Sven Ketelsen
|
1b98be3d14
|
DEV-721 increased backup volumes from 3 to 5 (60GB to 90GB)
|
3 years ago |
|
Ketelsen, Sven
|
7c8d548e4d
|
DEV-719 added prometheus polling for ext-bdev-mpmexec-02-connect
|
3 years ago |
|
Sven Ketelsen
|
52d89b5259
|
NOTICKET: changed keycloak version from 14.0.0.2 to 14.0.0.4
- get rid of the stupid small role selects
|
3 years ago |
|
Ketelsen, Sven
|
7e80cfaa0e
|
DEV-711 use servers without shared_service_network
|
3 years ago |
Görz, Friedrich
|
982ec72f28
|
DEV-695: fixing buggy firewall stuff
|
3 years ago |
|
Görz, Friedrich
|
2ef6773ed3
|
DEV-701: changed node-exporter installation from ubuntu-repo to...
|
3 years ago |
|
Ketelsen, Sven
|
d72b6a3fda
|
DEV-700 pmci: bugfix for elastic search feature
|
3 years ago |
friedrich goerz
|
8146179308
|
DEV-699: removed label, added assert-stmt for catching error
|
3 years ago |
|
Ketelsen, Sven
|
d912762383
|
DEV-628 pmci: added spk bz prod configuration as host_vars file
|
3 years ago |
|
Görz, Friedrich
|
2da1f1ee28
|
DEV-687 aachen ip hcloud fw
|
3 years ago |
|
Sven Ketelsen
|
c9c09828bb
|
DEV-677 update hetzner firewall rules for new k8s worker node on dev
|
3 years ago |
Hoan To
|
1bbd04b131
|
DEV-533: added IP for aachen to whitelist and firewalls
|
3 years ago |
|
friedrich goerz
|
64ebe201e2
|
DEV-648: added addintionl k8s node
|
3 years ago |
|
Sven Ketelsen
|
954b961ab6
|
MA-2005 added new feature flag for datasource-action
|
3 years ago |
|
Sven Ketelsen
|
16bee429de
|
DEV-666 added iam configuration for mpmexec
|
3 years ago |
|
Hoan To
|
2a3c384550
|
DEV-587:added prometheus and alertmanager for prodwork01 login credentials to vault
|
3 years ago |
|
Görz, Friedrich
|
fe97fbbab5
|
Bug/dev 659 pgdatadir nospace
|
3 years ago |
|
Sven Ketelsen
|
9f76d05353
|
SMA-1993 new platform qa server
|
3 years ago |
sven.ketelsen
|
36752d1f57
|
DEV-658 increased prodnso prometheus data space
- old 3 * 30
- new 10 * 30
|
3 years ago |
|
sven.ketelsen
|
e5604dd030
|
DEV-656 prepare rollout - added hetzner dns api tokens
|
3 years ago |
|
Ketelsen, Sven
|
e343b5f76e
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Ketelsen, Sven
|
35b94aab8a
|
DEV-649 updated pip to >=2.28.1
|
3 years ago |
|
sven.ketelsen
|
ad6f470920
|
Revert "DEV-647 added hetzner domain smardigo.dev"
This reverts commit 0b7b2a0f01.
