Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-05-24 | move haproxy-template to modules/site_haproxy | Christoph | |
2014-05-22 | remove old classes | Christoph | |
site_mx::haproxy and site_webapp::haproxy only included site_haproxy. They didn't do anything else. So just include site_haproxy in manifests/init.pp and remove the unused classes | |||
2014-05-22 | fix haproxy config if webapp and mx run on the same host | Christoph | |
the problem was, that both site_mx::haproxy and site_webapp::haproxy declared the same resource. I fixed it by moving that resource to site_haproxy. Since that gets included by both classes, everything works like a charm | |||
2014-05-14 | revert accidental change to webapp config template | Azul | |
2014-05-14 | use hash for provider service levels | Azul | |
We want to access service levels by means of the id stored in the user record. With a hash we don't have to loop through all elements to find the one with a given id and still can use arbitrary strings and do not rely on the order of the array. Also it's the format the webapp is expecting right now. | |||
2014-04-29 | require json so we can use it to dumpt the service levels | Azul | |
2014-04-24 | bring service_levels into webapp config - #5527 | Azul | |
including the default_service_level | |||
2014-02-27 | check syslog for webapp errors | varac | |
2014-02-10 | move leap_webapp.conf template to common.conf which is included by the ↵ | varac | |
nagios and webapp node (#5096) | |||
2014-01-22 | anonymize webapp ips (Bug #4896) | varac | |
2014-01-08 | fix webapp couchdb.yml to be couchdb.yml not couchdb.yml.webapp | elijah | |
2014-01-02 | added support for minimum client version checking | elijah | |
2013-11-28 | fix cwd in webapp cronjobs | Micah Anderson | |
Change-Id: I2e189bf5e209c731077539a57f9b334ac66cd25b | |||
2013-11-28 | remove admin access from webapp | Micah Anderson | |
Change-Id: Ib2ce0d38a8e4dd30ae6842bfb5579d9c3dd10f18 | |||
2013-11-27 | add webapp cron entries to cleanup sessions and tokens (#4572) | Micah Anderson | |
Change-Id: Ic1ef7e25f07cbbbcea9bcc90248479009904303e | |||
2013-11-22 | improvements to webapp deployment: allow for greater customization, allow ↵ | elijah | |
for custom git source, improve apache config. | |||
2013-11-22 | added custom index.html | elijah | |
2013-10-11 | /etc/haproxy/haproxy.cfg changed randomly (Feature #4111) | varac | |
2013-10-11 | fixed issues from https://review.leap.se/r/98/ | varac | |
2013-10-11 | install ruby-dev for nickserver/webapp (#4079 + #4080) | varac | |
2013-09-24 | deploy client_ca on webapp node | varac | |
2013-09-24 | webapp leftover for seperate cert and key deployment (Feature #3918) | varac | |
2013-09-24 | added site_config::x509::client_ca::cert and ↵ | varac | |
site_config::x509::client_ca::key for client_ca deployment (#3917) | |||
2013-09-24 | https://bitmask.net/ca.crt gives 403 Forbidden (Bug #3919) | varac | |
2013-09-24 | move commercial x509 deployment to site_x509 (Feature #3889) | varac | |
2013-09-24 | seperate cert and key deployment (#3918) | varac | |
2013-09-22 | Merge branch 'api-crt-3384' into develop fixes #3384 | kwadronaut | |
2013-09-22 | adding fqdn as default servername and moving service.domain to ServerAlias ↵ | kwadronaut | |
(fixing #3384) node name and dns fqdn could be different Also note that on local deploys that warning from #3384 will continue to exist (because of dns) | |||
2013-09-20 | use newer haproxy_servers macro in order to allow couchdb and webapp to be ↵ | elijah | |
on the same node (requires latest leap_cli) | |||
2013-09-20 | fix whitespace issues from https://review.leap.se/r/82 | varac | |
2013-09-19 | fix x509 path in webapp config.yml.erb (#3894) | varac | |
2013-09-19 | webapp: Depend services on deployment of default key, cert and ca (Feature ↵ | varac | |
#3838) | |||
2013-09-19 | only deploy x509 stuff for nodes if it existes in hiera (Feature #3875) | varac | |
2013-09-18 | Setup a class dependency for every tag 'leap_service' to make sure that ↵ | Micah Anderson | |
shorewall is setup before the service is setup. This is necessary due to the strict initial firewall that stops various service setup operations from happening, but is relaxed once shorewall is setup properly (#3782) Change-Id: Ia9640c4118aa0053cdb99e7bc11860fed5527501 | |||
2013-09-13 | setup stunnel config to use default x509 cert,key+ca (#3837) | varac | |
* fix stunnel setups for couchdb, mx, webapp services | |||
2013-09-13 | use define instead of class for site_stunnel::setup (#3817) | varac | |
so it can be called multiple times | |||
2013-09-05 | require that shorewall is up before running bundler commands, it needs to ↵0.3.0rc1 | Micah Anderson | |
pull things from git (#3756) Change-Id: If404452c54dedb7a39a910994dc68309257d351d | |||
2013-09-04 | change git repository clone URIs from git:// to https:// (#3732) | Micah Anderson | |
Change-Id: Ic700fec9cfb8e8474fb65dbdd4a1a537bf586ec9 | |||
2013-09-02 | specify RAILS_ENV when calling bundle assets-precompile (fixes #3638) | Azul | |
We currently disable the billing gem in production while it's on in development and test. Therefore bundler will not install its dependencies - in particular the braintree gem when deploying. Since the RAILS_ENV was not specified rake was called with the default of 'development'. It therefore tried to load the development gems and failed when looking for 'braintree'. Specifying the production RAILS_ENV fixes this. It looks like we'll always need to specify RAILS_ENV when calling rake or we might want to export it to the environment in a separate task or the user config files such as .bashrc | |||
2013-08-29 | create individual classes for the apache modules so they can be included ↵ | Micah Anderson | |
more than once in different locations, depending on what services are configured on a node (#3612) Change-Id: Iff064d3d67baa132fb5198fea741522ab4e71770 | |||
2013-08-28 | require VCS repo before git assume-unchanged (feature #1608) | Azul | |
2013-08-27 | move git::changes into git module, whitespace fix | Azul | |
2013-08-27 | specify cwd when using git:changes | Azul | |
2013-08-27 | git:changes expect changes to certain files | Azul | |
You can either ensure assume-unchanged or ensure those changes are tracked. Used to keep the git status clean. | |||
2013-08-27 | make git forget about the changes due to symlinking files | Azul | |
Git normally tracks the dummy files we replace with symlinks. So we tell it to ignore these changes on deploy. | |||
2013-08-14 | Fix problem where webapp production.log had the wrong permissions - #3471 | Micah Anderson | |
Change-Id: I20a6ecc43e36fc1e8416c46f7e4d14726995d2f2 | |||
2013-07-30 | webapp - use hiera config "webapp.admins" for the list of admin usernames, ↵ | elijah | |
default to empty list. | |||
2013-07-30 | added webapp.secure flag (turns on secure cookies and HSTS) | elijah | |
2013-07-30 | site_webapp - add support for haproxy weights and backup servers (resolves ↵ | elijah | |
#3278) | |||
2013-07-29 | site_webapp bugfix - get compile_assets to run by ensuring .scss files are ↵ | elijah | |
created beforehand and have the correct permissions. |