hetzner-ansible

Commit Graph

Author	SHA1	Message	Date
Sven Ketelsen	f55a892418	bugfix: pgadmin username/password - username: nso.devops@netgo.de - password: DEV default - password: QA vault - password: PRODNSO vault	4 years ago
Michael Haehnel	c112a780f1	Extend hetzner_ssh_keys for michael.haehnel	4 years ago
Michael Haehnel	10bd066617	DEV-456: Added SSH key for michael.haehnel	4 years ago
Görz, Friedrich	b4937db87a	DEV-375: bugfix to run stuff for testdb only when is set	4 years ago
Sven Ketelsen	f631b487bd	chore: new smardigo workflow version	4 years ago
friedrich goerz	615121fe72	DEV-375: added label for restore- server to ignore them in promehtues	4 years ago
Görz, Friedrich	03c87e74dc	DEV-435: ssh-key rotation for technical users	4 years ago
Sven Ketelsen	ab790591c2	chore: whitelisted admin ips	4 years ago
Görz, Friedrich	a2fa12ef40	DEV-396: changed diskspace alert from predictive to alert of current usage	4 years ago
Görz, Friedrich	62e0a64f26	DEV-414: follow-up tasks prod@hetzner-incident	4 years ago
Görz, Friedrich	49fc416764	DEV-382: enable SSL for postgres-connections	4 years ago
Sven Ketelsen	d99c9001bf	DEV-383: enable SSL for mariadb-connections	4 years ago
Sven Ketelsen	6297ad954e	feat: removed admin ips from firewalls	4 years ago
Sven Ketelsen	0b18fc9bc2	MOB-28: added custom whitelisted ips for services	4 years ago
Sven Ketelsen	62fa239b6f	MOB-28: added firewall whitelist for mobene - keycloak	4 years ago
Sven Ketelsen	fec11415bc	MOB-28: added firewall whitelist for mobene - keycloak	4 years ago
Sven Ketelsen	7bb1c9eed3	chore: update of ip whitelist	4 years ago
friedrich goerz	44e21b4f03	NOTICKET: fix broken playbook due to violation of password policy	4 years ago
Görz, Friedrich	43da648df6	DEV-389: added gpg-decryption for backup	4 years ago
Görz, Friedrich	0c9042da83	DEV-373: try to automate restore from database backup	4 years ago
Sven Ketelsen	80b321cd65	DEV-375 feat: new process for backup scheduling	4 years ago
Sven Ketelsen	49aa913213	bugfix: backup runs with gather_facts: false	4 years ago
Sven Ketelsen	68f1c76919	bugfix: timestamp wasn't stabel anymore	4 years ago
Sven Ketelsen	5733b20dc3	bugfix: server creation was broken due to backupuser	4 years ago
Sven Ketelsen	b35744a3b3	bugfix: used wrong email address for hetzner key	4 years ago
Sven Ketelsen	2c7504c781	chore: renamed master into main - consistency	4 years ago
Sven Ketelsen	8dbd533c97	DEV-273 added branch to rollout for stages - master/main -> DEV - qa -> QA - prodnso -> PRODNSO	4 years ago
Sven Ketelsen	42f0ae114a	DEV-273 added branch to rollout for stages - master/main -> DEV - qa -> QA - prodnso -> PRODNSO	4 years ago
Sven Ketelsen	6394d9150c	bugfix: awx uses now own user for automation	4 years ago
Sven Ketelsen	92c11ecef4	bugfix: ansible user for awx	4 years ago
Ketelsen, Sven	e17c62f81e	DEV-371: added stuff to do remote backup	4 years ago
Sven Ketelsen	9d5105f764	feat: updated awx-operator/awx - extracted argocd revision into variable - on dev stage revision is main - default revision is <stage> (qa, prodnso, ...)	4 years ago
Görz, Friedrich	ac8998f212	DEV-273: automate rollout ansible by gitlab	4 years ago
friedrich goerz	84fd4f57be	DEV-363: VAR set twice - removed 2nd one + ansible-run done + argo login check done	4 years ago
