ansible

Author	SHA1	Message	Date
Stephen Smoogen	d9ba19c0a1	Revert "update rhel8.repo to have the codeready for it" This reverts commit 082f503fb1bc9b2e9160949c3c30386bdf1cfb7c.	2020-04-24 21:34:29 +02:00
Stephen Smoogen	03d54c9bcf	Revert "too much stuff we use regularly on many hosts is in CRB. Make it enabled" This reverts commit f9793bbe57c11d2c6e24dfcd4d9d30cf2d53396b.	2020-04-24 21:34:29 +02:00
Stephen Smoogen	d9f0821238	too much stuff we use regularly on many hosts is in CRB. Make it enabled	2020-04-24 21:34:29 +02:00
Stephen Smoogen	7e95bf93a4	update rhel8.repo to have the codeready for it	2020-04-24 21:34:29 +02:00
Clement Verna	90e076b170	bodhi: remove the manual patch that is now included in 5.2 Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:27 +02:00
Stephen Smoogen	efcd9b0ead	the problem was that some of the host names were listed as cloud-noc01.fedorainfracloud.org and others were named cloud-noc01.cloud.fedoraproject.org. Move to 1 name throughout ansible	2020-04-24 21:34:27 +02:00
Clement Verna	db3c0785cb	bodhi: patch error templates while waiting for a release Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:26 +02:00
Kevin Fenzi	aa580f72c5	openstack: remove more lingering files and playbooks and libraries. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:26 +02:00
Kevin Fenzi	00af04a024	openstack cloud: decomission Finally take fed-cloud* out and all playbooks associated with the old (and attempts to make a new one). This cloud was a pain at times, but it did serve long and well, we salute it! Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:26 +02:00
Stephen Smoogen	37915eaf25	put in patches to use wildcard2020	2020-04-24 21:34:26 +02:00
Stephen Smoogen	5ab2061c88	This removes all files related to keyserver and sks. Revert if still needed	2020-04-24 21:34:22 +02:00
Clement Verna	4584730e93	OSBS: add proxy101 and proxy110 to the iptable whitelist in stg Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:21 +02:00
Kevin Fenzi	779fa01877	autocloud: fare well autocloud, you served long and well... Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:17 +02:00
Dusty Mabe	35c9d91e18	aws-iam-policies: fcos-upload-amis: add ability to DescribeRegions Need this since we recently changed to dynamically detect regions to upload to. See `ab3cae5`	2020-04-24 21:34:17 +02:00
Kevin Fenzi	ab3f501820	secondary01: Copy to secondary01 a python2 version of create-filelist because it can't run the python3 one. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:16 +02:00
Kevin Fenzi	b68b6cbb82	create-filelist: update to use python3 Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:15 +02:00
Clement Verna	f124f4ed89	OSBS: do not use fedora:latest in the buildroot Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:15 +02:00
Kevin Fenzi	7f4959768b	aws policy: initial copies of json policy files. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:14 +02:00
Kevin Fenzi	8e238ef62a	rhel8 repo file: Clean up from beta, use https, make AppStream/BaseOS for dvd repos Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:13 +02:00
Kevin Fenzi	dd9e5512e3	common files: fix epel8 path, it has Everything in it. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:13 +02:00
Kevin Fenzi	36ed20e7f1	common files: add epel8.repo file for rhel8 machines. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:13 +02:00
Kevin Fenzi	82b8bdf191	communishift: update some docs. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:13 +02:00
Kevin Fenzi	57e49b6da8	Revert "communishift: adjust for new cert-manager setup." This reverts commit fd510fbf1642a74f1e951c1657b9dc768b6caf07.	2020-04-24 21:34:13 +02:00
Kevin Fenzi	66e45ad988	communishift: adjust for new cert-manager setup. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:12 +02:00
Stephen Smoogen	97cadd4f64	Thanks Todd Z. Saving my bacon once again	2020-04-24 21:34:12 +02:00
Stephen Smoogen	92b21d3522	in order to find out why we cant have nice things we have to log all the things	2020-04-24 21:34:11 +02:00
Kevin Fenzi	58f195b511	openshift / README: update cert-manager docs. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2020-04-24 21:34:10 +02:00
Clement Verna	5a4f01a2d4	OSBS: use the Openshift 3.11 repo in stg Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:09 +02:00
Clement Verna	ee0d28b7cf	OSBS: update the delete old image cron job Signed-off-by: Clement Verna <cverna@tutanota.com>	2020-04-24 21:34:08 +02:00
Patrick Uiterwijk	21eeb216ed	Add cert-manager URL Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-06-30 22:33:28 +02:00
Patrick Uiterwijk	14422d361d	Add objects and documentation for certificates in communishift Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-06-30 22:31:42 +02:00
Patrick Uiterwijk	647efabd30	Add oidc_cm.yml Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-25 02:53:39 +02:00
Patrick Uiterwijk	2d2feeaa5f	Add basic machineconfigs for communishift and instructions Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-25 02:41:36 +02:00
Patrick Uiterwijk	998b1baf74	Due to qa firewalls, use the original IPs Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-24 10:19:44 +02:00
Patrick Uiterwijk	104d25852c	soooo many files... Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-24 00:12:06 +02:00
Patrick Uiterwijk	c8a1baf7a2	Do 2fa changes at the correct location Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-24 00:10:17 +02:00
Patrick Uiterwijk	d75ad4c1b7	Add os-node11 also to routers - it's either bootstrap node or worker Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 16:46:34 +02:00
Patrick Uiterwijk	1855a459f9	Default communishift to tcp mode Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 14:18:02 +02:00
Patrick Uiterwijk	377d73b75e	Simplify os-proxies: all bind everything Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 12:01:41 +02:00
Patrick Uiterwijk	53b0b1d9ea	Use full hostnames Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 11:55:41 +02:00
Patrick Uiterwijk	2d6ccdbbe3	Enable haproxy stats Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 11:50:52 +02:00
Patrick Uiterwijk	f06aa504b9	Enable haproxy checks Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-16 11:46:12 +02:00
Kevin Fenzi	a074c43cc9	communishift: drop custom 503 in haproxy for now. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-12 18:47:09 +00:00
Kevin Fenzi	261648a5c4	communishift: Setup simple haproxy config and add firewall rules Note that we don't use the haproxy rule because it's very proxy specific. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-11 20:13:36 +00:00
Kevin Fenzi	e30dd9a3fe	fedora repo files: Perhaps we need == here instead of is Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-02 00:07:42 +00:00
Kevin Fenzi	8bcd40c086	fedora repo files: If we are setting FedoraBranched to False when not enabled instead of undefining it, we need to test true or false instead of existance. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-05-02 00:05:22 +00:00
Patrick Uiterwijk	08873ba49c	Hide Apache version in Server header Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-05-01 17:28:30 +02:00
Kevin Fenzi	ac8213f97c	virthost-aarch64-os: Use libvirt group instead of sysadmin-main for the virt socket on these. Signed-off-by: Kevin Fenzi <kevin@scrye.com>	2019-04-15 16:18:09 +00:00
Patrick Uiterwijk	14ea88dd85	Add Zanata id.fp.o TLSv1 workaround Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-04-13 21:16:21 +02:00
Patrick Uiterwijk	da6e047cff	Make clear that these are Fedora extending headers Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>	2019-04-11 18:22:31 +02:00

1 2 3 4 5 ...

955 commits