Using `git grep el6` and `git grep el7` and variants like EL-7 or
el-7, I found various entries and files which were no longer needed
with the current ansible. I updated text or tests to later versions of
RHEL as needed.
found entries for the fedora ami's for the original cloud and removed
those entries also.
Signed-off-by: Stephen Smoogen <ssmoogen@redhat.com>
CentOS Stream 8 is now EOL, so it is no longer necessary to sync and
grobisplit that content for EPEL 8 Next to build against.
https://pagure.io/releng/issue/12147
We occasionally run into problems with certs that aren't renewed in time
or are close to expiring. Just running the proxies playbook will renew
them, but in freezes or the like sometimes there's a long time period
where we don't run that playbook.
So, lets just run weekly with the right tag. This should renew any cert
thats close to expiring.
The job shouldn't normally output anything, but if there's errors it
will email them to admin@
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
The ansible-core-2.14.x in rhel9 (using python 3.9 now) can't handle
running uri module on fedora (python-3.12) without erroring.
There's a backported fix in 2.15, but until thats in rhel9, this will
keep hitting us.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
Fix the kickstart/repo for reinstall.
Add rhel-system-roles for linux-system-roles/networking
Drop some python2 items that aren't available in rhel9 anymore.
Collapse the batcave02 stuff into batcave01
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
We moved to timescaledb over on db-datanommer02 a while back, so this vm
it just sitting there doing nothing. ;)
So, lets drop it off and save some resources.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This should allow folks in the sysadmin group to read (but not write)
the rbac-playbook config. This should allow folks to more easily tell
who is granted rights to run some playbook.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
Removes the batcave script, retrieve-security-question.py
which is no longer needed with Noggin / FreeIPA-FAS
Signed-off-by: Ryan Lerch <rlerch@redhat.com>
This will allow the iad2 hosts to connect to the phx2 vpn and use
a different ip from their phx2 counterparts. This way we can change
haproxy/httpd to point to the new iad2 service and migrate it, but
still have the rest of services point to phx2.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
Install the certificates needed to connect to fedora-messaging
Install a configuration file applications can use to send messages
to the message bus using fedora-messaging.
Create the batcave user in rabbitmq
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
