ansible

Author	SHA1	Message	Date
James Antill	c063b94af3	Add nftables.bastion for smtp stuff. Signed-off-by: James Antill <james@and.org>	2025-04-24 21:55:25 +00:00
Kevin Fenzi	a2d6cf7dd4	nftables / osuosl: fix interface for ssh connections Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-24 14:09:02 -07:00
Kevin Fenzi	4d4365cdf5	nftables: add defined check for nft_nat_rules and set it also [] by default Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-24 13:17:03 -07:00
Kevin Fenzi	98c1a60c21	noc / dhcp: add rdu3 mgmt interfaces For now, networking is going to just bridge dhcp from the new rdu3 mgmt network over to our iad2 dhcp server. We will change this later after we have bootstrapped up rdu3 some more. This adds all our new x86 machines and 2 centos machines. We still need to sort out the aarch64 machines (which need new cards) and the power10 machines (still being racked). Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-24 12:08:45 -07:00
Greg Sutcliffe	0e60fc6eaf	Zabbix-stg: bump collection to 3.3.0 and re-enable user	2025-04-24 17:29:01 +00:00
Michal Konecny	33c846b516	[ipsilon] Fix redirect URL for staging libravatar	2025-04-24 13:48:03 +02:00
Mikolaj Izdebski	8b1bdfff97	Koschei: relax probe timeouts Extended the liveness/readiness probe timeouts to better handle unexpected database slowdowns. This aims to reduce the frequency of Pod crash loops by giving the system more time to recover before Kubernetes restarts it.	2025-04-24 07:30:24 +02:00
Simon de Vlieger	9f15884401	koji: `image-builder` for staging Enables the `image-builder` plugin from `koji-image-builder` in the staging environment for both the koji hub, and the koji builder (kojid). Signed-off-by: Simon de Vlieger <supakeen@redhat.com>	2025-04-23 23:53:51 +00:00
David Kirwan	5f2d06c90c	forgejo: reorder ansible task execution Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>	2025-04-23 10:52:45 +01:00
Siteshwar Vashisht	321078b526	openscanhub: update to ami-0834e6713f8d31e04 Signed-off-by: Siteshwar Vashisht <svashisht@redhat.com>	2025-04-23 08:36:03 +00:00
Siteshwar Vashisht	c5093b2b26	openscanhub: add `FedoraGroup` tag to VMs ... spun up for workers. Signed-off-by: Siteshwar Vashisht <svashisht@redhat.com>	2025-04-23 08:13:43 +00:00
Aurélien Bompard	9aca5b724a	RabbitMQ: deploy the new CA cert to prod too Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-23 09:49:54 +02:00
Adam Williamson	d1728cd3d1	cloud-image-uploader: update container image config for IoT changes We finally merged https://pagure.io/fedora-iot/pungi-iot/pull-request/102 which changes the properties of the container images built in the IoT compose. This should adjust to that and publish both the base and IoT images, if we got it all right. Signed-off-by: Adam Williamson <awilliam@redhat.com>	2025-04-22 13:48:14 -07:00
Kevin Fenzi	5a72566502	proxies: re-enable koji endpoints Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-21 14:17:31 -07:00
Kevin Fenzi	c581b79099	robosignatory: fix stable f42 cosmic-atomic signing, which was missing Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-19 20:53:30 -07:00
Kevin Fenzi	d4f15818ef	bodhi-backend: add variant for COSMIC-Atomic Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-19 18:59:55 -07:00
Justin Wheeler	4da64f2701	🔧 roles(fasjson): Add my RH email to foa alias, create jwheel alias Two changes were made here: * Explicitly add my Red Hat email address to all email addresses sent to the `foa@` email alias. My FAS email is not my Red Hat email, but there are some communications sent to this specific alias that I need to always go to my Red Hat email address. They are topics specifically about the work that I do at Red Hat. * Create a new `jwheel@` personal email alias. This is the username I intend to claim after my name change, and it also matches my Red Hat email address (jwheel [at] redhat [dot] com). Gradually, I am going to work on moving email from `jww@` to `jwheel@`. If an option ever is available in the future to change FAS usernames, this is the changed name that I would choose. Signed-off-by: Justin Wheeler <jwheel@redhat.com>	2025-04-19 18:35:08 +00:00
Kevin Fenzi	fc5425c07f	koji_builder: add a iptables tag to the osbuildapi scripting Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-19 09:17:09 -07:00
Patrik Polakovič	af73ccce72	Add Pungi filter for OpenH264 packages Signed-off-by: Patrik Polakovič <patrik@alphamail.org>	2025-04-18 19:27:48 +00:00
Ryan Brue	b3c32cbc9c	Fix incorrect ref in the cosmic-atomic pungi config Signed-off-by: Ryan Brue <ryanbrue.dev@gmail.com>	2025-04-18 00:12:51 -05:00
David Kirwan	b6486cfdcb	forgejo: update image Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>	2025-04-17 18:16:02 +01:00
Aurélien Bompard	b79d8199c6	Batcave: also copy the rabbitmq ca cert Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-17 18:16:23 +02:00
Michal Konecny	a76d88a1f6	[ipsilon] Add libravatar entry for staging https://pagure.io/fedora-infrastructure/issue/12493	2025-04-17 15:57:44 +02:00