friedrich goerz	4416164ba6	DEV-364: fixed some stuff for patchday play	4 years ago
friedrich goerz	1858c40b47	DEV-364: revoke direct push on master branch	4 years ago
friedrich goerz	2945f3d351	DEV-364: fixed some stuff for patchday play	4 years ago
Görz, Friedrich	ea2ef949c9	DEV-360: rollout k8s on prodnso	4 years ago
friedrich goerz	17103ccfe7	DEV-362: enable prometheus federation	4 years ago
Sven Ketelsen	7c891e472c	feat: activated jaeger traecing on dev - traefik - connect - iam	4 years ago
Ketelsen, Sven	74e4174826	SMAR-21: feat: added jaeger tracing	4 years ago
Ketelsen, Sven	65df2886e3	DEV-359: feat: added jaeger-operator/jaeger	4 years ago
Sven Ketelsen	bd6fb2f189	DEV-341: cleanup after merge - removed shared_service_awx_hostname	4 years ago
Görz, Friedrich	c732ab8eb3	DEV-341: tried to implement review critics	4 years ago
Sven Ketelsen	9304b78a8a	feat: updated connect versions - management 8.5.26 > 8.6.9 - default dev 8.5.26 > 8.5.47 - default qa 8.5.26 > 8.5.47 - default prodnso 8.5.26 > 8.5.47	4 years ago
Sven Ketelsen	08e8d3f31f	bugfix: added default value for loadbalancer ip	4 years ago
Sven Ketelsen	a5ff2d53c9	bugfix: rollout new kubernetes cluster	4 years ago
Ketelsen, Sven	4c777356fd	DEV-358: feat: removed hard coded loadbalancer ips	4 years ago
Sven Ketelsen	e353d718ba	bugfix: removed "ignore_errors: true" from patchday (kubernetes)	4 years ago
Sven Ketelsen	8b885a30b7	bugfix: patchay was broken due to missing pip dependency - kubernetes	4 years ago
Ketelsen, Sven	5d604700dd	DEV-319: feat: split dev/qa into own hetzner projects	4 years ago
Ketelsen, Sven	e72ecaf3ac	DEV-349: bugfix: increased postfix message_size_limit	4 years ago
Sven Ketelsen	199e49432c	bugfix: connect uses now netgo_msteams_hook_cd as connection - <CI/CD> vs. <Alerting {{ stage }}> channel	4 years ago
Sven Ketelsen	3b4a515757	feat: rollout new tokens/passwords for prodnso stage	4 years ago
Sven Ketelsen	aa09887b9e	feat: rollout new tokens/passwords for qa stage	4 years ago
Sven Ketelsen	9c7cdfd24b	feat: rollout new tokens/passwords for dev stage	4 years ago
Sven Ketelsen	68bde6085e	DEV-322: enable ApplicationSet CRD for argoCD - added mechanism to apply defined argocd CRD-objects	4 years ago
Görz, Friedrich	59a409fc32	DEV-342: added patchday playbook	4 years ago
Sven Ketelsen	d7e92c315c	bugfix: removed default connect feature values - configured by portal	4 years ago
Sven Ketelsen	11352747b2	feat: added connect feature to portal - webdav - resubmission - element_template - config_delete_Scope - external_tasks_script_worker	4 years ago
Sven Ketelsen	031650c3ed	cleanup	4 years ago
Sven Ketelsen	5a45e8325b	chore: added comment for traefik usage	4 years ago
friedrich goerz	46e021d22c	DEV-327: added several stuff for new prodnso-stage + bugfixing and improving other stuff	4 years ago
Sven Ketelsen	cdd9c2543a	cleanup: removed vault for group/all > moved to stage groups - every stage has now its own vault file	4 years ago
Sven Ketelsen	190b8394eb	feat: added metricbeat (inactive)	4 years ago
Sven Ketelsen	d314e164c7	bugfix: disabled blackbox exporter for connect management - current config didn't works with 302 to login page	4 years ago
Sven Ketelsen	df0e320743	bugfix: fixed connect url for blackbox exporter	4 years ago
Görz, Friedrich	76289d2242	DEV-316: fixing linter problems	4 years ago
