WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-28 12:32:50 +08:00
Code Issues Packages Projects Releases Wiki Activity
21,737 Commits 9 Branches 0 Tags
b58dfc308684080456efc0ebec6deafcd032c8fa
Commit Graph

526 Commits

Author SHA1 Message Date
Kevin Fenzi
a9f5e8e78a update base rootpw role to not change some more releng machines that have had koji_builder added to them 2018-03-05 22:14:26 +00:00
Patrick Uiterwijk
840e608559 Add tags 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-22 22:03:33 +01:00
Patrick Uiterwijk
8de70bd9a0 Sorry, KCM, but please fix your bugs and we'll look again 2018-02-22 22:02:53 +01:00
Mikolaj Izdebski
120fc846c5 Check if service unit is present before trying to restart it 2018-02-22 09:35:29 +00:00
Kevin Fenzi
e621c76c8f Fix up the fedmsg handler. Ticket https://pagure.io/fedora-infrastructure/issue/6550 
Just change the conditional script to use systemctl try-restart and hopefully it will do what we want.
 2018-02-20 00:24:11 +00:00
Patrick Uiterwijk
d56a613b5d Remove stray characters 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-02-12 15:26:13 +01:00
Patrick Uiterwijk
f73b9f8934 Open firewall port to pagure proxy 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-02-12 15:21:34 +01:00
Patrick Uiterwijk
18f1320eb3 Support secondary IP 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-10 21:12:27 +00:00
Patrick Uiterwijk
da7f7f89eb Commit to our changes 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-08 15:39:49 +00:00
Patrick Uiterwijk
ce78bf8497 Nat table has different entries 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-08 15:38:58 +00:00
Patrick Uiterwijk
0bfb2a2d1f nat_rules go into the nat table 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-08 15:37:20 +00:00
Patrick Uiterwijk
40fbf2d575 Do not remove all whitespace 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-08 15:31:24 +00:00
Patrick Uiterwijk
d5ce7a014e Add nat-rules 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-02-08 15:30:13 +00:00
Kevin Fenzi
9d1075e993 really it was a missing quote 2018-02-01 00:52:10 +00:00
Kevin Fenzi
859c75ba8d everyone loves parens 2018-02-01 00:49:27 +00:00
Kevin Fenzi
d3b961e767 simplify and comment on root pw setting 2018-02-01 00:31:55 +00:00
Stephen Smoogen
c68cb601bf add the httpd logs from download-ib 2018-01-31 21:30:54 +00:00
Patrick Uiterwijk
c18ea6b658 Allow mmfrontend-checkin to connect to VPN 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-01-13 13:59:53 +00:00
Patrick Uiterwijk
c2493bc677 Allow access to repos 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-01-11 23:05:01 +00:00
Patrick Uiterwijk
f94a5f94cd Also allow dns out 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-01-11 23:02:44 +00:00
Patrick Uiterwijk
eb2fab3c6a Add iptables for mm-frontend-checkin01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2018-01-11 22:36:11 +00:00
Patrick Uiterwijk
54399eb157 If I say disabled, do not enable 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-22 02:19:30 +01:00
Patrick Uiterwijk
4d7f15164c Allow interfaces to be marked as explicitly disabled 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-22 02:15:04 +01:00
Stephen Smoogen
02938f63ad we need to update this in 2 places and run it on logs and people 2017-12-20 21:37:46 +00:00
Kevin Fenzi
9239431b43 drop duplicate when: 2017-12-16 21:51:19 +00:00
Patrick Uiterwijk
c9817d2b47 Add selinux to allow map for pamdatabase from unix_chkpwd 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-12 15:42:02 +00:00
Patrick Uiterwijk
42da45351c Fix koji service accounts with gssapi 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-04 14:41:01 +00:00
Patrick Uiterwijk
9527cce666 Allow builders to proxy101 and proxy110 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-02 10:51:53 +00:00
Stephen Smoogen
c53c0b2fc8 ok lets try and be smarterish 2017-12-01 22:37:06 +00:00
Stephen Smoogen
585b6ff82f why why why 2017-12-01 22:27:30 +00:00
Patrick Uiterwijk
894a0cc805 FedoraHosted is not anymore 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-12-01 12:54:34 +00:00
Kevin Fenzi
afef097a3d switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00
Kevin Fenzi
583f303946 we cannot use autoremove yet, it needs dnf 2 everywhere 2017-10-15 21:14:06 +00:00
Kevin Fenzi
ceff9bfca4 first stab at replacing include with include_playbook or includ_tasks 2017-10-15 19:46:08 +00:00
Kevin Fenzi
0425fd11b0 do not autoremove on base packages to remove 2017-10-15 18:26:17 +00:00
Kevin Fenzi
21c5d61f43 Revert "look, some whitespace changes" 
This reverts commit b1201baec0.
 2017-10-12 21:58:16 +00:00
Kevin Fenzi
57a74246fd have to ignore errors here because if the unit does not exist systemd will error out 2017-10-12 21:57:44 +00:00
Kevin Fenzi
b1201baec0 look, some whitespace changes 2017-10-12 21:54:21 +00:00
Kevin Fenzi
0067afe12f restart docker service on iptables reloads, and set docker to not restart containers on service restarts 2017-10-12 21:46:01 +00:00
Patrick Uiterwijk
936e8b261a yum accepted pkg=, package calls it name= 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-10-09 00:38:26 +02:00
Patrick Uiterwijk
adcbf72f03 Packageize this, packageize that, packageize the world 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-08 22:25:52 +00:00
Patrick Uiterwijk
394cf40242 == True is not ideal 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-08 20:57:08 +00:00
Kevin Fenzi
9108a0d6fe now that we have staging moved to its own subnet, we can just block that entire thing in prod iptables and no longer need to change everytime a stg machine appears or disappears. 2017-10-04 16:40:55 +00:00
Stephen Smoogen
e3c0199dad make another set of stg ip changes 2017-09-29 15:24:58 +00:00
Patrick Uiterwijk
08ab5dd6f0 Add missing .stg.phx2.fp.o to krb5.conf. If env will be removed after freeze 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-09-15 20:27:02 +00:00
Adam Williamson
cac1fb41ab openqa tap workers: allow masquerade on eth2 also, for ppc64 
Signed-off-by: Adam Williamson <awilliam@redhat.com>
 2017-09-09 11:14:55 -07:00
Patrick Uiterwijk
dae3290dd7 Add dns1 and dns2 for nm-controlled resolv.conf 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-21 21:01:08 +00:00
Patrick Uiterwijk
d12cedc5d3 Allow NM-controlled DNS if intended 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-21 20:58:55 +00:00
Kevin Fenzi
06033a3b27 move this to a dep instead of including it 2017-08-19 17:13:49 +00:00
Patrick Uiterwijk
aef0feda87 Turns out it was just missing a name= 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-08-16 17:43:00 +00:00