|
3 years ago |
|
Ketelsen, Sven
|
0b7b2a0f01
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Görz, Friedrich
|
a9c0e86f36
|
Revert "DEV-647 added hetzner domain smardigo.dev"
|
3 years ago |
|
Ketelsen, Sven
|
7cdc602534
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Hoan To
|
8f4b884ba1
|
added bootstrap for prodwork01
|
3 years ago |
Michael Hähnel
|
9b63b2e5a8
|
DEV-601 added extra configuration for bdev mpmexec demo server
|
3 years ago |
|
Michael Hähnel
|
b9e48a3260
|
DEV-601 added playbook for bdev demo setup
|
3 years ago |
|
friedrich goerz
|
959dcc6832
|
NOTICKET: someone broke sth
|
3 years ago |
|
Hoan To
|
593b1fb743
|
added volume to backup storage space
|
3 years ago |
|
sven.ketelsen
|
c59cd4c715
|
DEV-579 add basic auth to prometheus stack
|
3 years ago |
|
Ketelsen, Sven
|
db57bcb7ca
|
DEV-579 add basic auth to prometheus stack
|
3 years ago |
|
Görz, Friedrich
|
24e5cbf3d9
|
DEV-616: increased vol_count to mitigate disk size problem
|
3 years ago |
|
Hoan To
|
17e923b9b4
|
Feature/dev 583 new cluster
|
3 years ago |
|
Hoan To
|
98c5f39c85
|
DEV-579: added prometheus basic auth
|
3 years ago |
|
Ketelsen, Sven
|
e5e2bdf93e
|
DEV-597 removed ssh keys
|
3 years ago |
|
Ketelsen, Sven
|
9919985e3d
|
DEV-593 updated versions
|
3 years ago |
|
Görz, Friedrich
|
01049bf031
|
DEV-548: testcluster
|
3 years ago |
|
Ketelsen, Sven
|
ac7285bbcf
|
DEV-572: alertmanager metrics
|
3 years ago |
|
Görz, Friedrich
|
01c972771b
|
Rollout main=>qa 13.09.2022
|
3 years ago |
|
Ketelsen, Sven
|
e6dddbe4c9
|
DEV 534: Added hetzner volume to prodnso-postgres-01 for /backups
|
3 years ago |
|
friedrich goerz
|
45f4fd20f3
|
DEV-537: added availability check for kube-awx-domain
|
3 years ago |
|
Hoan To
|
6027ba958e
|
added hoan.to ssh-key
|
3 years ago |
|
friedrich goerz
|
79f2e5b41b
|
DEV-517: added sperate DO for DEVSCR
|
3 years ago |
|
Görz, Friedrich
|
ea79ce2a29
|
DEV-517: changed DO-token due to 'too many request' problem
|
3 years ago |
|
friedrich goerz
|
981f32690e
|
DEV-506/ changed domain names for metric-stack - removed substring kube
|
4 years ago |
|
friedrich goerz
|
2494f2002b
|
DEV-497/DEV-505: added stuff to enable helm secrets in argo
|
4 years ago |
Bas Cancrinus
|
75c780aeae
|
SC-13: Added public ssh key
|
4 years ago |
Philipp Eichhorn
|
ab5cba3c7c
|
SC-05: add devscr variables to create harbor-pull secret
|
4 years ago |
|
Sven Ketelsen
|
06c3589e94
|
SC-20: added harbor entry to etc/hosts file
- access to harbor through loadbalancer with private ip
|
4 years ago |
|
Görz, Friedrich
|
b4ebe98e3c
|
DEV-505: removed settings for CCM for kubespray run => install hetzner-CCM in sep. ansible-run; updated used kubespray version
|
4 years ago |
|
Görz, Friedrich
|
beb013aca3
|
DEV-497: added stuff for gitea to for bootstrapping k8s-clsuter
|
4 years ago |
|
Görz, Friedrich
|
c744eaa837
|
DEV-497: created new branch due to git-problems - dunno what exactly
|
4 years ago |
Eichhorn, Philipp
|
6200deea76
|
DEV-489: add ssh key for philipp.eichhorn@netgo.de
|
4 years ago |
|
Görz, Friedrich
|
84a013d169
|
MOB-148: added k8s cluster for mobene stuff
|
4 years ago |
|
Görz, Friedrich
|
0f69260711
|
DEV-416: added stuff to enable filebeat for postgres + mariabb instances
|
4 years ago |
|
friedrich goerz
|
8180523963
|
DEV-480: decrease prometheus retention time for DEV-stage
|
4 years ago |
|
Sven Ketelsen
|
79bd5863e0
|
bugfix: set connect LOG_LEVELs from DEBUG to INFO
|
4 years ago |
|
Sven Ketelsen
|
05ccebc851
|
feat: added initial password creation to portal
- randomize passwords according to password policies
2 Uppercase Characters
2 Lowercase Characters
2 Special Characters
1 Digits
|
4 years ago |
|
Sven Ketelsen
|
00ca2bc3f1
|
feat: added initial password creation to portal
- randomize passwords according to password policies
2 Uppercase Characters
2 Lowercase Characters
2 Special Characters
1 Digits
|
4 years ago |
|
Sven Ketelsen
|
51c1a79eb1
|
chore: apt: removed duplicated iotop entry
|
4 years ago |
|
Görz, Friedrich
|
0eac3f3d3c
|
DEV-429: mariadb upgrade
|
4 years ago |
|
Sven Ketelsen
|
ea827b727e
|
feat: apt: added iotop to defaults
|
4 years ago |
|
Sven Ketelsen
|
4fbf0b4203
|
feat: added node-exporter for kubernetes servers
|
4 years ago |
|
Görz, Friedrich
|
4bf4167216
|
DEV-386: to use techn.user to scrape metrics for ssh-root-login
|
4 years ago |
|
Görz, Friedrich
|
d4aab3b7d8
|
DEV-473: removed stage specific threshold for replication_lag - flapping...