Michal Konecny	3a612a4230	[ipsilon] Add OIDC entry for testdays app https://pagure.io/fedora-infrastructure/issue/12490	2025-04-17 13:34:21 +00:00
Aurélien Bompard	a19859a8f0	Tabs to spaces Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-17 13:15:15 +02:00
Aurélien Bompard	5d8631d7d5	Make debugging Bodhi in staging a little bit easier Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-17 13:11:26 +02:00
Aurélien Bompard	1fb6c82482	Don't use --preload, it causes threading errors with Fedora Messaging on Python 3.13 Ref: https://github.com/fedora-infra/fedora-messaging/issues/431 Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-17 13:07:00 +02:00
Kevin Fenzi	002afafc5f	proxy01/10 / koji: block some kojiweb queries that bots are hitting Bots are htiting these at a massive level. Since these cause koji to do db queries it basically swamps it and it stops processing at all. Hopefully with enough of these 403's the bots will go away. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-16 18:40:24 -07:00
Kevin Fenzi	8c17500541	koji_hub: bump kojiweb limits to handle large events better Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-16 10:26:20 -07:00
Kevin Fenzi	1757d0912f	compose-branched: send output to the releng-cron list Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-16 10:23:32 -07:00
Kevin Fenzi	4bba87381d	pagure: block some old mirror copies of big projects Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-16 10:22:35 -07:00
David Kirwan	0702e29cab	forgejo: Add configuration for crunchydata postgresql db Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>	2025-04-16 16:40:35 +01:00
Pavel Raiskup	fec5b5beb3	copr-builders: override fedora rawhide ppc64le mock config This is a work-around for: https://github.com/fedora-copr/copr/issues/3693	2025-04-16 12:59:30 +02:00
Kevin Fenzi	40f63f81d1	gnome-software: promote f42 to active Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-15 12:17:15 -07:00
apiaseck	a4aaf6f0d0	fedora-ostree-pruner: Move from deprecated DeploymentConfig to Deployment First try aat move from deprecated DeploymentConfig to Deployment using staging environment. See: https://github.com/jbtrystram/coreos-hackathon/issues/13	2025-04-15 15:22:57 +00:00
apiaseck	678f318f4c	coreos-ostree-importer: Move from deprecated DeploymentConfig to Deployment First try aat move from deprecated DeploymentConfig to Deployment using staging environment. See: https://github.com/jbtrystram/coreos-hackathon/issues/13	2025-04-15 15:22:57 +00:00
apiaseck	91beda6fc4	coreos-cincinnati: Move from deprecated DeploymentConfig to Deployment First try aat move from deprecated DeploymentConfig to Deployment using staging environment. See: https://github.com/jbtrystram/coreos-hackathon/issues/13	2025-04-15 15:22:57 +00:00
apiaseck	1d5588e5ab	coreos-koji-tagger: Move from deprecated DeploymentConfig to Deployment First try at move from deprecated DeploymentConfig to Deployment using staging environment. Using the information related to moving to Deployment as per: https://github.com/jbtrystram/coreos-hackathon/issues/13 See: https://github.com/jbtrystram/coreos-hackathon/issues/13	2025-04-15 15:22:56 +00:00
Ryan Lerch	be6e3b0161	pagure: close pagure.io off to new projects Signed-off-by: Ryan Lerch <rlerch@redhat.com>	2025-04-15 01:40:19 +00:00
Paul Whalen	f967081b3a	IoT: sign stable with f42 key Signed-off-by: Paul Whalen <pwhalen@fedoraproject.org>	2025-04-11 11:58:49 -04:00
Aurélien Bompard	f6cbc5c6fc	Fix typo in the Planet RabbitMQ user Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-11 15:15:45 +02:00
Aurélien Bompard	d884a0f8ba	Use the combined RabbitMQ CA cert in the clients Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-11 15:15:45 +02:00
Pavel Raiskup	9d6f7c0f6f	copr-fe: tag the pagure-events config task	2025-04-11 10:32:23 +02:00
Pavel Raiskup	9dff1d373e	copr-fe: log date-time in the pagure-events.log	2025-04-11 10:30:25 +02:00
Kevin Fenzi	feb1bf9a97	koji_builder: syntax tweak Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2025-04-10 17:53:26 -07:00
James Antill	6af1918415	Conditionalize osbuild*.cron based on osbuild in group_names. Signed-off-by: James Antill <james@and.org>	2025-04-11 00:33:11 +00:00
James Antill	50d04f6e95	Remove nftables cron and disable service, when using iptables (for backout). Signed-off-by: James Antill <james@and.org>	2025-04-11 00:33:11 +00:00
James Antill	af90bbb6c5	Nice error for osbuildapi-update-nft.sh and comment explaining issues. Signed-off-by: James Antill <james@and.org>	2025-04-11 00:29:23 +00:00
Aurélien Bompard	b9553f3378	Use the manually combined RabbitMQ CA, it's much easier Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-10 12:25:52 +02:00
Aurélien Bompard	475838940a	Use lookup instead of assemble for the RabbitMQ CA Signed-off-by: Aurélien Bompard <aurelien@bompard.org>	2025-04-10 12:16:51 +02:00

1 2 3 4 5 ...

26064 commits