Sven Ketelsen	56f7859314	feat: add access to create/edit dashboards/visualizations	4 years ago
Sven Ketelsen	77c27e706b	feat: configuration of connections for connect management installation - awx - teams	4 years ago
Sven Ketelsen	b42bcb76cd	chore: updated connect version from 8.5.8 to 8.5.26	4 years ago
Sven Ketelsen	44c7509e11	feat: consolidation for harbor - dev-docker-registry-01 -> dev-harbor-01 - qa-docker-registry-01 -> qa-harbor-01	4 years ago
Sven Ketelsen	40e0a44043	DEV-279: review / vaulted variables	4 years ago
friedrich goerz	333823fb4c	DEV-279: implemented 'svensons' review critics	4 years ago
Görz, Friedrich	3d304f4ec1	DEV-279: added oidc/rbac for argocd setup (keycloak)	4 years ago
Ketelsen, Sven	d9d980b009	DEV-282: feat: added configuration of parameters through web portal	4 years ago
friedrich goerz	5bc712b4f2	DEV-201: added groupvars for gateway-servers to get them out of standard monitoring	4 years ago
Sven Ketelsen	212ef00807	bugfix: connect-wordpress orchestration - added missing configuration to wordpress service REALM_ID REGISTRATION_ID CLIENT_ID CLIENT_SECRET CLIENT_USERNAME CLIENT_PASSWORD SMARDIGO_AUTH_TOKEN_NAME SMARDIGO_AUTH_TOKEN_VALUE	4 years ago
Görz, Friedrich	9f9a192432	DEV-269: added stuff to federate k8s-internal prometheus metrics	4 years ago
Sven Ketelsen	ea231be89f	DEV-277 feat: added stage for external usage - stage without shared services - setup isolated services	4 years ago
Görz, Friedrich	5bdff07d1b	DEV-253: digitalocean stuff - add droplet but not idempotentgit branch git branch plz check	4 years ago
Ketelsen, Sven	54d6b82f1f	DEV-244 feat: added power dns to stage dev	4 years ago
Sven Ketelsen	31104d1e16	bugfix/cleanup - update-monitoring - k8s-cluster -> k8s_cluster	4 years ago
Sven Ketelsen	8a64fedc55	Merge remote-tracking branch 'origin/DEV-240'	4 years ago
Sven Ketelsen	0eafc32ec9	feat: added borken ip to whitelist	4 years ago
friedrich goerz	3766911cc5	DEV-241: added monitoring stuff for redis	4 years ago
friedrich goerz	671c3a9657	DEV-240: added code for k8s-external single-instance redis instance for DEV+QA	4 years ago
Sven Ketelsen	aeabec152c	SMARCH-106: added stuff for multi tenant setup - workflow-index-postgres - workflow-proxy-postgres - workflow-proxy-realm	4 years ago
Sven Ketelsen	7ca09573e3	kubespray: removed cert/ingress - missing configuration, has to be done by kubespray -> rtfm	4 years ago
Sven Ketelsen	8f94c4aae0	feat: added hetzner csi plugin	4 years ago
Sven Ketelsen	d31810007d	kubespray - renamed groups to match kubespray kube-master -> kube_control_plane kube-node -> kube_node - cert_manager_enabled: false -> true - ingress_nginx_enabled: false -> true	4 years ago
Sven Ketelsen	a9d6249762	feat: rollout gitea on qa	4 years ago
Sven Ketelsen	719a3e71d7	feat: kubernetes bootstrap - ccm - ingress - certmanager - argo-cd {{ stage }}-kube-argocd.{{ domain }} - prometheus {{ stage }}-kube-grafana.{{ domain }}	4 years ago
Sven Ketelsen	937cbcf84f	bugfix: removed awx from etc/hosts - awx uses public ip as bind address	4 years ago
Sven Ketelsen	c207ceb25b	bugfix: setup whole dev stage leftovers	4 years ago
Sven Ketelsen	0355c2ed8b	chore: keycloak rollout was broken due to duplicated declaration	4 years ago
Sven Ketelsen	211ed6c706	chore: cleanup	4 years ago