|
4 years ago |
|
Görz, Friedrich
|
6c6dd5c1ae
|
DEV-442: added threshold for pg_repl_lag to avoid false positives on DEV-stage
|
4 years ago |
|
Sven Ketelsen
|
acee683569
|
feat: added workflow heatmap flag to portal
- SMA_WORKFLOW_HEATMAP_ENABLED: [false]|true
|
4 years ago |
|
Sven Ketelsen
|
9f65ecaf96
|
DEV-447: added new ext server ext-bdev-mpmexec-01
|
4 years ago |
|
Sven Ketelsen
|
f55a892418
|
bugfix: pgadmin username/password
- username: nso.devops@netgo.de
- password: DEV default
- password: QA vault
- password: PRODNSO vault
|
4 years ago |
Michael Haehnel
|
c112a780f1
|
Extend hetzner_ssh_keys for michael.haehnel
|
4 years ago |
|
Michael Haehnel
|
10bd066617
|
DEV-456: Added SSH key for michael.haehnel
|
4 years ago |
|
Görz, Friedrich
|
b4937db87a
|
DEV-375: bugfix to run stuff for testdb only when is set
|
4 years ago |
|
Sven Ketelsen
|
f631b487bd
|
chore: new smardigo workflow version
|
4 years ago |
|
friedrich goerz
|
615121fe72
|
DEV-375: added label for restore- server to ignore them in promehtues
|
4 years ago |
|
Görz, Friedrich
|
03c87e74dc
|
DEV-435: ssh-key rotation for technical users
|
4 years ago |
|
Sven Ketelsen
|
ab790591c2
|
chore: whitelisted admin ips
|
4 years ago |
|
Görz, Friedrich
|
a2fa12ef40
|
DEV-396: changed diskspace alert from predictive to alert of current usage
|
4 years ago |
|
Görz, Friedrich
|
62e0a64f26
|
DEV-414: follow-up tasks prod@hetzner-incident
|
4 years ago |
|
Görz, Friedrich
|
49fc416764
|
DEV-382: enable SSL for postgres-connections
|
4 years ago |
|
Sven Ketelsen
|
d99c9001bf
|
DEV-383: enable SSL for mariadb-connections
|
4 years ago |
|
Sven Ketelsen
|
6297ad954e
|
feat: removed admin ips from firewalls
|
4 years ago |
|
Sven Ketelsen
|
0b18fc9bc2
|
MOB-28: added custom whitelisted ips for services
|
4 years ago |
|
Sven Ketelsen
|
62fa239b6f
|
MOB-28: added firewall whitelist for mobene - keycloak
|
4 years ago |
|
Sven Ketelsen
|
fec11415bc
|
MOB-28: added firewall whitelist for mobene - keycloak
|
4 years ago |
|
Sven Ketelsen
|
7bb1c9eed3
|
chore: update of ip whitelist
|
4 years ago |
|
friedrich goerz
|
44e21b4f03
|
NOTICKET: fix broken playbook due to violation of password policy
|
4 years ago |
|
Görz, Friedrich
|
43da648df6
|
DEV-389: added gpg-decryption for backup
|
4 years ago |
|
Görz, Friedrich
|
0c9042da83
|
DEV-373: try to automate restore from database backup
|
4 years ago |
|
Sven Ketelsen
|
80b321cd65
|
DEV-375 feat: new process for backup scheduling
|
4 years ago |
|
Sven Ketelsen
|
49aa913213
|
bugfix: backup runs with gather_facts: false
|
4 years ago |
|
Sven Ketelsen
|
68f1c76919
|
bugfix: timestamp wasn't stabel anymore
|
4 years ago |
|
Sven Ketelsen
|
5733b20dc3
|
bugfix: server creation was broken due to backupuser
|
4 years ago |
|
Sven Ketelsen
|
b35744a3b3
|
bugfix: used wrong email address for hetzner key
|
4 years ago |
|
Sven Ketelsen
|
2c7504c781
|
chore: renamed master into main - consistency
|
4 years ago |
|
Sven Ketelsen
|
8dbd533c97
|
DEV-273 added branch to rollout for stages
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
|
4 years ago |
|
Sven Ketelsen
|
42f0ae114a
|
DEV-273 added branch to rollout for stages
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
|
4 years ago |
|
Sven Ketelsen
|
6394d9150c
|
bugfix: awx uses now own user for automation
|
4 years ago |
|
Sven Ketelsen
|
92c11ecef4
|
bugfix: ansible user for awx
|
4 years ago |
|
Ketelsen, Sven
|
e17c62f81e
|
DEV-371: added stuff to do remote backup
|
4 years ago |
|
Sven Ketelsen
|
9d5105f764
|
feat: updated awx-operator/awx
- extracted argocd revision into variable
- on dev stage revision is main
- default revision is <stage> (qa, prodnso, ...)
