fedora-infra_ansible

mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-12 19:06:39 +08:00

Author	SHA1	Message	Date
Aurélien Bompard	b2df514b95	Ipsilon: rename the service keytab file for coherence Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-16 15:28:21 +02:00
Aurélien Bompard	ea064cbdc6	Ipsilon: don't use ldaps Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-16 14:57:16 +02:00
Aurélien Bompard	3ba34383b3	Ipsilon: configure the LDAP auth plugin Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-16 14:41:33 +02:00
Aurélien Bompard	07f4977aac	Ipsilon: remove FAS auth Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-16 13:20:45 +02:00
Aurélien Bompard	70f71744fb	Ipsilon: prepare config changes for staging Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-11 15:22:15 +02:00
Aurélien Bompard	31b058a884	Ipsilon: set the keytab paths in krb5.conf Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-11 12:17:00 +02:00
Aurélien Bompard	5a01ac3566	Ipsilon: deploy the Fedora-specific files from a git repo Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2020-09-11 12:17:00 +02:00
Pierre-Yves Chibon	6dc4c7533c	ipsilon: Set the /ui alias to the Fedora theme folder Turns out commenting out this alias did not help, so instead I'm pointing it to the Fedora theme folder which should thus make /ui/res valid. Fingers crossed! Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>	2020-08-12 11:29:30 +02:00
Pierre-Yves Chibon	7f3379d854	ipsilon: Comment out the alias for /ui If I'm reading ipsilon's code correctly this should now be handled by ipsilon itself. If I'm mistaken, I'll revert and keep looking for the proper fix Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>	2020-08-12 11:25:40 +02:00
Pierre-Yves Chibon	1eb1b731db	ipsilon: set the full path to the theme directory Currently we let ipsilon's magic load the tempate and asset from that variable and it looks like it's somehow not doing what we want with the asset since we can't access the fedora-authn-logo and the login.css of the Fedora theme. So let's see if using the full path to the directory helps or not. Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>	2020-08-12 09:44:55 +02:00
Neal Gompa	aa6718c124	{roles,roles/openshift-apps}/ipsilon: Use Fedora theme maintained in Ipsilon package Signed-off-by: Neal Gompa <ngompa13@gmail.com>	2020-08-11 07:37:14 -04:00
Kevin Fenzi	1527cab0bb	add aws-fedora-ci role. ticket 8403 Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:22 +02:00
Rick Elrod	ea96618bd4	Get rid of modernpaste everywhere, redirect it to paste.centos.org everywhere Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:18 +02:00
Kevin Fenzi	4f19c75723	ipsilon: add group for minimization folks (ticket #8373 ) Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:17 +02:00
Rick Elrod	ccf17cc64b	ipsilon/api: a python 3 here, a python 3 there, a python 3 everywhere Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Kevin Fenzi	3b7dd30ae0	ipsilon: fix typo Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:15 +02:00
Rick Elrod	7111ea84c6	try ONLY having the old logic here Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Rick Elrod	5cee4a5b42	try hax? Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Rick Elrod	af078436aa	openid/server.py Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Rick Elrod	e2b22ecc20	ipsilon: I guess I decided that my blood pressure wasn't high enough today and I needed to fiddle with py2->py3 code Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Rick Elrod	e802c6f39b	ipsilon: try referencing the right mod_wsgi here Signed-off-by: Rick Elrod <relrod@redhat.com>	2020-04-24 21:34:15 +02:00
Kevin Fenzi	13cf92b760	ipsilon: no python2, use python3 here. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:15 +02:00
Kevin Fenzi	f6c6852d5c	ipsilon: add aws-centos group for SAML2. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:14 +02:00
Kevin Fenzi	e50fa5f3f2	freshmaker: remove everything Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:14 +02:00
Mikolaj Izdebski	91bcaf4b43	ipsilon: Update Koschei URL in openid trusted roots	2020-04-24 21:34:11 +02:00
Kevin Fenzi	e2de2bb15d	ipsilon: add aws-copr group to ipsilon for aws access. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:09 +02:00
Patrick Uiterwijk	7b02e3c689	Add kerneltest oidc in prod Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-20 19:41:23 +02:00
Patrick Uiterwijk	9766327633	Add kerneltest oidc extension Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-20 19:35:30 +02:00
Patrick Uiterwijk	6bc09673fc	Add new kerneltest OIDC scope Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-20 19:19:22 +02:00
Patrick Uiterwijk	df159fcd0e	Generate env-specific saml2 metadata Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-15 11:14:58 +02:00
Patrick Uiterwijk	b4ff9a9460	Ipsilon: prepare saml2 metadata before start Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-10 19:55:58 +02:00
Patrick Uiterwijk	5c33c6d6ea	ipsilon: update keytab path for openshift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 17:10:34 +02:00
Patrick Uiterwijk	433270afac	ipsilon: move over definitely to openshift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 16:02:46 +02:00
Patrick Uiterwijk	c2731b0ca0	ipsilon: move saml2 metadata to tempdir Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 15:58:28 +02:00
Patrick Uiterwijk	c62cf8bf1d	ipsilon: move username.id mapping to ipsilon pods Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 14:38:10 +02:00
Patrick Uiterwijk	fa7c9891fa	In openshift, always use oidc.key Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 14:07:52 +02:00
Patrick Uiterwijk	2e9907e663	MAke openid-config available at canonical location Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 14:06:49 +02:00
Patrick Uiterwijk	6fd848dbeb	Persona is dead. Nuke it Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 13:45:28 +02:00
Patrick Uiterwijk	eefdf5fd9d	ipsilon: set up wsgi config Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2019-05-09 11:07:09 +00:00
Patrick Uiterwijk	f1d09db3a9	ipsilon: add mod_auth_gssapi Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2019-05-09 10:56:58 +00:00
Patrick Uiterwijk	420c1eaf00	ipsilon: do not use py3 yet Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2019-05-09 10:55:07 +00:00
Patrick Uiterwijk	db27331a16	ipsilon: Inject other secrets Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 12:49:02 +02:00
Patrick Uiterwijk	cadfe7c98a	ipsilon: attempt ansible lookup Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 12:45:42 +02:00
Patrick Uiterwijk	c9b4cba417	ipsilon: see if absolute paths work Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 12:43:18 +02:00
Patrick Uiterwijk	725d4eec01	Fipsilon: Fix indentation and stuff and top-define Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 12:40:30 +02:00
Patrick Uiterwijk	b6c34ca9ab	Ipsilon: add initial configmap Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-09 12:30:28 +02:00
Patrick Uiterwijk	1bb89a3799	Add aws-docs Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-04-05 22:21:15 +02:00
Patrick Uiterwijk	7e77debb8f	Register aws-infra with Ipsilon Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-04-04 23:25:35 +02:00
Patrick Uiterwijk	000cad6a8d	Add allowed attributes to prod bugzilla Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2019-02-27 18:44:29 +00:00
Clement Verna	8f8daf1847	IPSILON: enable fpdc oidc plugin in production and staging Signed-off-by: Clement Verna <cverna@tutanota.com>	2018-11-26 09:37:29 +01:00

1 2 3 4 5

241 Commits