017-11-17 18:38:44 +00:00
Robert Mayr
deb74aae7c redirect CoC pages to the authoritative docs.fpo destination 2017-11-17 16:49:09 +00:00
Ralph Bean
5752ba7fcb Fix https doc urls for PDC. 
https://pagure.io/fedora-infrastructure/issue/6122
 2017-11-17 15:32:36 +00:00
Jeremy Cline
37f84244a3 Make sure fedmsg roles are applied on fmn upgrade 2017-11-16 20:35:19 +00:00
Randy Barlow
98b1b337e2 The Bodhi MASHING lock files have moved. 
Signed-off-by: Randy Barlow <randy@electronsweatshop.com>
 2017-11-16 15:38:30 +00:00
Miroslav Suchý
0e0b05a475 add F27 image to Fedora Cloud 2017-11-16 16:17:00 +01:00
Kevin Fenzi
b6aa8ac07e fix cert name 2017-11-16 04:23:07 +00:00
Kevin Fenzi
fe769cf62e use fedoracommunity.org cert 2017-11-16 02:00:19 +00:00
Kevin Fenzi
a306a334b2 we need to setup planet.fedoraproject.org site too on proxies 2017-11-16 01:01:28 +00:00
Kevin Fenzi
21bc9a865c redirect planet.fedoraproject.org to fedoraplanet.org 2017-11-16 00:41:09 +00:00
Jeremy Cline
6fe55bf3cb fmn-web is still EL7, use yum 2017-11-15 18:15:18 +00:00
Jeremy Cline
f56b1ecd83 Update FMN roles for 2.0.0 2017-11-15 18:12:11 +00:00
Jeremy Cline
dc08d45293 Remove the secret.yml object, there are no secrets in librariesio2fedmsg 2017-11-14 23:53:54 +00:00
Miroslav Suchý
6756c4147e add jkadlcik to copr* tenant of fedorainfracloud 
I am using clime_password here, because it is only about initial password.
 2017-11-14 15:28:19 +01:00
Kevin Fenzi
73a3cb1313 split out redirect on server so we can still have prerelease for modular server 2017-11-14 13:26:09 +00:00
Kevin Fenzi
d6838f49c7 handle redirects for release morning 2017-11-14 12:48:10 +00:00
Jeremy Cline
5ee07c719d Initial openshift app for librariesio2fedmsg 
Signed-off-by: Jeremy Cline <jeremy@jcline.org>
 2017-11-13 21:27:14 +00:00