|
4 years ago |
|
Görz, Friedrich
|
ac8998f212
|
DEV-273: automate rollout ansible by gitlab
|
4 years ago |
|
friedrich goerz
|
84fd4f57be
|
DEV-363: VAR set twice - removed 2nd one + ansible-run done + argo login check done
|
4 years ago |
|
friedrich goerz
|
4416164ba6
|
DEV-364: fixed some stuff for patchday play
|
4 years ago |
|
friedrich goerz
|
1858c40b47
|
DEV-364: revoke direct push on master branch
|
4 years ago |
|
friedrich goerz
|
2945f3d351
|
DEV-364: fixed some stuff for patchday play
|
4 years ago |
|
Görz, Friedrich
|
ea2ef949c9
|
DEV-360: rollout k8s on prodnso
|
4 years ago |
|
friedrich goerz
|
17103ccfe7
|
DEV-362: enable prometheus federation
|
4 years ago |
|
Sven Ketelsen
|
7c891e472c
|
feat: activated jaeger traecing on dev
- traefik
- connect
- iam
|
4 years ago |
|
Ketelsen, Sven
|
74e4174826
|
SMAR-21: feat: added jaeger tracing
|
4 years ago |
|
Ketelsen, Sven
|
65df2886e3
|
DEV-359: feat: added jaeger-operator/jaeger
|
4 years ago |
|
Sven Ketelsen
|
bd6fb2f189
|
DEV-341: cleanup after merge
- removed shared_service_awx_hostname
|
4 years ago |
|
Görz, Friedrich
|
c732ab8eb3
|
DEV-341: tried to implement review critics
|
4 years ago |
|
Sven Ketelsen
|
9304b78a8a
|
feat: updated connect versions
- management 8.5.26 > 8.6.9
- default dev 8.5.26 > 8.5.47
- default qa 8.5.26 > 8.5.47
- default prodnso 8.5.26 > 8.5.47
|
4 years ago |
|
Sven Ketelsen
|
08e8d3f31f
|
bugfix: added default value for loadbalancer ip
|
4 years ago |
|
Sven Ketelsen
|
a5ff2d53c9
|
bugfix: rollout new kubernetes cluster
|
4 years ago |
|
Ketelsen, Sven
|
4c777356fd
|
DEV-358: feat: removed hard coded loadbalancer ips
|
4 years ago |
|
Sven Ketelsen
|
e353d718ba
|
bugfix: removed "ignore_errors: true" from patchday (kubernetes)
|
4 years ago |
|
Sven Ketelsen
|
8b885a30b7
|
bugfix: patchay was broken due to missing pip dependency
- kubernetes
|
4 years ago |
|
Ketelsen, Sven
|
5d604700dd
|
DEV-319: feat: split dev/qa into own hetzner projects
|
4 years ago |
|
Ketelsen, Sven
|
e72ecaf3ac
|
DEV-349: bugfix: increased postfix message_size_limit
|
4 years ago |
|
Sven Ketelsen
|
199e49432c
|
bugfix: connect uses now netgo_msteams_hook_cd as connection
- <CI/CD> vs. <Alerting {{ stage }}> channel
|
4 years ago |
|
Sven Ketelsen
|
3b4a515757
|
feat: rollout new tokens/passwords for prodnso stage
|
4 years ago |
|
Sven Ketelsen
|
aa09887b9e
|
feat: rollout new tokens/passwords for qa stage
|
4 years ago |
|
Sven Ketelsen
|
9c7cdfd24b
|
feat: rollout new tokens/passwords for dev stage
|
4 years ago |
|
Sven Ketelsen
|
68bde6085e
|
DEV-322: enable ApplicationSet CRD for argoCD
- added mechanism to apply defined argocd CRD-objects
|
4 years ago |
|
Görz, Friedrich
|
59a409fc32
|
