fedora-infra_ansible

mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-25 19:11:24 +08:00

Author	SHA1	Message	Date
Patrick Uiterwijk	89fc603a89	Allow GET/HEAD requesting by everything Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-02-23 18:02:32 +01:00
Till Maas	8f7acb0dde	Increase HSTS max age to one year The HSTS preload list requires this now: https://hstspreload.org/	2018-02-07 12:42:36 +01:00
Patrick Uiterwijk	ad58850372	Add CentOS registry info Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-02-02 10:08:14 +00:00
Patrick Uiterwijk	e342afe8d3	Deploy the registry multi-tenant in staging Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2018-01-24 22:29:37 +01:00
Patrick Uiterwijk	445d4f0919	Move Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2018-01-24 22:05:15 +01:00
Patrick Uiterwijk	1a0590e5fd	Add multitenancy to staging registry Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2018-01-24 21:53:27 +01:00
Patrick Uiterwijk	8c05e1685b	Extend proxytimeout for admin.fp.o for mirror checkins Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-01-13 10:45:17 +00:00
Patrick Uiterwijk	749cdd2b3f	Cleanup uunused template Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2018-01-13 10:45:17 +00:00
Patrick Uiterwijk	299dae3384	Redirect registry /latest to /f27 for now Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-12-01 19:48:03 +00:00
Patrick Uiterwijk	99e5baf76e	Send HTTP/421 on kojipkgs on non-phx2 Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-28 15:39:37 +00:00
Patrick Uiterwijk	bc3bbcb5c0	Also return 421 from non-phx2 proxies for src.fp.o Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-26 21:13:33 +00:00
Patrick Uiterwijk	40de21728b	Set the error message centrally Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-26 21:12:32 +00:00
Patrick Uiterwijk	34a655ee37	Send a 421 Misdirected error to koji from non-phx2 proxies Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-26 21:05:59 +00:00
Patrick Uiterwijk	cabbfe3015	Deploy split servers to prod Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-24 22:46:24 +00:00
Patrick Uiterwijk	bc95beb269	Split id.fp.o and username.id.fp.o for TLS/h2 reasons. Start with staging Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-11-24 22:20:25 +00:00
Patrick Uiterwijk	f027845144	There is no elif, just an else Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-10-10 15:12:58 +00:00
Patrick Uiterwijk	3233cc1388	Allow mod_proxy_balancer optionally Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2017-10-10 17:07:48 +02:00
Patrick Uiterwijk	5bd010cc68	Move to registry02/03 in production Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2017-08-04 00:22:01 +02:00
Patrick Uiterwijk	5482145b93	Disable removing 100-continue Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-07-22 11:40:23 +00:00
Patrick Uiterwijk	dc7d020e21	Fix fedpkg double uploads by abusing the krb5 replay cache being local Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-07-22 11:32:04 +00:00
Adam Miller	bc86f6ab1c	add webUI for stage reverseproxy Signed-off-by: Adam Miller <admiller@redhat.com>	2017-06-30 15:36:22 +00:00
Patrick Uiterwijk	9829ff7358	We want to modify the staging part Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-06-30 15:27:36 +00:00
Ricky Elrod	82417064e4	Change static content caching from 5 days to 30 minutes Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2017-06-09 06:30:47 +00:00
Kevin Fenzi	058f6a84ec	missed a few of these due to spacing	2017-04-13 18:35:43 +00:00
Patrick Uiterwijk	3a8e11cf7e	Split staging and prod docker push certs Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-04-10 22:06:52 +02:00
Patrick Uiterwijk	9841d619fc	Why, Docker, why? I thought we were friends Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-03-15 22:56:21 +00:00
Patrick Uiterwijk	4289a2056c	Alias and mod_rewrite mixing doesn't go too well Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-21 15:06:51 +00:00
Patrick Uiterwijk	49323cdec7	Create directory for registry-signatures Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-21 14:34:47 +00:00
Patrick Uiterwijk	7fdfd90dad	CDN has no clue about staging Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-16 20:03:33 +00:00
Patrick Uiterwijk	9453a5cba0	Do this the other way around. And Docker... Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-16 19:57:12 +00:00
Patrick Uiterwijk	47c396423d	Do not send update requests to CDN Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-16 19:47:09 +00:00
Ricky Elrod	a78a6d2bec	redirect mirrors.fp.o/publiclist to admin.fp.o/mirrormanager Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2017-02-16 17:56:08 +00:00
Patrick Uiterwijk	e1601ca869	More flexible regex Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-15 15:59:46 +00:00
Patrick Uiterwijk	c1b28e4568	Redirect blob requests to CDN Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-15 15:48:20 +00:00
Patrick Uiterwijk	40476d05a2	Because Docker Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-02-13 22:37:39 +00:00
Patrick Uiterwijk	2aa9950702	Block all traffic for this paste at the proxies Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-01-23 14:06:42 +00:00
Patrick Uiterwijk	dd905e5917	Disable for now, but keep around Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-01-14 18:40:44 +00:00
Patrick Uiterwijk	a7d6b0052f	Put staging stable registry behind varnish and redirect to external registry Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2017-01-14 18:35:45 +00:00
Patrick Uiterwijk	ebf89e06c9	Texlive needs ALMOST two full hours. Let's raise to just above the actual time Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-30 00:51:56 +00:00
Patrick Uiterwijk	98100b01fd	Also raise apache koji timeout Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-29 18:10:08 +00:00
Patrick Uiterwijk	795c659f7a	Only use IPA01 for API access since sessions are not synchronized Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-20 05:50:43 +00:00
Patrick Uiterwijk	658cad48e2	Fix IPA reverse cookie domain Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-20 05:33:05 +00:00
Patrick Uiterwijk	fb4899e0c5	Add header_expect: false as default Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-09 14:22:35 +00:00
Patrick Uiterwijk	e714c9dcb5	Add expect clear header Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-12-09 14:18:30 +00:00
Kevin Fenzi	1effd347df	Setup a proxyreload for httpd that looks for the ticketkey. If it's not there, assume the proxy is just being configured and don't reload httpd.	2016-12-01 21:36:07 +00:00
Ricky Elrod	dcb984c6d2	add python2-mock here Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2016-09-06 20:15:05 +00:00
Patrick Uiterwijk	b6dda2c8b3	Create candidate registry at proxy Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-08-29 19:09:38 +00:00
Ricky Elrod	f1e82e00ca	set https so styles work Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2016-08-03 09:30:02 +00:00
Ricky Elrod	ff9c55e1e8	set ProxyPreserveHost Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>	2016-08-03 09:16:38 +00:00
Patrick Uiterwijk	46629ba55c	Route all xmlrpc requests to mm-frontend-checkin01 Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-06-17 20:33:44 +00:00

1 2 3

113 Commits