Sven Ketelsen	b302c4ea6a	chore: renamed kube servers after reset	4 years ago
Sven Ketelsen	bf5d2bbc54	chore: stage dev inventory	4 years ago
Sven Ketelsen	c256c56bef	feat: kubernetes bootstrap with prometheus stack - kube_proxy_metrics_bind_address 127.0.0.1:10249 > 0.0.0.0:10249 - kube-controller-manager scrape http > https 10252 > 10257	4 years ago
Ketelsen, Sven	3d00fdc7a0	DEV-222 kubernetes setup with ansible	4 years ago
Görz, Friedrich	aecd51a58b	Feature/dev 243	4 years ago
Görz, Friedrich	b89cc602e6	DEV-223: spike kubernetes cluster in der hetzner cloud aufsetzen	4 years ago
Sven Ketelsen	8df2970e7c	feat: reverse proxy configuration for gitea - https://... - ssh@...:2222	4 years ago
Sven Ketelsen	da646bf4bd	chore: removed duplications between iam/gitea - deploying is now done by shared role - only configuration needed by iam/gitea role	4 years ago
Sven Ketelsen	6aa4782d34	feat: added new service: gitea	4 years ago
Sven Ketelsen	c0c410e914	chore: added k8s group configuration - due to running prometheus updates	4 years ago
Sven Ketelsen	ac1fc50e39	chore: new version for management - 8.5.0-SMARCH-98-1-SNAPSHOT -> latest	4 years ago
Sven Ketelsen	674e53d62b	bugfix: provisioning on qa stage	4 years ago
Sven Ketelsen	37cf451edd	chore: maintenance - added tag awx_repository' > update repository on awx server - moved wordpress database dump from /tmp to /backups - switch wordpress dump from <dump>.tar.gz to <dump>.gz - added hint for upload wordpress dump to README.md	4 years ago
Sven Ketelsen	0a9f699f64	bugfix: admin user/pass for management services	4 years ago
Sven Ketelsen	efd0f08293	feat: changed awx password for qa stage	4 years ago
Sven Ketelsen	79bdb2c1ee	bugfix: connect_elastic_prefix uses now _ instead of -	4 years ago
Sven Ketelsen	49cf9e1612	cleanup: factor out docker-compose version (->group all)	4 years ago
Sven Ketelsen	be0511e29a	bugfix: awx admin password	4 years ago
Görz, Friedrich	99d301234a	DEV-216: added ssh pubkey for fgoerz; changed lookup to find also non-RSA-pubkeys	4 years ago
Sven Ketelsen	aad69fcdb0	feat: split management setup into own role (dev) - the smardigo management instance is now configured by group management. connect is now only for dynamic smardigo instances. - <stage>-management-01-connect.<domain>	4 years ago
Sven Ketelsen	04b5cfb0b7	feat: split management setup into own role (dev) - the smardigo management instance is now configured by group management. connect is now only for dynamic smardigo instances. - <stage>-management-01-connect.<domain>	4 years ago
Sven Ketelsen	0515a6788d	bugfix: added configuration for qa admin users	4 years ago
Sven Ketelsen	80cce15def	bugfix: missing variables for qa stage	4 years ago
Sven Ketelsen	5cd34a896b	bugfix: added missing variable for stage management service	4 years ago
Sven Ketelsen	d3278b62ac	bugfix: stage-qa configuration - email - connect api token	4 years ago
Sven Ketelsen	f755e52ba5	feat: added smardigo feature flag ELEMENT_TEMPLATE_ENABLED	4 years ago
Sven Ketelsen	3aa23fdf72	chore: versions - connect dev/qa -> latest - iam dev/qa -> latest	4 years ago
Sven Ketelsen	1c2da22ef6	feat: synchronize authorized keys for root	4 years ago
Sven Ketelsen	335e3bb9dd	chore: cors for swagger on connect/iam	4 years ago