DEV-342: added patchday playbook
|
4 years ago |
|
Sven Ketelsen
|
d7e92c315c
|
bugfix: removed default connect feature values
- configured by portal
|
4 years ago |
|
Sven Ketelsen
|
11352747b2
|
feat: added connect feature to portal
- webdav
- resubmission
- element_template
- config_delete_Scope
- external_tasks_script_worker
|
4 years ago |
|
Sven Ketelsen
|
031650c3ed
|
cleanup
|
4 years ago |
|
Sven Ketelsen
|
5a45e8325b
|
chore: added comment for traefik usage
|
4 years ago |
|
friedrich goerz
|
46e021d22c
|
DEV-327: added several stuff for new prodnso-stage + bugfixing and improving other stuff
|
4 years ago |
|
Sven Ketelsen
|
cdd9c2543a
|
cleanup: removed vault for group/all > moved to stage groups
- every stage has now its own vault file
|
4 years ago |
|
Sven Ketelsen
|
190b8394eb
|
feat: added metricbeat (inactive)
|
4 years ago |
|
Sven Ketelsen
|
d314e164c7
|
bugfix: disabled blackbox exporter for connect management
- current config didn't works with 302 to login page
|
4 years ago |
|
Sven Ketelsen
|
df0e320743
|
bugfix: fixed connect url for blackbox exporter
|
4 years ago |
|
Görz, Friedrich
|
76289d2242
|
DEV-316: fixing linter problems
|
4 years ago |
|
Sven Ketelsen
|
56f7859314
|
feat: add access to create/edit dashboards/visualizations
|
4 years ago |
|
Sven Ketelsen
|
77c27e706b
|
feat: configuration of connections for connect management installation
- awx
- teams
|
4 years ago |
|
Sven Ketelsen
|
b42bcb76cd
|
chore: updated connect version from 8.5.8 to 8.5.26
|
4 years ago |
|
Sven Ketelsen
|
44c7509e11
|
feat: consolidation for harbor
- dev-docker-registry-01 -> dev-harbor-01
- qa-docker-registry-01 -> qa-harbor-01
|
4 years ago |
|
Sven Ketelsen
|
40e0a44043
|
DEV-279: review / vaulted variables
|
4 years ago |
|
friedrich goerz
|
333823fb4c
|
DEV-279: implemented 'svensons' review critics
|
4 years ago |
|
Görz, Friedrich
|
3d304f4ec1
|
DEV-279: added oidc/rbac for argocd setup (keycloak)
|
4 years ago |
|
Ketelsen, Sven
|
d9d980b009
|
DEV-282: feat: added configuration of parameters through web portal
|
4 years ago |
|
friedrich goerz
|
5bc712b4f2
|
DEV-201: added groupvars for gateway-servers to get them out of standard monitoring
|
4 years ago |
|
Sven Ketelsen
|
212ef00807
|
bugfix: connect-wordpress orchestration
- added missing configuration to wordpress service
REALM_ID
REGISTRATION_ID
CLIENT_ID
CLIENT_SECRET
CLIENT_USERNAME
CLIENT_PASSWORD
SMARDIGO_AUTH_TOKEN_NAME
SMARDIGO_AUTH_TOKEN_VALUE
|
4 years ago |
|
Görz, Friedrich
|
9f9a192432
|
DEV-269: added stuff to federate k8s-internal prometheus metrics
|
4 years ago |
|
Sven Ketelsen
|
ea231be89f
|
DEV-277 feat: added stage for external usage
- stage without shared services
- setup isolated services
|
4 years ago |