| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-04-10 | clean up ca_daemon things, it is not used any longer because it has been ↵ | Micah Anderson | |
| included in the web app (#1978) remove site_ca_daemon module and configuration in site.pp as well as the provider_base/services/ca.json | |||
| 2013-04-04 | add Erlang Distributed Node Protocol Port json entry under bigcouch | Micah Anderson | |
| setup ednp_server and ednp_client stunnels update couchdb puppet submodule to support configurable ednp_port parameter and general module cleanup pass ednp_port to couchdb setup so that it is configured in the vm.args template clarify in comments the difference between the epmd and ednp ports remove hard-coded erlang_vm_port variable and instead setup shorewall to allow for the stunnel connection only setup dnat rules for the ednp client connections | |||
| 2013-04-04 | rename bigcouch.port to more accurate bigcouch.epmd_port | Micah Anderson | |
| 2013-04-04 | rename the bigcouch_replication_[server,client] to be the more accurately, and | Micah Anderson | |
| shorter named epmd (erlang port mapper daemon) | |||
| 2013-04-02 | Merge branch 'develop' of ssh://leap.se/leap_platform into develop | elijah | |
| 2013-04-02 | added password salt to services/couchdb.json (requires latest leap_cli) | elijah | |
| 2013-04-02 | switch to using stunnel_client and stunnel_server leap_cli macros | Micah Anderson | |
| add bigcouch_replication_clients to couchdb.json change site_couchdb/manifests/stunnel to use stunnel_client and stunnel_server generated hiera values to setup the stunnels for the couch_server connections, and the bigcouch_replication_server and bigcouch_replication_clients tunnels instead of using hard-coded ips and ports. also change the pid names to be more consistent with what the tunnels are and are named | |||
| 2013-04-02 | updated shorewall dnat hiera values for bigcouch cluster protocol | varac | |
| 2013-04-02 | add stunnel hiera values to provider_base/services/couchdb.json for bigcouch ↵ | varac | |
| cluster protocol | |||
| 2013-04-02 | added stunnel config for bigcouch communication | varac | |
| 2013-03-28 | added stunnel_server | elijah | |
| 2013-03-19 | add webapp secret token that pulls from hiera a 'secret' | Micah Anderson | |
| 2013-03-19 | create a separate couchdb.yml.admin that contains the couchdb admin ↵ | Micah Anderson | |
| privileges, putting the unprivileged ones in as user webapp in couchdb.yml. This allows us to migrate the couchdb design docs on deployment, but use an unprivileged user the remainder of the time | |||
| 2013-03-17 | added support for "limited" service levels (although vpn is not yet actually ↵ | elijah | |
| rate limited). | |||
| 2013-03-16 | the development tag now specifies an alternative provider domain. this ↵ | elijah | |
| requires that we use domain.full_suffix instead of provider.domain, whenever possible. | |||
| 2013-03-12 | Merge branch 'feature/bigcouch' into develop | varac | |
| Conflicts: provider_base/services/couchdb.json | |||
| 2013-03-10 | added bigcouch:cookie to services/couchdb.json | varac | |
| 2013-03-08 | couch - explicitly configure couch port | elijah | |
| 2013-03-08 | node environment: switch from production=true to environment=production. ↵ | elijah | |
| requires latest leap_cli | |||
| 2013-03-05 | change json comment to '//' | elijah | |
| 2013-02-27 | openvpn -- added support for optional "free" rate-limited service via ↵ | elijah | |
| special client certificates with the FREE prefix in the common name. | |||
| 2013-02-12 | temporarily make the webapp use the admin couchdb user. waiting on ↵ | elijah | |
| https://leap.se/code/issues/1163 | |||
| 2013-02-08 | changed contact_email to tor.contacts | elijah | |
| 2013-02-08 | make monitor service include the nodes that are of a similar type (e.g. ↵ | elijah | |
| production or local). | |||
| 2013-02-06 | tor service defaults | varac | |
| 2013-01-28 | update services/monitoring.json to include openvpn_gateway_address | varac | |
| 2013-01-28 | added 'monitor' service to provider_base | elijah | |
| 2013-01-21 | client ca -- configure the webapp with the client ca | elijah | |
| 2013-01-13 | added ability to customize the webapp appearance | elijah | |
| 2012-12-19 | webapp api now uses a customizable port (so that we don't try to rely on SNI ↵ | elijah | |
| for hosting two TLS domains on one IP). | |||
| 2012-12-18 | ca daemon -- ca daemon needs the x509 cert/key for the CA, not for the server. | elijah | |
| 2012-12-07 | added hostname tracking and late evaluation. new key "hosts" added, for ↵ | elijah | |
| building /etc/hosts. also, now ssh.known_hosts only includes what is necessary. | |||
| 2012-12-07 | ca -> ca_daemon in site.pp and services/ca.json | varac | |
| 2012-12-07 | added couchdb hiera variables to services/ca.json | varac | |
| 2012-11-28 | updated service templates to reflect new command names | elijah | |
| 2012-11-27 | fix webapp: only list couchdb hosts that match node's 'local' value. | elijah | |
| 2012-11-23 | get rid of paths in webapp.json, use symbolic filenames instead. | elijah | |
| 2012-11-22 | clean up openvpn and x509 paths | elijah | |
| 2012-11-21 | added x509.commercial_ca_cert. x509.ca_cert is now optional, except for webapp. | elijah | |
| 2012-11-17 | added better warnings to openvpn service when files are missing | elijah | |
| 2012-11-17 | added commercial_cert to webapp | elijah | |
| 2012-11-15 | added eip-service.json | elijah | |
| 2012-11-14 | added provider_base (latest leap_cli required) | elijah | |
 |
index : leap_platform.git | |
| [leap_platform] | git repository hosting |
| summaryrefslogtreecommitdiff |