WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-13 15:10:13 +08:00
Code Issues Packages Projects Releases Wiki Activity
28,350 Commits 9 Branches 0 Tags
492a724eecfa557dcd5665f024b2b07eefe00917
Commit Graph

97 Commits

Author SHA1 Message Date
Dusty Mabe
e4cfcb55e8 openshift: match on objecttype for project delete 
This was a typo in 0acb753.
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
13dd31da04 openshift: handle deleting projects 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Patrick Uiterwijk
cb987b9af0 Require true value 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:57:19 +02:00
Patrick Uiterwijk
ce79bda4d9 Allow re-encrypt 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:56:33 +02:00
Patrick Uiterwijk
43af7f9206 Fix up egresspolicy source vs dest 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-20 09:44:10 +02:00
Patrick Uiterwijk
6bf7c579c2 make egresspolicy customization less simple 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:47:23 +02:00
Patrick Uiterwijk
c07c9415a0 Allow custom egress policies for special cases 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:43:39 +02:00
Patrick Uiterwijk
66cda5eb15 Make it possible to disallow any internal communications 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-29 20:33:11 +02:00
Patrick Uiterwijk
c8b31c025b allow openshift routes to specify termination 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 18:05:05 +02:00
Patrick Uiterwijk
21b3c9a2b3 Add secret-tls 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 17:42:21 +02:00
Patrick Uiterwijk
003519afdd Allow specifying a route path 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 21:20:18 +02:00
Patrick Uiterwijk
2e099edfa4 ipsilon: add username route 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 14:19:32 +02:00
Patrick Uiterwijk
bbaa0f409b openshift/project: fix if condition 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:54:16 +02:00
Patrick Uiterwijk
446d00d549 Add tag to egresspolicy role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:42:49 +02:00
Patrick Uiterwijk
72ac044a5e openshift/project: simplify egresspolicy - different env db won't allow access anyway 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:41:55 +02:00
Patrick Uiterwijk
8de1035266 Make the var into a default 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:35:39 +02:00
Patrick Uiterwijk
eac122c543 openshift/project: define default egress policy to prevent fas db access 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:32:55 +02:00
Patrick Uiterwijk
e4aed9c9f2 Delete object file from disk 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:07:38 +02:00
Patrick Uiterwijk
dc591da083 Add openshift/object-delete role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:05:46 +02:00
Mikolaj Izdebski
1e46efdc75 Install npm and celery on Transtats and restore route annotations 
Credits go to suanand for providing the patch.
 2019-02-21 15:40:38 +01:00
Patrick Uiterwijk
878988d92d Revert "Disable auto-update for appowners role" 
This reverts commit 10c88b0933.
 2018-12-08 20:02:53 +01:00
Patrick Uiterwijk
10c88b0933 Disable auto-update for appowners role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-12-04 07:55:27 +01:00
Kevin Fenzi
6c24a3e84b add rollbacks to app owners in openshift 2018-11-15 22:13:13 +00:00
Patrick Uiterwijk
864f2e1372 Fix up the appowners binding to use the namespace-local one 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-09-13 10:39:56 +02:00
Mikolaj Izdebski
bbdceb24c6 Allow appowners to run builds (create buildconfigs/instantiate) 2018-08-23 20:27:59 +00:00
Mikolaj Izdebski
c0b53f5bd8 Reorganize os appowners role yaml 2018-08-23 20:25:29 +00:00
Kevin Fenzi
53b40839ff update apiGroups 2018-08-23 19:54:54 +00:00
Patrick Uiterwijk
8f7596d509 Deploymentconfigs/logs has been moved to the openshift.io group 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-07-04 14:04:17 +02:00
Dan Callaghan
436ed9eabf waiverdb: trigger import-image instead of start-build 
Nowadays we have an imagestream, which pulls pre-built waiverdb images
from quay.io, and a buildconfig, which then layers some
Fedora-infra-specific stuff on top.

When we have a new version to deploy, the imagestream should pick up the
new image from quay.io, which triggers a build of the buildconfig, which
triggers a deploy of the deploymentconfig. So we shouldn't need to
explicitly fire off start-build anymore.

We *shouldn't* need to explicitly fire off import-image either, because
it is set to "scheduled" pull policy. But I am not sure what the
schedule is. Right now it says it last polled 5 days ago... that may
itself be a bug. Regardless, this gives us a nice way to make it pull
the latest image.

This patch adds a new, very simple role "import-image" to fire off the
oc import-image command, following the precedent of the existing
"start-build" role.
 2018-06-28 14:41:17 +10:00
Patrick Uiterwijk
328a30b31f The notfound is on stderr 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-31 03:42:41 +02:00
Patrick Uiterwijk
5b626b20a0 Fix openshift/secret-file role 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-31 03:40:33 +02:00
Patrick Uiterwijk
9ea8cd8b2b Attempt delete/add on change 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-15 21:37:27 +02:00
Patrick Uiterwijk
7deedf5d7e Actually fail the secret-file role if another one already existed for now 
This role needs to be fixed to actually apply changes, so whomever sees this
gets the fun of fixing this.

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-15 21:34:07 +02:00
Patrick Uiterwijk
51769d8533 Change when 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-03 13:59:10 +02:00
Patrick Uiterwijk
09a12cf4b5 When we try to apply project.yml, the namespace does not yet exist 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-05-03 13:58:06 +02:00
Ralph Bean
a0314660d8 Typofix. 2018-04-20 16:17:03 +00:00
Patrick Uiterwijk
312c9f8cf6 Only do secret apply if changed 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 17:37:08 +02:00
Patrick Uiterwijk
633c64b7d2 Only oc apply if the file changed 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 17:35:26 +02:00
Patrick Uiterwijk
1a0920ceee Just don't add whitespace. You don't remove waht you don't add 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 13:48:40 +00:00
Patrick Uiterwijk
671f033999 Again, this is an imagestream, not a route 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 13:48:02 +00:00
Patrick Uiterwijk
cb69ca6321 Try removing whitespace 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 13:47:03 +00:00
Patrick Uiterwijk
d32462f4c3 Fix copy-paste errors 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-19 15:38:43 +02:00
Patrick Uiterwijk
69303f6ee6 Remove copy-paste error 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 20:22:26 +02:00
Patrick Uiterwijk
ce449ad60c Move bodhi to opinionated imagestream role 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 20:21:47 +02:00
Patrick Uiterwijk
5dbc18df8d Make opinionated openshift/route and make bodhi use it 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 20:12:15 +02:00
Patrick Uiterwijk
8421005db1 Fix dest= missing 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 01:04:01 +00:00
Patrick Uiterwijk
ff117118a5 Use consistent, permanent filenames 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 01:02:21 +00:00
Patrick Uiterwijk
36b7948be8 Rather than run_once, use first os-master entry 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-17 02:38:31 +02:00
Patrick Uiterwijk
e708100dd0 Don't delete the keytab for now 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-16 23:39:25 +00:00
Patrick Uiterwijk
7c95ba3c45 Read the docs, Patrick 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-04-16 23:32:24 +00:00