WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-03-20 03:57:02 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
6706723eea466bc9ffedc00a2fc86a0797279113
fedora-infra_ansible/inventory/group_vars/openqa_lab
Adam Williamson ae2cd3530b roles/openqa/server: drop OpenID auth support 
We've been using OAuth2 for prod and stg for some time now, so
let's clean this up.

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2026-01-26 15:40:50 -08:00

52 lines
2.1 KiB
Plaintext
Raw Blame History

# This setup is a bit out of the ordinary for a staging system. As the openqa
# scheduler needs up-to-date information from the wiki and koji, it doesn't
# work well as a proper staging host.
#
# We decided to keep it a pseudo-staging host that will get new versions of
# openqa first and will be a staging host for most intensive purposes but from
# a firewall rule POV, it will be a staging-friendly production host
#
# it should still be using the stg proxies and the external hostname will still
# be stg.fedoraproject.org
# this is to enable nested virt, which we need for disk image creation
virt_install_command: "{{ virt_install_command_one_nic }} --cpu=host-passthrough,+vmx"
deployment_type: stg
external_hostname: openqa.stg.fedoraproject.org
freezes: false
# AMQP publisher/listener-related stuff
openqa_amqp_this_cacertfile: "{{ openqa_amqp_stg_cacertfile }}"
openqa_amqp_this_certfile: "{{ openqa_amqp_stg_certfile }}"
openqa_amqp_this_keyfile: "{{ openqa_amqp_stg_keyfile }}"
openqa_amqp_this_url: "{{ openqa_amqp_stg_url }}"
openqa_amqp_this_username: "{{ openqa_amqp_stg_username }}"
openqa_amqp_scheduler_queue: "{{ openqa_amqp_prod_username }}_scheduler_stg"
# auth stuff
openqa_oauth2_secret: "{{ openqa_stg_oidc_secret }}"
openqa_assetsize_ppc: 1
openqa_assetsize_updates_ppc: 1
openqa_compose_arches: x86_64,aarch64
openqa_dbname: openqa-stg
openqa_dbpassword: "{{ stg_openqa_dbpassword }}"
openqa_dbuser: openqastg
openqa_env: staging
openqa_env_suffix: .stg
openqa_key: "{{ stg_openqa_apikey }}"
# all our workers need NFS access
openqa_nfs_workers: "{{ groups['openqa_lab_workers'] }}"
# install openQA from updates-testing - this is staging, we live
# ON THE EDGE (radical guitar riff)
openqa_repo: updates-testing
openqa_resultsdb_url: https://resultsdb.stg.fedoraproject.org/api/v2.0/
openqa_resultsdb_user: "{{ stg_resultsdb_httpd_user }}"
openqa_resultsdb_password: "{{ stg_resultsdb_httpd_password }}"
openqa_secret: "{{ stg_openqa_apisecret }}"
openqa_update_arches: ['aarch64', 'x86_64']
openqa_webapi_plugins: FedoraMessaging
openqa_wikitcms_hostname: stg.fedoraproject.org
wikitcms_token: "{{ private }}/files/openidc/staging/wikitcms.json"
Reference in New Issue View Git Blame Copy Permalink