WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-01 22:11:01 +08:00
Code Issues Packages Projects Releases Wiki Activity
38,302 Commits 9 Branches 0 Tags
b7e5056a4ec6fda678d33f052d6980775fa16cf1
Commit Graph

123 Commits

Author SHA1 Message Date
Kevin Fenzi
8d3c180496 openshift / project: do not recurse on permissions 
There's some files that get created later (like keytabs) that we don't
want to keep changing back and forth and causing things to not be
idempotent.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2022-06-21 14:16:56 -07:00
Kevin Fenzi
972e2d9515 openshift: move apiVersion of routes to route.openshift.io/v1 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2022-06-14 15:54:21 -07:00
Aurélien Bompard
4bd4158a6b Only create the keytab secret if it does not exist yet 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:31:35 +02:00
Aurélien Bompard
1b35c7cb27 Also adjust the openshift/keytab role 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:23:41 +02:00
Aurélien Bompard
90715412f2 Adjust the secret-file role to work with OCP4 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2022-04-14 11:17:38 +02:00
Mark O Brien
5d906f9b8c openshift: undo uneccesary changes 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 18:01:22 +00:00
Mark O Brien
2d9b23d066 openshift: change shell to command 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 17:20:57 +00:00
Mark O Brien
cebd4ce05f openshift: check return code instead of stderr 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:51:40 +00:00
Mark O Brien
baf4fb0812 openshift: remove temp debug command 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:49:34 +00:00
Mark O Brien
dc2c941c49 openshift: fix yaml indentation 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:42:26 +00:00
Mark O Brien
45fb1e6af1 openshift: add temp debug statement 
Signed-off-by: Mark O Brien <markobri@redhat.com>
 2022-02-02 11:41:11 +00:00
David Kirwan
cdc4619675 Minor typo, role/openshift/sysadmin-openshift task 
Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-26 09:40:10 +00:00
David Kirwan
bb049d181b fcos-pipeline-migration: ensure templates placed in directory 
unique to the app.

Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-09 11:56:03 +00:00
David Kirwan
c3e206ab1e fcos-pipeline-migration: install oc-client.rpm 
Signed-off-by: David Kirwan <dkirwan@redhat.com>
 2021-11-09 10:35:57 +00:00
Francois Andrieu
911bb8ac4f openshift: allow appowner to start a rollout 2021-04-28 21:32:05 +00:00
Francois Andrieu
492fe4f671 openshift: update egressPolicy for iad2 2021-04-03 18:44:31 +00:00
Adam Saleh
7bbb860d52 Add more privileges to appowners on staging. 2021-03-15 16:13:37 +01:00
Aurélien Bompard
593d7fe7f0 Add support for installing OS app that don't match with the ansible app 
And use it for the CentOS instance of Noggin.

Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-11-30 14:06:11 +01:00
Aurélien Bompard
b16660ab24 Setup Elections for FASJSON access 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-09-16 10:37:04 +02:00
Aurélien Bompard
f02d19dcb9 IPA client for openshift: deploy a krb5.conf file 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-09-11 12:17:00 +02:00
Aurélien Bompard
45a8658c04 Noggin: small fixups 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 15:11:56 +02:00
Aurélien Bompard
cdaaf4326f Fix indentation 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 11:09:43 +02:00
Aurélien Bompard
b7e08d6d48 Mutualize the ipa client config in openshift 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2020-08-20 11:07:59 +02:00
Clement Verna
e1538d32e4 openshift object-delete: add .yml to the object file to be deleted 
Signed-off-by: Clement Verna <cverna@tutanota.com>
 2020-04-24 21:34:26 +02:00
Michael Scherer
dfdd9ab4d4 Fix typo in the name 
Mainly to increase my edit count
 2020-04-24 21:34:25 +02:00
Luca BRUNO
9c64952e3b openshift/rbac: allow project owners to cancel-builds 
This tweaks project-owners RBAC to allow updating a build, in order
to make `cancel-build` work.

Ref: https://pagure.io/fedora-infrastructure/issue/8005
Signed-off-by: Luca BRUNO <luca.bruno@coreos.com>
 2020-04-24 21:34:11 +02:00
Dusty Mabe
e4cfcb55e8 openshift: match on objecttype for project delete 
This was a typo in 0acb753.
 2020-04-24 21:34:08 +02:00
Kevin Fenzi
13dd31da04 openshift: handle deleting projects 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-04-24 21:34:08 +02:00
Patrick Uiterwijk
cb987b9af0 Require true value 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:57:19 +02:00
Patrick Uiterwijk
ce79bda4d9 Allow re-encrypt 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-29 21:56:33 +02:00
Patrick Uiterwijk
43af7f9206 Fix up egresspolicy source vs dest 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-20 09:44:10 +02:00
Patrick Uiterwijk
6bf7c579c2 make egresspolicy customization less simple 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:47:23 +02:00
Patrick Uiterwijk
c07c9415a0 Allow custom egress policies for special cases 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-06-03 15:43:39 +02:00
Patrick Uiterwijk
66cda5eb15 Make it possible to disallow any internal communications 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-29 20:33:11 +02:00
Patrick Uiterwijk
c8b31c025b allow openshift routes to specify termination 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 18:05:05 +02:00
Patrick Uiterwijk
21b3c9a2b3 Add secret-tls 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-11 17:42:21 +02:00
Patrick Uiterwijk
003519afdd Allow specifying a route path 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 21:20:18 +02:00
Patrick Uiterwijk
2e099edfa4 ipsilon: add username route 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 14:19:32 +02:00
Patrick Uiterwijk
bbaa0f409b openshift/project: fix if condition 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:54:16 +02:00
Patrick Uiterwijk
446d00d549 Add tag to egresspolicy role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:42:49 +02:00
Patrick Uiterwijk
72ac044a5e openshift/project: simplify egresspolicy - different env db won't allow access anyway 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:41:55 +02:00
Patrick Uiterwijk
8de1035266 Make the var into a default 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:35:39 +02:00
Patrick Uiterwijk
eac122c543 openshift/project: define default egress policy to prevent fas db access 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-05-09 13:32:55 +02:00
Patrick Uiterwijk
e4aed9c9f2 Delete object file from disk 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:07:38 +02:00
Patrick Uiterwijk
dc591da083 Add openshift/object-delete role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2019-04-05 21:05:46 +02:00
Mikolaj Izdebski
1e46efdc75 Install npm and celery on Transtats and restore route annotations 
Credits go to suanand for providing the patch.
 2019-02-21 15:40:38 +01:00
Patrick Uiterwijk
878988d92d Revert "Disable auto-update for appowners role" 
This reverts commit 10c88b0933.
 2018-12-08 20:02:53 +01:00
Patrick Uiterwijk
10c88b0933 Disable auto-update for appowners role 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-12-04 07:55:27 +01:00
Kevin Fenzi
6c24a3e84b add rollbacks to app owners in openshift 2018-11-15 22:13:13 +00:00
Patrick Uiterwijk
864f2e1372 Fix up the appowners binding to use the namespace-local one 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2018-09-13 10:39:56 +02:00