summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2013-03-08node environment: switch from production=true to environment=production. ↵elijah
requires latest leap_cli
2013-03-07increase Exec timeout for dist_upgradevarac
2013-03-07automatic update of submodule couchdbvarac
2013-03-05change json comment to '//'elijah
2013-02-27openvpn -- added support for optional "free" rate-limited service via ↵elijah
special client certificates with the FREE prefix in the common name.
2013-02-27language in the Readmekwadronaut
2013-02-26require that the package unbound be installed before trying to write to itsMicah Anderson
configuration file, this addresses issue #1853 - [vpn1] err: /Stage[main]/Site_openvpn::Resolver/Line[add_tcp_resolver]/Exec[echo 'server: include: /etc/unbound/conf.d/vpn_tcp_resolver' >> '/etc/unbound/unbound.conf']/returns: change from notrun to 0 failed: echo 'server: include: /etc/unbound/conf.d/vpn_tcp_resolver' >> '/etc/unbound/unbound.conf' returned 2 instead of one of [0] at /srv/leap/puppet/modules/common/manifests/defines/line.pp:45
2013-02-26missed another require => Package['shorewall'] on the file resources in ↵Micah Anderson
site_shorewall
2013-02-23adding angkat familykwadronaut
2013-02-21changed submodule urlMicah Anderson
2013-02-21linted a bitvarac
2013-02-21lintedvarac
2013-02-21lintedvarac
2013-02-12make sure that apt-get update is run before any package is installed (#1745)Micah Anderson
2013-02-12switch to using stdlib's standard stagesMicah Anderson
2013-02-12remove the apt-get autoclean from the initial apt-get update, this just ↵Micah Anderson
slows things down and I don't see a need for it
2013-02-12missed one require => Package['shorewall'] on of the file resources in ↵Micah Anderson
site_shorewall
2013-02-12temporarily make the webapp use the admin couchdb user. waiting on ↵elijah
https://leap.se/code/issues/1163
2013-02-12file resources that make changes to shorewall need to make sure that ↵Micah Anderson
shorewall is installed first (#1741)
2013-02-12remove unused commented-out lineMicah Anderson
2013-02-12update shorewall submodule to get fix for augeas package dependency problemMicah Anderson
2013-02-12Merge remote-tracking branch 'origin/develop' into bundle-and-precompile-as-userMicah Anderson
2013-02-12fixed shorewall is blocking api port (Bug #1735)varac
2013-02-11duplicate shortwall service definitions now inclduded from services/*varac
2013-02-10Merge branch 'try' into developelijah
2013-02-10set webapp module to use try::file where appropriateelijah
2013-02-10added 'try' moduleelijah
2013-02-10vagrant configuration move to Leapfileelijah
2013-02-09run bundler and rake assets:precompile as normal userAzul
otherwise the generated files will be owned by root and the bundle will be inside roots /home/max
2013-02-09site_shorewall::monitor: allow port 80 + 443varac
2013-02-09re-enabling futon (see #1121)varac
2013-02-08changed contact_email to tor.contactselijah
2013-02-08minor changes to default json: give common a name, add contacts.defaultelijah
2013-02-08make monitor service include the nodes that are of a similar type (e.g. ↵elijah
production or local).
2013-02-08updated README, added LICENSEvarac
2013-02-08couchdb: disable futon (Feature #1121)varac
2013-02-07Merge branch 'feature/tor' into developvarac
2013-02-07configure tor relay nicknamevarac
2013-02-07working tor relayvarac
2013-02-07configure exit policiesvarac
2013-02-06allow outgoing traffic moved to site_shorewall::defaultsvarac
2013-02-06allow port 80 to tor servervarac
2013-02-06add basic tor servicevarac
2013-02-06tor service defaultsvarac
2013-02-06nagios: don't check openvpn, check cmd doesn't workvarac
2013-02-06include shorewall config for webapp and couchdbvarac
2013-02-06site_config::default : include site_shorewall::defaultsvarac
2013-02-06configure shorewall for couchdb, tor, webappvarac
2013-02-06allow all outgoing trafficvarac
2013-02-06Restructuring site_shorewallvarac
site_shorewall::defaults can be used on every host, it configures a basic firewall, which blocks everything from outside except ping + ssh, and allows outgoing traffic for http, git, dns.
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-07 09:08:43 +0000