summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2013-02-06allow outgoing traffic moved to site_shorewall::defaultsvarac
2013-02-06allow port 80 to tor servervarac
2013-02-06add basic tor servicevarac
2013-02-06tor service defaultsvarac
2013-02-06nagios: don't check openvpn, check cmd doesn't workvarac
2013-02-06include shorewall config for webapp and couchdbvarac
2013-02-06site_config::default : include site_shorewall::defaultsvarac
2013-02-06configure shorewall for couchdb, tor, webappvarac
2013-02-06allow all outgoing trafficvarac
2013-02-06Restructuring site_shorewallvarac
site_shorewall::defaults can be used on every host, it configures a basic firewall, which blocks everything from outside except ping + ssh, and allows outgoing traffic for http, git, dns.
2013-02-06added submodule torvarac
2013-02-04compile assets for webapp, fixes #1628varac
2013-02-03Increase Exec[bundler_update] timeoutvarac
Exec[bundler_update] can take a really long time, increasing timeout from 300s (default) to 600s fixes Increase command timeout for Exec[bundler_update] (Feature #1643)
2013-02-01moved concat::setup to site_config::defaultvarac
Because in site.pp it didn't get the tag "leap_base" and would not be declared with leap cli's default puppet tags. Fixes: parent directory /var/lib/puppet/concat does not exist (Feature#1625)
2013-02-01update x509 submodule to get key owner enhancementMicah Anderson
2013-02-01automatic update of submodule puppet_aptvarac
2013-02-01disable nagios debug mode (Feature #1551)varac
2013-01-31update the x509 submodule to get non-root application access to key file ↵Micah Anderson
enhancement put the leap-webapp user in the 'ssl-cert' group pass group => 'leap-webapp' to the leap_client_ca.key so the application can access it
2013-01-31install an apache Directory override block to disable passenger for nagios, ↵Micah Anderson
if the node is a monitor node
2013-01-31tag 'base' is a bad idea because it invokes apache::base as wellvarac
2013-01-31Merge branch 'develop' of ssh://code.leap.se/leap_platform into developvarac
2013-01-31install etckeeper on all nodesvarac
2013-01-31Merge branch 'develop' of ssh://leap.se/leap_platform into developelijah
2013-01-31added /etc/openvpn/ca_bundle.pem in order to allow multiple CA certs to be used.elijah
2013-01-31Merge branch 'feature/tags' into developvarac
2013-01-31tag 'service' for all service classesvarac
2013-01-31changed tag default to 'base'varac
2013-01-31just purge the nagios3/conf.d content, not the dir itselfvarac
2013-01-31include site_nagios so every subclass inherits tag 'service'varac
2013-01-31puppet tags: site_config::default and site_config::slowvarac
2013-01-30codename is unavailable in the site_apt module, but $::lsbdistcodename is ↵Micah Anderson
fine here
2013-01-30automatic update of submodule puppet_aptvarac
2013-01-30provide a fall-back apt.sources.d entry that is disabled by default (#1348)Micah Anderson
This file will have the .disabled removed by the apt wrapper when the apt-get update fails
2013-01-30start shorewall on vagrant nodes too (#1467)varac
2013-01-30lintedvarac
2013-01-29test the $webapp['img_dir'] variable to see if it is undef or not, the defaultMicah Anderson
in the json is ~ (nil), which ends up being undef in puppet (closes #1575)
2013-01-29added support for client ca cert in site openvpn.elijah
2013-01-29eliminate dynamic lookup deprecation warnings for site_couchdb::apache_ssl_proxyMicah Anderson
2013-01-29automatic update of submodule puppet_couchdbvarac
2013-01-29fix variable name for re-ordered factMicah Anderson
2013-01-29setup special casing for vagrant/virtualboxMicah Anderson
2013-01-29fix variable scopingMicah Anderson
2013-01-29fix syntax error from enclosing variables in curlyMicah Anderson
2013-01-29it seems facts cannot start with numbersMicah Anderson
2013-01-29create a special case for vagrant machines that need to have both interfaces inMicah Anderson
the net zone so we dont lock ourselves out during deploy, but also are able to access the internet
2013-01-29enclose the variables in curly braces, as recommended by puppet-lintMicah Anderson
2013-01-29add a new fact that provides a fact for each configured ip address, telling youMicah Anderson
which interface has it (essentially the inverse of the ipaddress_${interface} fact). Switch the hiera lookups of the $interface, which was pulling from the .json to pull instead from the above fact, see #1547 and #1548
2013-01-29Purge nagios config files on every run (Feature #1544)varac
2013-01-29fix deprecation warnings in site_configvarac
2013-01-29start shorewall on deploy (fixes #1122)varac
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-01 02:30:52 +0000