| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-01-29 | create a special case for vagrant machines that need to have both interfaces in | Micah Anderson | |
| the net zone so we dont lock ourselves out during deploy, but also are able to access the internet | |||
| 2013-01-29 | enclose the variables in curly braces, as recommended by puppet-lint | Micah Anderson | |
| 2013-01-29 | add a new fact that provides a fact for each configured ip address, telling you | Micah Anderson | |
| which interface has it (essentially the inverse of the ipaddress_${interface} fact). Switch the hiera lookups of the $interface, which was pulling from the .json to pull instead from the above fact, see #1547 and #1548 | |||
| 2013-01-29 | Purge nagios config files on every run (Feature #1544) | varac | |
| 2013-01-29 | fix deprecation warnings in site_config | varac | |
| 2013-01-29 | start shorewall on deploy (fixes #1122) | varac | |
| 2013-01-29 | run stage declaration moved to site.pp | varac | |
| 2013-01-29 | apt-get update + dist-upgrade in initial stage | varac | |
| 2013-01-29 | automatic update of submodule puppet_apt | varac | |
| 2013-01-28 | set nagiosadmin htpasswd | varac | |
| 2013-01-28 | re-add nagios service check openvpn | varac | |
| 2013-01-28 | disabled notice about nagios services not deployed | varac | |
| 2013-01-28 | use check_https for website | varac | |
| 2013-01-28 | don't deploy openvpn check until we fix #1546 | varac | |
| 2013-01-28 | deploy openvpn check | varac | |
| 2013-01-28 | main nagios config: allow external cmds, debug mode | varac | |
| 2013-01-28 | automatic update of submodule puppet_nagios | varac | |
| 2013-01-28 | adapted new hiera config, see #1546 | varac | |
| 2013-01-28 | automatic update of submodule puppet_nagios | varac | |
| 2013-01-27 | site_nagios: add hosts + services | varac | |
| 2013-01-26 | beginning of puppet/modules/site_nagios | varac | |
| 2013-01-26 | added submodule nagios | varac | |
| 2013-01-24 | update shorewall module to latest release for fixes | Micah Anderson | |
| 2013-01-23 | require that the unbound package is installed before attempting to make | Micah Anderson | |
| sub-directories under /etc/unbound (#1412) | |||
| 2013-01-21 | client ca -- configure the webapp with the client ca | elijah | |
| 2013-01-21 | update augeas submodule to get new upstream lints and package fixes for wheezy | Micah Anderson | |
| 2013-01-20 | don't run if another apt-get process is running | varac | |
| 2013-01-20 | configure fqdn for host | varac | |
| 2013-01-20 | remove bind9 service stop (#1421) | varac | |
| 2013-01-20 | configure fqdn for host | varac | |
| 2013-01-18 | linted | varac | |
| 2013-01-18 | create cronjob for leap_ca | varac | |
| 2013-01-17 | require the augeas class before doing any augeas operations (#1215) | Micah Anderson | |
| 2013-01-17 | notify unbound when these configuration files change | Micah Anderson | |
| 2013-01-17 | fix typo in cidr variable name | Micah Anderson | |
| 2013-01-17 | change to using the CIDR notation for unbound access list | Micah Anderson | |
| 2013-01-17 | fully qualify the variables that are used in the vpn gateway resolver | Micah Anderson | |
| 2013-01-17 | unfortunately the version of unbound that is in wheezy does not support wildcard | Micah Anderson | |
| include directives, so this commit works around this by doing something less elegant than before. When we have the newer unbound available, we should switch to that method instead. | |||
| 2013-01-17 | fix unbound access control | Micah Anderson | |
| 2013-01-16 | setup openvpn gateway resolver to listen on the udp/tcp virtual network ips so | Micah Anderson | |
| that queries can be made from clients on the vpn | |||
| 2013-01-16 | update unbound submodule to fix infinite service restart problem | Micah Anderson | |
| 2013-01-16 | Swtich from bind9 as the local caching resolver to unbound. This will enable us | Micah Anderson | |
| to do tor lookups over DNS on servers, if tor services are defined. To do this, we remove the bind9 configurations from site_config::resolvconf.pp and replace it with site_config::caching_resolver with a basic unbound configuration that can be used everywhere. The unbound configuration enables a /etc/unbound/conf.d directory for additional config snippits that can be dropped in from other places. This will be used for setting up different interfaces in the vpn gateway, for example. There will be a set of transition package/file absent blocks to clean up providers. | |||
| 2013-01-16 | fix syntax error | Micah Anderson | |
| 2013-01-16 | setup site_unbound with a basic caching-only configuration and include that on | Micah Anderson | |
| the openvpn gateway (see #1172) | |||
| 2013-01-16 | remove unnecessary include that was left over from ↵ | Micah Anderson | |
| c2d57624c15dfaff038f9991f04ade46b5ad1d40: | |||
| 2013-01-15 | add stdlib and unbound submodules | Micah Anderson | |
| 2013-01-13 | added ability to customize the webapp appearance | elijah | |
| 2013-01-11 | configure webapp with correct domain | elijah | |
| 2013-01-03 | using master branch for webapp now. | Azul | |
| develop branch is no longer used in webapp dev and will be removed. | |||
| 2012-12-19 | webapp api now uses a customizable port (so that we don't try to rely on SNI ↵ | elijah | |
| for hosting two TLS domains on one IP). | |||
 |
index : leap_platform.git | |
| [leap_platform] | git repository hosting |
| summaryrefslogtreecommitdiff |