WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-02 23:51:01 +08:00
Code Issues Packages Projects Releases Wiki Activity
23,061 Commits 9 Branches 0 Tags
2bc9ab059f4baab034dafd062dba9dfd50ec2c4e
Commit Graph

231 Commits

Author SHA1 Message Date
Kevin Fenzi
a8714caab3 first cut at changing all the old |changed to is changed per ansible deprecations 2018-05-07 23:51:48 +00:00
Kevin Fenzi
d55018a9d3 clean up more jenkins leftovers 2018-05-02 17:26:25 +00:00
Kevin Fenzi
eb4ec73246 one more 2018-04-16 17:07:50 +00:00
Kevin Fenzi
d0736f1658 another one 2018-04-16 17:03:57 +00:00
Kevin Fenzi
ee4bede73f we no longer seem to get this set on the aarch64 instances 2018-04-16 16:58:35 +00:00
Mikolaj Izdebski
2b6ac2ad14 Fix a typo in iptables-restore command 2018-04-09 15:16:59 +00:00
Kevin Fenzi
9fe41eca70 fix deprecated |success to is success 2018-04-04 19:24:21 +00:00
Kevin Fenzi
a9f5e8e78a update base rootpw role to not change some more releng machines that have had koji_builder added to them 2018-03-05 22:14:26 +00:00
Patrick Uiterwijk
840e608559 Add tags 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-22 22:03:33 +01:00
Patrick Uiterwijk
8de70bd9a0 Sorry, KCM, but please fix your bugs and we'll look again 2018-02-22 22:02:53 +01:00
Kevin Fenzi
9d1075e993 really it was a missing quote 2018-02-01 00:52:10 +00:00
Kevin Fenzi
859c75ba8d everyone loves parens 2018-02-01 00:49:27 +00:00
Kevin Fenzi
d3b961e767 simplify and comment on root pw setting 2018-02-01 00:31:55 +00:00
Kevin Fenzi
9239431b43 drop duplicate when: 2017-12-16 21:51:19 +00:00
Patrick Uiterwijk
c9817d2b47 Add selinux to allow map for pamdatabase from unix_chkpwd 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-12 15:42:02 +00:00
Kevin Fenzi
afef097a3d switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00
Kevin Fenzi
583f303946 we cannot use autoremove yet, it needs dnf 2 everywhere 2017-10-15 21:14:06 +00:00
Kevin Fenzi
ceff9bfca4 first stab at replacing include with include_playbook or includ_tasks 2017-10-15 19:46:08 +00:00
Kevin Fenzi
0425fd11b0 do not autoremove on base packages to remove 2017-10-15 18:26:17 +00:00
Kevin Fenzi
0067afe12f restart docker service on iptables reloads, and set docker to not restart containers on service restarts 2017-10-12 21:46:01 +00:00
Patrick Uiterwijk
936e8b261a yum accepted pkg=, package calls it name= 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-10-09 00:38:26 +02:00
Patrick Uiterwijk
adcbf72f03 Packageize this, packageize that, packageize the world 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-08 22:25:52 +00:00
Patrick Uiterwijk
394cf40242 == True is not ideal 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-08 20:57:08 +00:00
Patrick Uiterwijk
d12cedc5d3 Allow NM-controlled DNS if intended 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-21 20:58:55 +00:00
Kevin Fenzi
06033a3b27 move this to a dep instead of including it 2017-08-19 17:13:49 +00:00
Patrick Uiterwijk
aef0feda87 Turns out it was just missing a name= 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-16 17:43:00 +00:00
Patrick Uiterwijk
e2b829c900 Turns out name: is incompatible with include_role 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-16 17:41:49 +00:00
Patrick Uiterwijk
e43e0e06b1 Move SSH setup to its own role 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-16 17:39:23 +00:00
Patrick Uiterwijk
dfc9e56b96 Revert "bypass sshd restart for nowg" 
This reverts commit ecb03a1093.
 2017-08-15 16:59:30 +00:00
Patrick Uiterwijk
ecb03a1093 bypass sshd restart for nowg 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-15 16:32:16 +00:00
Patrick Uiterwijk
11a36497c8 Lets just call out to date... 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-15 16:24:37 +00:00
Patrick Uiterwijk
800f9145d3 Add sshd_cert tag 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-15 15:19:53 +00:00
Patrick Uiterwijk
fe5f1c3152 Or no quoting 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-04 16:49:13 +00:00
Patrick Uiterwijk
4eef39463f Quote this too. Quote all the things 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-04 16:47:29 +00:00
Patrick Uiterwijk
fa0d94d697 Fix EPARSE 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-04 16:46:12 +00:00
Patrick Uiterwijk
cfab031a8a Deploy sender_access file 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-08-04 18:20:17 +02:00
Patrick Uiterwijk
bb707cc070 when != hen 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-07-14 02:55:02 +00:00
Patrick Uiterwijk
1bf3eacc7c Teach ansible about the enc900 interface on s390 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-07-14 02:53:27 +00:00
Kevin Fenzi
a60055fbaa oops, == here not is 2017-05-15 17:37:56 +00:00
Kevin Fenzi
2df1d71510 clean up iptables in base to not apply to cloud compute/master, osbs or os 2017-05-15 17:33:51 +00:00
Kevin Fenzi
9f71fa2295 comment in rsyslog-audit module in base 2017-05-04 14:20:37 +00:00
Kevin Fenzi
fcf570d42e initial selinux module work for rsyslog to read audit 2017-05-04 14:02:02 +00:00
Kevin Fenzi
db328d7ac2 Revert "ansible tells me not to use {s in when, lets see if this works" 
This reverts commit 9b77ca729b.
 2017-04-20 17:03:09 +00:00
Kevin Fenzi
9b77ca729b ansible tells me not to use {s in when, lets see if this works 2017-04-20 16:57:07 +00:00
Kevin Fenzi
8a6e51a9a6 change state=running to start=started as the old one is going away in ansible 2.7 2017-04-13 01:37:21 +00:00
Patrick Uiterwijk
78a6c13010 Production key is generated 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:32:41 +00:00
Patrick Uiterwijk
09cd075108 Revert "Make explicitly invalid" 
This reverts commit b91d69d1ed.
 2017-04-09 23:24:08 +00:00
Patrick Uiterwijk
b91d69d1ed Make explicitly invalid 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:22:25 +00:00
Patrick Uiterwijk
d01c436580 SSH does not know years 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:18:54 +00:00
Patrick Uiterwijk
dc1664c8f3 Combine properly 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-04-09 23:17:58 +00:00