WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-01 14:02:12 +08:00
Code Issues Packages Projects Releases Wiki Activity
43,401 Commits 9 Branches 0 Tags
7aa7553b84af5dc8efa78e9d8a4e50dde369052d
Commit Graph

137 Commits

Author SHA1 Message Date
Kevin Fenzi
c764d1ea86 autosign: adjust playbooks for prod 
We need to setup things in prod slightly differently, using keyctl.
Copy in the service and scripts.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2024-01-30 09:33:45 -08:00
Patrick Uiterwijk
f30c881bf5 Use tmpfiles for the ask-password ACL 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2020-06-10 09:58:24 +02:00
Patrick Uiterwijk
5ba163d29a Point robosig to iad2 vault 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2020-06-09 22:30:58 +02:00
Kevin Fenzi
a76e9e9e5b autosign: we are using keyctl for now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:22 +02:00
Aurélien Bompard
46914eae7b Update Robosignatory 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-04-24 21:34:11 +02:00
Kevin Fenzi
35c0215d8e robosignatory: add f31/f32 infra tags and f31-gnome side tag to be signed. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:09 +02:00
Pierre-Yves Chibon
18a3d07bbc robosignatory: fix the key to be used in staging 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2020-04-24 21:34:09 +02:00
Pierre-Yves Chibon
3e6a845992 robosignatory: sign f30 builds in staging 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2020-04-24 21:34:09 +02:00
Kevin Fenzi
ef97abfc0c robosignatory / silverblue: also sign aarch64 and ppc64le f31 testing and updates. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:09 +02:00
Kevin Fenzi
e81a812f5a robosign: also remove duplicate f31-signing-pending 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:09 +02:00
Kevin Fenzi
1cf53281b7 robosign: remove duplicate f31-modular-signing-pending 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:09 +02:00
Peter Robinson
f7599bda5b robosignatory: IoT: Update rawhide and branched keys for IoT ostree signing 2020-04-24 21:34:09 +02:00
Mohan Boddu
be83800071 F31 Bodhi Activation 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2020-04-24 21:34:09 +02:00
Kevin Fenzi
12ed5c48d5 robosignatory: Also add aarch64 and ppc64le silverblue for f31 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
a1f5c2f597 robosignatory: add silverblue trees for f31 and rawhide to f32 key. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
e351cb8f6e robosignatory / staging: tweak fcos to use testkey there too. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Dusty Mabe
f1405793b5 robosignatory: add f32 coreos signing pending config 2020-04-24 21:34:08 +02:00
Dusty Mabe
99a1cdd042 robosignatory: add autosigning/moving for coreos tags in stage 2020-04-24 21:34:08 +02:00
Mohan Boddu
36ca7d6e17 Adding f32-python side tag autosigning 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
6823466aa4 autosign: remove eol releases and reorder 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Mohan Boddu
ee9b1a9bee Remove robosig config on f31-updates-candidate 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2020-04-24 21:34:08 +02:00
Mohan Boddu
080ccf5b16 Robosig changes for f31 branching from rawhide 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2020-04-24 21:34:08 +02:00
Mohan Boddu
461080a3b6 Enabling epel8 in bodhi 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2020-04-24 21:34:07 +02:00
Kevin Fenzi
f9546b5258 robosign: out with f31-boost,, in with f31-ghc 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:07 +02:00
Pierre-Yves Chibon
93cf4baf83 robosignatory: make it sign and move builds from f31-updates-candidate to f31-updates-testing-pending 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2019-07-25 14:50:35 +02:00
Mohan Boddu
e317bd0417 robosign: Adding f31-rebuild tag 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2019-07-23 17:56:48 +00:00
Mohan Boddu
7e732a2381 Adding robosig for epel8-infra 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2019-07-19 20:22:36 +00:00
Mohan Boddu
87d0c3d875 Adding robosig config for epel8 and epel8-playground 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2019-07-19 20:18:00 +00:00
Pierre-Yves Chibon
f574851d77 robosignatory: Drop the second pass of robosign on f31 on staging 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2019-07-17 15:09:55 +02:00
Pierre-Yves Chibon
dc8d987a63 robosignatory: Adjust the tag workflow in staging 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2019-07-17 10:22:08 +02:00
Pierre-Yves Chibon
9d247cc124 robosignatory: Fix the tag robosignatory should pull from 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2019-07-16 13:43:47 +02:00
Pierre-Yves Chibon
8b9ec3f46a robosignatory: Document the flow and add the second pass 
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
 2019-07-16 11:20:49 +02:00
Clement Verna
87be5ba24a robosignatory: update the from tag for f31 in staging 
Signed-off-by: Clement Verna <cverna@tutanota.com>
 2019-07-15 20:55:17 +02:00
Patrick Uiterwijk
7608ce4d49 Fix up robosig koji conf in stg 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2019-07-03 13:39:02 +00:00
Patrick Uiterwijk
b14d0d313b Create epel8 and f31 (the latter assuming people will set up the bodhi side of things) 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2019-07-03 13:19:50 +00:00
Patrick Uiterwijk
e0313ac25c Fix robosignatory testkey keyid 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2019-07-03 13:05:16 +00:00
Patrick Uiterwijk
22a4ecd958 For staging robosig, allow test binding 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2019-07-03 12:59:29 +00:00
Patrick Uiterwijk
a4d1aadb95 Add staging robosig config 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2019-07-03 12:43:45 +00:00
Kevin Fenzi
1a0f7897f4 robosignatory: setup f31-boost tag to get signed. See ticket 7962 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-07-02 21:05:58 +00:00
Peter Robinson
7fe4a1b5b3 robosignatory: add IoT rawhide branch and keys 
Signed-off-by: Peter Robinson <pbrobinson@fedoraproject.org>
 2019-07-02 14:30:20 +00:00
Kevin Fenzi
65862ec1b1 robosign: add f31-go side tag and remove f31-perl tag 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-06-17 17:38:37 +00:00
Mohan Boddu
0b50324342 Adding f29/f31-coreos-signing-pending tags 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2019-06-14 19:42:43 +00:00
Kevin Fenzi
0a37f7a42d robosign: add f31-perl tag to autosign (ticket #7852) 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-29 22:38:15 +00:00
Dusty Mabe
b476fd9748 robosignatory: add aarch64 and ppc64le signing for silverblue 2019-05-07 14:23:21 -04:00
Mohan Boddu
c9dcffc09b Autosigning setup for coreos-pool tag 
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
 2019-05-01 18:21:59 +00:00
Kevin Fenzi
5f98bf1e03 robosignatory: Add f31-python tag to be signed. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-01 17:19:00 +00:00
Mohan Boddu
1576517956 Fedora 30 bodhi activation, koji tags signing changes 
Signed-off-by: Mohan Boddu <mboddu@redhat.com>
 2019-03-06 18:37:26 +00:00
Kevin Fenzi
f8a37320ac robosignatory: add f30/f31-kde to autosign. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-03-02 04:59:18 +00:00
Kevin Fenzi
5a4b217db7 robosignatory: Add f30-gnome to autosigning. Ticket 7589 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-02-23 20:12:03 +00:00
Mohan Boddu
f6b1fc268f Fix rawhide/f31 modular signing tag 
Signed-off-by: Mohan Boddu <mboddu@redhat.com>
 2019-02-22 15:37:08 +00:00