WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-24 18:41:38 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
00a07f94e4f682e46d810a3b69080cde8bf18924
fedora-infra_ansible/inventory/group_vars/bugzilla2fedmsg_stg
Kevin Fenzi 4b31ac5152 ansible: Change all our group names from foo-bar to foo_bar or foo-bar-baz to foo_bar_baz 
In ansible 2.8 the - character isn't supposed to be valid in group names.
While we could override this, might has well just bite the bullet and change it.
So, just switch all group names to use _ instead of -

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
2019-05-20 17:38:09 +00:00

53 lines
1.9 KiB
Plaintext
Raw Blame History

---
# Define resources for this group of hosts here.
lvm_size: 20000
mem_size: 1024
num_cpus: 1
# for systems that do not match the above - specify the same parameter in
# the host_vars/$hostname file
tcp_ports: [ 3000, 3001 ]
fas_client_groups: sysadmin-noc,sysadmin-datanommer,sysadmin-veteran
sudoers: "{{ private }}/files/sudo/bugzilla2fedmsg-sudoers"
# These are consumed by a task in roles/fedmsg/base/main.yml
fedmsg_certs:
- service: shell
owner: root
group: sysadmin
can_send:
- logger.log
- service: bugzilla2fedmsg
owner: root
group: fedmsg
can_send:
- bugzilla.bug.new
- bugzilla.bug.update
# For the MOTD
csi_security_category: Low
csi_primary_contact: Fedmsg admins - sysadmin-datanommer-members@fedoraproject.org
csi_purpose: Run the bugzilla2fedmsg bridge to forward RH messages onto fedmsg
csi_relationship: |
A 'moksha-hub' daemon is the only thing really running here. (Don't confuse
that with the 'fedmsg-hub' running on most of our other backend machines.)
The bugzilla2fedmsg package provides a plugin to the moksha-hub that
connects out over the STOMP protocol to a 'fabric' of JBOSS FUSE brokers
living in the Red Hat DMZ. We authenticate with a cert/key pair that is
kept in /etc/pki/fedmsg/. Those brokers should push bugzilla events over
STOMP to our moksha-hub daemon. When a message arrives, we query bugzilla
about the change to get some 'more interesting' data to stuff in our
payload, then we sign the message using a fedmsg cert and fire it off to the
rest of our bus.
This service has no database, no memcached usage. It depends on those STOMP
brokers and being able to query bugzilla.rh.com.
STOMP config: /etc/moksha/production.ini
fedmsg config: /etc/fedmsg.d/
certs: /etc/pki/fedmsg
code: /usr/lib/python2.7/site-packages/bugzilla2fedmsg.py
Reference in New Issue View Git Blame Copy Permalink