WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-02 14:30:45 +08:00
Code Issues Packages Projects Releases Wiki Activity
37,299 Commits 9 Branches 0 Tags
42e930e97f22ca75a3e7fbbf6658d8d5efe27f2e
Commit Graph

121 Commits

Author SHA1 Message Date
Aurélien Bompard
4bd4158a6b Only create the keytab secret if it does not exist yet 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:31:35 +02:00
Aurélien Bompard
1b35c7cb27 Also adjust the openshift/keytab role 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:23:41 +02:00
Aurélien Bompard
90715412f2 Adjust the secret-file role to work with OCP4 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:17:38 +02:00
Mark O Brien
5d906f9b8c openshift: undo uneccesary changes 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 18:01:22 +00:00
Mark O Brien
2d9b23d066 openshift: change shell to command 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 17:20:57 +00:00
Mark O Brien
cebd4ce05f openshift: check return code instead of stderr 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:51:40 +00:00
Mark O Brien
baf4fb0812 openshift: remove temp debug command 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:49:34 +00:00
Mark O Brien
dc2c941c49 openshift: fix yaml indentation 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:42:26 +00:00
Mark O Brien
45fb1e6af1 openshift: add temp debug statement 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:41:11 +00:00
David Kirwan
cdc4619675 Minor typo, role/openshift/sysadmin-openshift task 
Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-26 09:40:10 +00:00
David Kirwan
bb049d181b fcos-pipeline-migration: ensure templates placed in directory 
unique to the app.

Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-09 11:56:03 +00:00
David Kirwan
c3e206ab1e fcos-pipeline-migration: install oc-client.rpm 
Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-09 10:35:57 +00:00
Francois Andrieu
911bb8ac4f openshift: allow appowner to start a rollout 2021-04-28 21:32:05 +00:00
Francois Andrieu
492fe4f671 openshift: update egressPolicy for iad2 2021-04-03 18:44:31 +00:00
Adam Saleh
7bbb860d52 Add more privileges to appowners on staging. 2021-03-15 16:13:37 +01:00
Aurélien Bompard
593d7fe7f0 Add support for installing OS app that don't match with the ansible app 
And use it for the CentOS instance of Noggin.

Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-11-30 14:06:11 +01:00
Aurélien Bompard
b16660ab24 Setup Elections for FASJSON access 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-09-16 10:37:04 +02:00
Aurélien Bompard
f02d19dcb9 IPA client for openshift: deploy a krb5.conf file 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-09-11 12:17:00 +02:00
Aurélien Bompard
45a8658c04 Noggin: small fixups 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 15:11:56 +02:00
Aurélien Bompard
cdaaf4326f Fix indentation 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 11:09:43 +02:00
Aurélien Bompard
b7e08d6d48 Mutualize the ipa client config in openshift 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 11:07:59 +02:00
Clement Verna
e1538d32e4 openshift object-delete: add .yml to the object file to be deleted 
Signed-off-by: Clement Verna <cverna@tutanota.com>
 2020-04-24 21:34:26 +02:00
Michael Scherer
dfdd9ab4d4 Fix typo in the name 
Mainly to increase my edit count
 2020-04-24 21:34:25 +02:00
Luca BRUNO
9c64952e3b openshift/rbac: allow project owners to cancel-builds 
This tweaks project-owners RBAC to allow updating a build, in order
to make `cancel-build` work.

Ref: https://pagure.io/fedora-infrastructure/issue/8005
Signed-off-by: Luca BRUNO <luca.bruno@coreos.com>
 2020-04-24 21:34:11 +02:00
Dusty Mabe
e4cfcb55e8 openshift: match on objecttype for project delete 
This was a typo in 0acb753.
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
13dd31da04 openshift: handle deleting projects 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Patrick Uiterwijk
cb987b9af0 Require true value 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:57:19 +02:00
Patrick Uiterwijk
ce79bda4d9 Allow re-encrypt 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:56:33 +02:00
Patrick Uiterwijk
43af7f9206 Fix up egresspolicy source vs dest 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-20 09:44:10 +02:00
Patrick Uiterwijk
6bf7c579c2 make egresspolicy customization less simple 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:47:23 +02:00
Patrick Uiterwijk
c07c9415a0 Allow custom egress policies for special cases 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:43:39 +02:00
Patrick Uiterwijk
66cda5eb15 Make it possible to disallow any internal communications 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-29 20:33:11 +02:00
Patrick Uiterwijk
c8b31c025b allow openshift routes to specify termination 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 18:05:05 +02:00
Patrick Uiterwijk
21b3c9a2b3 Add secret-tls 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 17:42:21 +02:00
Patrick Uiterwijk
003519afdd Allow specifying a route path 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 21:20:18 +02:00
Patrick Uiterwijk
2e099edfa4 ipsilon: add username route 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 14:19:32 +02:00
Patrick Uiterwijk
bbaa0f409b openshift/project: fix if condition 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:54:16 +02:00
Patrick Uiterwijk
446d00d549 Add tag to egresspolicy role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:42:49 +02:00
Patrick Uiterwijk
72ac044a5e openshift/project: simplify egresspolicy - different env db won't allow access anyway 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:41:55 +02:00
Patrick Uiterwijk
8de1035266 Make the var into a default 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:35:39 +02:00
Patrick Uiterwijk
eac122c543 openshift/project: define default egress policy to prevent fas db access 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:32:55 +02:00
Patrick Uiterwijk
e4aed9c9f2 Delete object file from disk 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:07:38 +02:00
Patrick Uiterwijk
dc591da083 Add openshift/object-delete role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:05:46 +02:00
Mikolaj Izdebski
1e46efdc75 Install npm and celery on Transtats and restore route annotations 
Credits go to suanand for providing the patch.
 2019-02-21 15:40:38 +01:00
Patrick Uiterwijk
878988d92d Revert "Disable auto-update for appowners role" 
This reverts commit 10c88b0933.
 2018-12-08 20:02:53 +01:00
Patrick Uiterwijk
10c88b0933 Disable auto-update for appowners role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-12-04 07:55:27 +01:00
Kevin Fenzi
6c24a3e84b add rollbacks to app owners in openshift 2018-11-15 22:13:13 +00:00
Patrick Uiterwijk
864f2e1372 Fix up the appowners binding to use the namespace-local one 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-09-13 10:39:56 +02:00
Mikolaj Izdebski
bbdceb24c6 Allow appowners to run builds (create buildconfigs/instantiate) 2018-08-23 20:27:59 +00:00
Mikolaj Izdebski
c0b53f5bd8 Reorganize os appowners role yaml 2018-08-23 20:25:29 +00:00