summaryrefslogtreecommitdiff
path: root/provider_base
AgeCommit message (Collapse)Author
2016-02-10resolves #7646: leap_cli should fail when soledad and couchdb service are ↵elijah
seperated
2016-01-26pin webapp to 0.8elijah
2015-12-10[bug] Configure default sources.platform.apt.basicvarac
Providing a custom sources.platform.apt.basic value worked with the last commit, but without that the platform would fail. So we provide a default value now in provider_base/common.json, which can get overridden.
2015-10-27[bug] Add leap_mx username to soledad.confvarac
- Tested: [unstable.pixelated-project.org] - Related: https://github.com/pixelated/pixelated-platform/issues/127
2015-10-13add clamav filtering, with sanesecurity signature updating and provider ↵Micah
whitelisting (#3625) Change-Id: I15985ca00ee95bc62855f098a78e364ebbc32616
2015-10-06[feat] Remove tapicero from more placesvarac
Remove from: - platform white-box tests (couchdb user ACLs, tapicero daemon test) - provider_base/ dir that handles the compilation of the hiera config file - Resolves: #7501
2015-09-24added firewall information to nodes (needed for `leap compile firewall`)elijah
2015-09-10sshd: let nodes change default AllowTcpForwardingelijah
2015-09-09ensure that the webapp has the service levels config it requires.elijah
2015-09-09updates to zone compile and tags/development.json to be compatible with the ↵elijah
definition of 'domain' in provider.env.json.
2015-09-03service definition .json files should not refer to properties inherited from ↵elijah
common.json. closes #7423
2015-08-31mx: added mx.key_lookup_domain propertyelijah
2015-08-19allow ca_cert_uri to be configuredelijah
2015-08-19mv commands and macros to lib/leap_clielijah
2015-08-07move 'enabled service' calculation to a macro.elijah
2015-08-03allow_registration should always be false if enrollment_policy is 'closed'elijah
2015-08-03webapp: add support for customizing localeselijah
2015-07-28Support RBL blocking of incoming mail (#5923)Micah Anderson
Set zen.spamhaus as the default rbl Change-Id: Ic3537d645c80ba42267bab370a1cf77730382158
2015-06-30pin leap_web to 0.7.1elijah
2015-05-06Merge branch '0.7.0' into developMicah Anderson
2015-05-06Change http.debian.net to now official name: httpredir.debian.org (#6932)Micah Anderson
Change-Id: I1e411ef3ffa2ef7fdcae90081f530f44023a96b6
2015-05-05improved `leap cert csr` error messageelijah
2015-05-05take advantage of improved environment binding in leap_cli (requires v 1.7.1)elijah
2015-05-05much faster secret generation (now they only get generated when needed)elijah
2015-04-30added a bunch more forbidden usernames0.7.0rc1elijah
2015-04-21block username 'vmail'elijah
2015-03-30set platform version 0.7elijah
2015-03-30added support for rotating couchdb databases.elijah
2015-03-19don't set a lower --fragment by default yet (not compatible with android client)elijah
2015-03-18pin webapp to version/0.6.1elijah
2015-03-05change default MTU to 1400 (#6745)Micah Anderson
Change-Id: Ia4b93776c6ae316b47f6e0b8e2763aa6fa9cab92
2015-03-03pin client version to >=0.7 (#6743)Micah Anderson
Change-Id: I66f12a04bf92fbda77284665bc1186b10f4c2e15
2015-02-04upgrade to tapicero 0.6.1, to remove auth in process list (closes #6697)elijah
2015-02-04consolidate sources into common.jsonelijah
2015-01-28update default provider.json to use the (now) correct expiration time ↵elijah
format. requires new leap_cli.
2015-01-27provide way to customize all three apt sources urls (basic, security, backports)varac
Change-Id: I5542b320bb1edb52c63350b5e4fd2af681991fb5
2015-01-27provide apt.url key that can be customized in provider.jsonvarac
Change-Id: Ic8bcca7fde25b4eb540aab8cc4114748b9b2cfd7
2014-12-22Merge remote-tracking branch 'elijah/bugfix/multiplesshkeys' into developMicah Anderson
2014-12-21correctly generate .onion addresses. closes #6559elijah
2014-12-21fixed bug that prevented all users/*/*_ssh.pub keys from getting added to ↵elijah
authorized_keys
2014-12-10https://leap.se/code/issues/6477#note-11varac
Change-Id: I3094be3ef60108f4f2cad5239b0b2f288b39620d
2014-12-10Fix internal domain name generation (#6477)varac
Before, under certain circumstances, the internal domain names were capped from i.e. 'dev.example.com' to 'dev.i' Change-Id: Ibd4998a7ba128dcbce5ccb9d0a52006ed4431f01
2014-12-09add 'local' contactgroup to local environmet monitoring nodevarac
Change-Id: I1618a8c7f2f7c905b354dbe363fc91b690725479
2014-12-02Change nagios mail To: Header to contain the actual platform environment's ↵Micah Anderson
contact email (Bug #6466) Change-Id: Ib86ae771e0ac3b6f329a517a8a31c9ec54d33a05
2014-11-25include a host information in ssh_config for ever possible host a given node ↵elijah
might communicate with. this includes port and host key algorithm. closes #6432
2014-11-24bind webapp to version/0.6 branchelijah
2014-11-24fixed bug when there is no vpn serviceelijah
2014-11-10change default openvpn fragment size back to 1500 so we don't break backward ↵elijah
compatibility with older clients
2014-11-10openvpn - support customizing --fragment, and set default to 1400elijah
2014-11-04tor - to activate hidden service, now set tor.hidden_service.active = trueelijah