fedora-infra_ansible

mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-27 03:52:09 +08:00

Author	SHA1	Message	Date
Pavel Raiskup	e3f121fe87	copr: remove '-' typo	2019-05-13 12:14:52 +02:00
Pavel Raiskup	897334fc94	copr: don't use colon in task 'name'	2019-05-13 12:13:52 +02:00
Patrick Uiterwijk	0c61eba755	website: Before building, log which revision we are building Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-13 11:38:16 +02:00
Pavel Raiskup	4f58067295	copr: aarch64 spawning via resalloc-server For now enable this only on stg. Imported from: https://github.com/praiskup/fedora-copr-spinup-aarch64	2019-05-13 11:09:14 +02:00
Patrick Uiterwijk	aaa95ac79b	Put in new languages.conf for stg getfedora.org Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-13 11:05:20 +02:00
Pavel Raiskup	f0b6182aeb	copr: don't install dnf-utils in provision builder The dnf-utils package is not installable together with yum-utils on Fedora 28, so even though it's needed for F30 - it would break F28 spinup scripts. To be precise - from F30 we should move to `copr-builder` package anyways, which will bring all the necessary deps with itself; so we'll remove the list entirely.	2019-05-13 09:16:32 +02:00
Pavel Raiskup	8b1e3d8d93	copr: BE builderpb* playbooks can use Python 3 interpreter It's actually needed once we move to Fedora 30 builders.	2019-05-13 08:05:34 +02:00
Rick Elrod	2570ee47a1	zanata hack: stop applying this in stg, it breaks due to the wildcard include for id.fp.o Signed-off-by: Rick Elrod <relrod@redhat.com>	2019-05-13 01:35:43 +00:00
Rick Elrod	48a48fba41	proxies stg: remove openshift reverse proxy for getfedora Signed-off-by: Rick Elrod <relrod@redhat.com>	2019-05-13 01:02:47 +00:00
Rick Elrod	3baa0cad6a	websites stg: remove getfedora.org from syncStatic.sh Signed-off-by: Rick Elrod <relrod@redhat.com>	2019-05-13 01:00:14 +00:00
Rick Elrod	13b06e7e38	getfedora stg: use the new (openshift nfs) mount for rsyncd Signed-off-by: Rick Elrod <relrod@redhat.com>	2019-05-13 00:58:57 +00:00
Kevin Fenzi	a1666bad6c	cloud-noc / dhcp: remove old rhev enteies on 172 net, causing that to get default route and messing up communishift install attempts Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-12 23:01:28 +00:00
Patrick Uiterwijk	5228c3a5e8	Mount openshift_*_websites on sundries Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-13 00:23:19 +02:00
Patrick Uiterwijk	7862863015	Move to /tmp before build Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-13 00:15:13 +02:00
Patrick Uiterwijk	45b81fa8dc	Call bash, as this is -x Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 23:47:18 +02:00
Patrick Uiterwijk	480f0c8a2a	Match mount and volume names up Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 23:42:18 +02:00
Patrick Uiterwijk	a770df5254	Add websites cronjob and build script Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 23:40:11 +02:00
Patrick Uiterwijk	d1cfb5d99a	Fix build target Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 22:27:47 +02:00
Patrick Uiterwijk	afaa6ef80e	Build new websites buildconfig Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 22:25:50 +02:00
Patrick Uiterwijk	60c13450de	Move yubikey from httpd.worker to prefork Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 21:32:54 +02:00
Patrick Uiterwijk	ce69ca3a1a	Swap FAS in prod over to openshift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 21:29:08 +02:00
Patrick Uiterwijk	e35f24d789	Deploy fas on openshift to prod Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 21:25:33 +02:00
Kevin Fenzi	a074c43cc9	communishift: drop custom 503 in haproxy for now. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-12 18:47:09 +00:00
Kevin Fenzi	ee24caf71a	communistack: put os-proxies in cloud host_group to try and make nagios happy. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-12 16:56:53 +00:00
Patrick Uiterwijk	ff38e38570	fas: update yubikey val URL Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-12 12:07:05 +02:00
Kevin Fenzi	f7debffa6c	communishift: Add keepalived iptables rules, and fix interface name in config Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 20:35:20 +00:00
Kevin Fenzi	504053f36f	communishift: add keepalived and mod so it can handle 2 ips. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 20:23:41 +00:00
Kevin Fenzi	261648a5c4	communishift: Setup simple haproxy config and add firewall rules Note that we don't use the haproxy rule because it's very proxy specific. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 20:13:36 +00:00
Kevin Fenzi	077960163e	communishift: make os-proxy02 use it's own ip instead of also using the os-proxy01 one. :) Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 19:53:29 +00:00
Kevin Fenzi	e9c06f12c6	communishift: use the actual proper external ips and paths Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 18:55:24 +00:00
Kevin Fenzi	e632384c2f	communishift: correctly put the second proxy on the second virthost. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 18:50:40 +00:00
Kevin Fenzi	d02b9c3c66	communishift: use correct virthost name Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 18:46:33 +00:00
Kevin Fenzi	badb9a6c47	communishift: add some proxies. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 18:45:10 +00:00
Patrick Uiterwijk	f5e2a0eabc	Add 8443 for totp to proxies Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 20:43:03 +02:00
Patrick Uiterwijk	ca8cbe37be	totp: load cgi Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 19:10:47 +02:00
Patrick Uiterwijk	6cb91282d2	fas totp: set cgi handler Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 19:07:40 +02:00
Patrick Uiterwijk	3a9bea0e9d	fas: totp: add config files Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 19:06:42 +02:00
Patrick Uiterwijk	341763e194	fas: allow totp pods to read code Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 19:01:37 +02:00
Patrick Uiterwijk	90eaaa17f3	Map totp path Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 19:01:06 +02:00
Patrick Uiterwijk	44eec3c176	Set totp path Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:53:49 +02:00
Patrick Uiterwijk	b7fceda9b1	Move TOTP provision to openshift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:51:34 +02:00
Patrick Uiterwijk	0a0e3662c9	Force RHEL6 to use UTC Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:30:41 +02:00
Patrick Uiterwijk	f7d08cb5d3	Avoid taking the old value Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:14:58 +02:00
Patrick Uiterwijk	f2a1da4e22	Attempt to move FAS in stg to openshift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:13:38 +02:00
Patrick Uiterwijk	cc3530da34	Deploy route for totp Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:07:36 +02:00
Patrick Uiterwijk	c8b31c025b	allow openshift routes to specify termination Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 18:05:05 +02:00
Patrick Uiterwijk	04281d554d	Fix file suffix Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 17:58:52 +02:00
Patrick Uiterwijk	3d73e079e5	fas: don't forget o indent Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 17:56:35 +02:00
Patrick Uiterwijk	5ef4d3c6fe	fas: ship totpcgi ca and update paths Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-11 17:55:38 +02:00
Patrick Uiterwijk	37c59fd275	fas: add secret names Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2019-05-11 15:51:01 +00:00

1 2 3 4 5 ...

26711 Commits