leap_platform.git - [leap

Age	Commit message (Collapse)	Author
2016-11-04	Additional entries/updates0.9.0	Micah Anderson

2016-11-01	bugfix: allow 'leap facts update' to work again.	elijah

2016-10-25	Change CI build webapp source branch to master.	Micah Anderson
	The develop branch was removed, and current master is the same as develop was before.
2016-10-24	Set X-XSS-Protection HTTP response header to '1'.	Micah Anderson
	This HTTP response header enables the Cross-site scripting (XSS) filter built into some modern web browsers. This header is usually enabled by default anyway, so the role of this header is to re-enable the filter if it was disabled maliciously, or by accident.
2016-10-24	Set X-Content-Type-Options nosniff.	Micah Anderson
	Setting this header will prevent the browser from interpreting files as something else than declared by the content type in the HTTP headers. This will prevent the browser from MIME-sniffing a response away from the declared content-type. When this is not set, older versions of Internet Explorer and Chrome perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type.
2016-10-20	[bug] properly set 'enrollment_policy' in provider.json	elijah

2016-10-20	Merge branch 'twisted_backports' into develop	varac

2016-10-20	Merge branch 'soledad_ordering' into develop	varac

2016-10-20	Merge branch 'upgrade/nickserver' into 'develop'	Varac
	upgrade: nickserver version 0.9.x See merge request !49
2016-10-20	upgrade: nickserver version 0.9.x	Azul

2016-10-18	Setup couch for soledad before starting soledad	varac
	When the soledad couch user is not present, soledad-server refuses to start, so we need to ensure that couch is setup correctly before starting soledad-server. see https://leap.se/code/issues/8535
2016-10-18	Lint site_couchdb::setup	varac

2016-10-18	[feat] Use twisted 16.2 from jessie-backports	varac
	New soledad packages now depend on Twisted 16.2.0 (see https://leap.se/code/issues/8412), so we need to pin twisted to get installed from jessie-backports. - Resolves: #8418
2016-10-18	lint site_mx class	varac

2016-10-18	Fix Are_daemons_running test for nickserver	varac

2016-10-18	Use docker for CI testing	varac

2016-10-18	Use random vm name when running local	varac
	when using gitlab-runner locally, CI_BUILD_ID is always 1 which will conflict with running/terminating AWS instances in subsequent runs therefore we pick a random number in this case
2016-10-18	Use caching in setup.sh	varac

2016-10-18	Include secret variables from gitlab ci settings	varac
	- Assemble cloud.json from aws credential env vars - Deploy ssh private key from env var
2016-10-18	Add public sshkey of gitlab-runner for platform builds	varac

2016-10-18	Checkin cloud.json template without credentials	varac

2016-10-18	Add timestamps to build output	varac

2016-10-18	Gitignore some files needed for cibuilds	varac

2016-10-18	Use leap vm for ci builds	varac

2016-10-18	Dont track facts.json and users/gitlab-runner	varac

2016-10-18	Dont track provider/files/ssh/known_hosts	varac

2016-10-18	Lint ci-build.sh	varac

2016-10-18	Do a dist-upgrade in 'node init'.	Micah Anderson
	Starting with a recent debian stable point release update, it is possible that the system is in an inconsistent library state. For example, puppet could not be run because the libraries on the system were not the ones that the puppet package was built against. So that means that deploys could not happen until we've dont a dist-upgrade.
2016-10-11	Use puppet-catalog-test from git to circumvent deprecation warn	varac

2016-10-11	Add instructions for running tests	varac

2016-10-04	generate utf8 locale solves #85110.9.0rc1	kwadronaut

2016-10-04	[bug] fix Tor hidden service key generation	elijah

2016-09-15	leap vm: grab ssh host key when adding a new vm	elijah

2016-09-15	leap vm: require 'fog/aws' instead of all of 'fog'	elijah

2016-09-14	refresh /docs/	elijah

2016-09-14	updated docs	elijah

2016-09-14	[bugfix] leap vm: make the default instance type 't2.nano'	elijah

2016-09-14	leap vm: fix typo (closes #8468)	elijah

2016-09-13	[bugfix] static sites: only enable hidden service by default if one domain ↵	elijah
	is configured The problem is that we have a single onion address per server, so if more than one domain is configured we need to make sure they don't both try to use the same onion address.
2016-09-08	Merge branch 'clamd_dependencies' into develop	varac

2016-09-08	Merge branch 'ensure_clamav_running' into develop	varac

2016-09-08	start clamav after definitions are downloaded	Christoph Kluenter
	freshclam might not be able to start clamav via the socket because the socket might not be there. This systemd unit watches for the definitions and then starts clamav. Resolves: #8431
2016-09-08	Merge branch 'check_mk_add_services' into develop	varac

2016-09-08	Add systemd::enable define	varac

2016-09-07	Update contributing docs regarding 0xacab.org CI	varac

2016-09-07	Fix dependencies for clamd service	varac
	Sometimes, after a deploy from scratch `leap test` fails because clamd could not get started (even when the deploy log says so). This fixes the dependencies of all resources needed in order to let clamd start reliable. Resolves: #8431
2016-09-06	leap cert renew: added more messages in case anything goes wrong	elijah

2016-09-06	leap run: stream results by default if there is only one node	elijah

2016-09-06	Added known issues to CHANGES.md	elijah

2016-09-06	[feat] Add check_mk config values, dont set them	varac
	When setting values like ignored_services = [...] this will override other `ignored_services` that might get parsed before. Instead, we use `+=` so multiple files can add sth to this config value.