ansible

Author	SHA1	Message	Date
Patrick Uiterwijk	5a668c4792	Effectively disable session locking. Its useless anyway Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 18:09:22 +00:00
Patrick Uiterwijk	d3dc9adac9	Sessions duration cut by 4 Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 18:08:03 +00:00
Patrick Uiterwijk	a18f9b62b0	This differs for prod vs stg Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 18:02:51 +00:00
Patrick Uiterwijk	fd0a78df1a	Ipsilon 2.0 is in prod Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 18:01:47 +00:00
Patrick Uiterwijk	4bf3e4d04b	This should be lowercase Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 16:38:18 +00:00
Patrick Uiterwijk	4a977b1c73	Deploy GSSAPI for Ipsilon in stg Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 16:34:50 +00:00
Patrick Uiterwijk	673f85066b	Some more packages needed for Ipsilon Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 16:04:50 +00:00
Patrick Uiterwijk	bacf440c82	Issue keytabs for Ipsilon Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 15:57:15 +00:00
Patrick Uiterwijk	ec9680232e	Pkgs actually has a keytab for pkgs Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-24 15:56:29 +00:00
Martin Krizek	c35decd9f1	buildmaster and buildslaves: install policycoreutils-python-utils for semanage	2016-11-24 13:09:00 +00:00
Martin Krizek	b8891699eb	imagefactory-client: install missing dep, git	2016-11-24 09:27:35 +00:00
Martin Krizek	d2439b2ec2	taskotron-client: enable virtlogd on f24+	2016-11-24 09:21:17 +00:00
Martin Krizek	3c57c1d289	taskotron-client: create buildslaves group before it's used	2016-11-24 09:11:15 +00:00
Adam Miller	8133febc22	fix typo causing syntax error for osbs-cluster playbook Signed-off-by: Adam Miller <admiller@redhat.com>	2016-11-23 22:24:08 +00:00
Patrick Uiterwijk	e78ea5e1c2	Add forgotten c Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 22:12:43 +00:00
Adam Miller	1bee593de6	fix osbs-client role templating Signed-off-by: Adam Miller <admiller@redhat.com>	2016-11-23 21:47:44 +00:00
Adam Miller	074f018c19	make the osbs_url variable name consistently named everywhere Signed-off-by: Adam Miller <admiller@redhat.com>	2016-11-23 21:41:23 +00:00
Adam Miller	ef18805470	enable maxamillion's atomic-reactor copr for STG osbs buildroot for testing Signed-off-by: Adam Miller <admiller@redhat.com>	2016-11-23 21:37:00 +00:00
Adam Miller	090c85d868	set osbs to use krb5 for koji auth instead of ssl certs Signed-off-by: Adam Miller <admiller@redhat.com>	2016-11-23 21:36:59 +00:00
Patrick Uiterwijk	d15e182de8	Cert auth to staging koji is now history Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 21:33:01 +00:00
Patrick Uiterwijk	c9b0592bff	Make the osbs keytab go to the nodes Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 21:01:35 +00:00
Kevin Fenzi	b8f4139cd8	correct lockfile name	2016-11-23 18:32:52 +00:00
Patrick Uiterwijk	0bc8c56f06	This is also env-dependant Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 18:17:29 +00:00
Patrick Uiterwijk	b88c5c4da6	Seems IPA masters need a different krb5 conf Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 18:13:24 +00:00
Kevin Fenzi	3d02fede99	use common lock file for things that update fedora/secondary fullfiletimelists	2016-11-23 18:03:01 +00:00
Kevin Fenzi	fb191cb0d5	Drop common_scripts task	2016-11-23 17:56:02 +00:00
Kevin Fenzi	566dfe5929	fix spacing on with_fileglob	2016-11-23 17:45:47 +00:00
Patrick Uiterwijk	dcc0030b13	Deploy keytab after master is provisioned Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 17:30:21 +00:00
Adam Williamson	b99a4a6381	create-filelist: also skip the imagelist when making others add the imagelist's name to skip_files as we do for the other two files. tibbs is committing the same change to upstream.	2016-11-23 09:29:24 -08:00
Patrick Uiterwijk	c585ca7873	Keytabs owned by root Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 17:26:12 +00:00
Patrick Uiterwijk	56813c3f5c	These are roles Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 17:24:21 +00:00
Patrick Uiterwijk	a541bf05df	Give keytabs to OSBS cluster for koji Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 17:23:41 +00:00
Adam Williamson	2e09ca2d00	turn 'filterlist' into 'imagelist', using productmd This adopts https://pagure.io/quick-fedora-mirror/pull-request/27 and adapts to it, so we get `imagelist` files rather than `filterlist` files (see recent commits for this). The rationale is more fully explained in that PR (and in PR #26 also) - on further inspection it turns out that we have to filter out an awful lot of extensions to create small filterlists for all three modules, and I'm worried that other file extensions may appear in the future and cause the filterlists to suddenly get bigger again. Instead, we have create-filelist use the productmd constant that defines valid image formats, and only include files that match those formats in the list. The downside of this approach is we have to ensure productmd on all the systems that run `create-filelist` is kept up to date if the list of valid image formats changes.	2016-11-23 09:21:45 -08:00
Patrick Uiterwijk	49dd063d22	Issue HTTP cert for pkgs Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 16:01:22 +00:00
Patrick Uiterwijk	29ecff4c36	Bodhi frontends also need access to koji, so give them keytabs too Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 15:05:51 +00:00
Patrick Uiterwijk	5393398816	Use existing bodhi.fp.o dns entry Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:54:57 +00:00
Patrick Uiterwijk	940076e8d4	Create a shared keytab for both backends Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:50:11 +00:00
Patrick Uiterwijk	338ed07bc1	Generate bodhi/ service keytabs Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:47:45 +00:00
Patrick Uiterwijk	d620877536	mod_auth_gssapi is used for GSSAPI auth Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:26:01 +00:00
Patrick Uiterwijk	a6d0341568	IPA-client is no longer needed Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:25:18 +00:00
Patrick Uiterwijk	69e3b172d8	Only redirect pub/alt, and use master mirrors Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 14:07:01 +00:00
Patrick Uiterwijk	ffb661e11d	Allow koji web to Proxy Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 13:38:58 +00:00
Patrick Uiterwijk	180860f390	Prepare koji auth for prod Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 13:37:19 +00:00
Patrick Uiterwijk	c70a3f2758	Make Ipsilon API plugin compatible with 1.2 and 2.0 Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 13:28:54 +00:00
Patrick Uiterwijk	c9c904f2bd	Disable password expiration Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 13:28:54 +00:00
Patrick Uiterwijk	7511103516	Make /pub/alt on alt.fp.o forward to dl Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 13:28:53 +00:00
Patrick Uiterwijk	d472159fc3	Configure koji web login for if we want it Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 01:36:15 +00:00
Patrick Uiterwijk	9d55be3dae	Use GSSAPI local username Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 00:36:46 +00:00
Patrick Uiterwijk	4b5ba6e16e	Enable both client cert and krb for stg koji Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>	2016-11-23 00:23:38 +00:00
clime	e7aa36f169	copr-backend: do not enable tmpfs mock plugin on ppc64le builders we do not have the same disk space available as on x86_64 builders	2016-11-22 16:57:58 +01:00

1 2 3 4 5 ...

15664 commits