Commit Graph

243 Commits

Author SHA1 Message Date
nazunalika
b45404cdc2 rearranging 2021-01-02 22:18:47 -07:00
nazunalika
d2dc1bef07 Add missing service account and privs 2021-01-01 20:50:00 -07:00
nazunalika
8e2f81c415 Ansible 2.7+ Best Practices and GetKeyTab Fixes
-> Changed specific pieces that are recommended to be changed in Ansible
2.7 and higher (such as using fail_msg and success_msg, not just msg for
  assertions
-> Improved the getkeytab adhoc playbook for flexibility and delegations
against a IPA server, as well as forcing the choice of the user with
permissions that can perform the action rather than the default "admin"
user in FreeIPA as a security fix.
2021-01-01 20:14:24 -07:00
nazunalika
17b7ef186e fixing spacing and tab issues 2020-12-31 20:05:27 -07:00
nazunalika
4ff14a8641 kojihub changes 2020-12-31 14:49:48 -07:00
Louis Abel
3c5a2e914e
Merge pull request #14958 from rocky-linux/develop
RabbitMQ Additions, GitLab Fixes, Additional IPA Accounts
2020-12-30 02:27:07 -07:00
nazunalika
99e163b220 slurry of changes and fixes 2020-12-30 02:22:58 -07:00
nazunalika
7d8ed3bbe5 adhoc rabbitmq user 2020-12-29 17:03:36 -07:00
nazunalika
b8ea1c51a1 gitlab external database prep 2020-12-28 20:43:17 -07:00
nazunalika
5f2426d840 Add requirements and fix ipa vars 2020-12-27 19:27:45 -07:00
nazunalika
928c944bb4 rabbitmq 2020-12-27 13:04:13 -07:00
nazunalika
ca68f884b7 Updating/Adding rabbitmq vars and playbooks 2020-12-26 20:39:02 -07:00
nazunalika
496e2d208d Updating/Adding rabbitmq vars and playbooks 2020-12-26 20:36:14 -07:00
nazunalika
6c27e93d7d add rabbitmq requirement 2020-12-26 09:55:46 -07:00
Louis Abel
7bfc3c3b27
Merge pull request #14956 from rocky-linux/develop
Holiday End of Development - IPA, Koji, plus other fixes
2020-12-24 10:51:25 -07:00
nazunalika
942da4ce48 quick correction on vars for koji 2020-12-24 10:45:17 -07:00
Louis Abel
319584355f
Merge pull request #14955 from samveen/langcheck
minor language nits picked
2020-12-24 10:42:52 -07:00
nazunalika
503235ecd3 gitlab ssl changes 2020-12-23 17:02:40 -07:00
nazunalika
83b76d9393 ipa groups 2020-12-23 16:19:28 -07:00
nazunalika
d30b1e6d9a add a note 2020-12-23 12:25:41 -07:00
nazunalika
fe7fb4bb07 quick fixes 2020-12-23 05:21:01 -07:00
nazunalika
7a010775c9 adding kojihub 2020-12-23 03:52:34 -07:00
Louis Abel
b13f8f7841
Merge pull request #14953 from rocky-linux/develop
IPA Privileges
2020-12-21 08:46:35 -07:00
nazunalika
8c1a54dafb Add ipa-getkeytab playbook 2020-12-20 22:45:55 -07:00
nazunalika
4a15dfc093 Adding in missing adhoc playbook 2020-12-20 22:34:55 -07:00
nazunalika
8dc0268a50 IPA Privileges
This release adds support for privileges and roles for the initial IPA
team accounts.
2020-12-20 22:05:52 -07:00
nazunalika
a491898f28 staging idea for koji 2020-12-18 15:52:05 -07:00
Chris Cowley
bae96c0431
Add a section to the repo for architecture (#14944)
* Proposal for monitoring responsibilities
* added an architecture diagram for Prometheus
* install graphviz
* Only run the diagrams action when someone commits a diagram
* Filled out the architecture README
* Install node Prometheus Node Exporter on all hosts

Co-authored-by: Chris Cowley <chris.cowley@fr.clara.net>
2020-12-18 16:03:49 -05:00
nazunalika
c0c8ea1ec6 fixing spelling errors 2020-12-18 01:17:53 -07:00
nazunalika
239ae1a025 Attempt Lab Rollout 2020-12-18 00:43:21 -07:00
nazunalika
e3b6aa652f add custom gitlab template 2020-12-18 00:39:37 -07:00
nazunalika
c6323199f4 Infrastructure GitLab Updates
In this push, we are making a decent amount of updates to the gitlab
playbooks as well as updating the README. See below for the changes:

* README updated for further clarity
* GitLab role with further reconfiguration for group lookups
* GitLab role with further reconfiguration to disable built-in nginx
* nginx configuration added and provided to work with omnibus
* GitLab variables updated
2020-12-17 23:40:14 -07:00
Louis Abel
5383853681
Merge pull request #14947 from nasirhm/add_gitlab_ee_role
[init] Initialize Gitlab EE Role
2020-12-17 14:59:12 -07:00
nasirhm
83283fcf4e
🔧 fix LDAP and Domain name
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-18 02:47:46 +05:00
nazunalika
309b6739b8 ipsilon missing a few vars 2020-12-16 19:35:30 -07:00
nazunalika
f15a9d3db0 adding gitlab primers with ipa fixes 2020-12-16 19:34:13 -07:00
nasirhm
ec22cb4773
🔧 Fix ansible YAML
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-17 01:31:42 +05:00
nazunalika
1ab71a2d4d repo changes and ipa fqdn notes 2020-12-16 00:09:58 -07:00
nazunalika
8e98dc04e0 Ipsilon Ready
This push is here to note that ipsilon is completed and ready to go. The
infrastructure team at some point will need certificates, whether this
is from let's encrypt or otherwise if this service is used.
2020-12-15 20:15:50 -07:00
nazunalika
06f3c0d338 fixing additional errors from testing 2020-12-15 18:26:57 -07:00
nazunalika
8e5cae005d updating ansible readme for lint 2020-12-15 00:31:41 -07:00
Samveen Gulati
2c398aefc2 minor language nits picked 2020-12-15 10:43:04 +05:30
nazunalika
efdd81ea61 adding pre-commit hooks 2020-12-14 18:40:25 -07:00
nazunalika
ebaf9ca045 adding in pre-commit 2020-12-14 18:03:27 -07:00
nazunalika
67eebbe31f adding pre-commit hooks 2020-12-14 18:01:26 -07:00
nazunalika
1811f9343e make linter happy 2020-12-14 17:52:49 -07:00
nazunalika
08f6ff985b make linter happy 2020-12-14 17:47:22 -07:00
nazunalika
de05e55cef IdM and Variable Fixes
Identity management Team in their testing found several issues while
testing the playbooks. To ensure they continue working on deployment and
in testing, we have identified and fixed the following issues:

- Inventory variables moved to separate main.yml files were not in yaml
  format
- role-rocky-ipa-client.yml was not directly pointing to its
  collection/role
- role-rocky-ipa-replica.yml was not directly pointing to its
  collection/role
2020-12-14 16:33:16 -07:00
nazunalika
b282c97daa making sure all systems get the ipa client vars 2020-12-14 14:31:01 -07:00
nasirhm
8f3bf01869
🎉 Initialized Playbook for Gitlab EE configuration.
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-15 01:57:09 +05:00