Sven Ketelsen	ba861969d5	chore: updated connect/iam versions to XXX-SMARCH-98-1-SNAPSHOT	4 years ago
Sven Ketelsen	2faa5e8703	chore: cleanup	4 years ago
Sven Ketelsen	f829ea7605	chore: cleanup	4 years ago
Sven Ketelsen	2d6350c11c	chore: missing parameters for qa stage	4 years ago
Sven Ketelsen	d97bedc8f1	feat: complete qa setup up to smardigo management	4 years ago
Sven Ketelsen	c87717f07d	chore: cleanup	4 years ago
Sven Ketelsen	3ad1ef73f8	feat: added external task script worker mock support	4 years ago
Sven Ketelsen	20df8986c4	feat: changed postgres orchestration - added postgres_listen_addresses to allow configuration - removed default_master_ip -> shared_service_pg_master_ip - removed default_slave_ip -> shared_service_pg_slave_ip - removed default_private_network -> shared_service_network - stage-qa: bugfix for /etc/exports, wrong ip	4 years ago
Sven Ketelsen	8ee702fb68	chore: removed outdated tasks	4 years ago
Sven Ketelsen	1427b676c4	bugfix: missing variable	4 years ago
Sven Ketelsen	ffb714d7ad	SMARCH-92: setup qa up to docker registry - consolidation between dev/qa - moved/split variables into vaults for dev/qa	4 years ago
Peter Heise	c86ccc48aa	Added postgres exporter + dashboard.	4 years ago
Peter Heise	7c0f9c597b	Added mysql/maria-exporter + dashboard.	4 years ago
Sven Ketelsen	cd9819eca6	feat: added tenant={{ tenant_id }} as server label if available	4 years ago
Sven Ketelsen	ad861db16e	SMARCH-92: split elastic stack services for qa - elasticsearch - logstash - kibana	4 years ago
Paetow, Claus	e7f49a40e2	DEV-184 feat: added pgadmin4 as shared service	4 years ago
Sven Ketelsen	b6cdd8528b	bugfix: prometheus scrape config - skip traefik scraping when traefik_enabled is false - skip node_exporter scraping when node_exporter_enabled is false	4 years ago
Sven Ketelsen	a8b60e9069	chore: teams alerting hook can now be stage specific - added var netgo_msteams_hook_alerting (DEV)	4 years ago
Sven Ketelsen	d7704681ee	bugifx: awx polling configuration produces wrong instance - <url>:80 -> <url>	4 years ago
Sven Ketelsen	259da9685f	DEV-173: bugfix: oidc configuration for connect/wordpress	4 years ago
Sven Ketelsen	ebad4eade4	chore: new playbook to update local ssh config file {for each host on stage} Host dev-... HostName 1.2.3.4 {endfor}	4 years ago
Sven Ketelsen	79a423f7b7	chore: updated connect default version to 8.3.0	4 years ago
Sven Ketelsen	308fc7e501	DEV-173: cleanup - changed admin user in wordpress database backup	4 years ago
Sven Ketelsen	38b103e363	DEV-173: review/regression/cleanup: connect + wordpress	4 years ago
Sven Ketelsen	7f4b338477	SMARCH-89: feat: added setup for connect wordpress with database dump	4 years ago
Gordon, Alexander	b01ae836f5	DEV-167: feat: creating maria database for connect-wordpres provisioning	4 years ago
Sven Ketelsen	488bfa5515	SMARCH-57: feat: added awx to prometheus/grafana	4 years ago
Sven Ketelsen	7e16bce314	chore: upgraded prometheus from cx11 to cpx11	4 years ago
Sven Ketelsen	45dcef38e3	bugfix: added missing variable local_ssh_config	4 years ago
Sven Ketelsen	ea5c025101	SMARCH-52: setup awx on dev-awx-01	4 years ago
Sven Ketelsen	3192535bb2	chore: removed duplicated declaration	4 years ago
Sven Ketelsen	3fe81a7ac4	bugfix: cleanup - shared service declaration for maria - webdav usage out of connect	4 years ago
Heise, Peter	8cb1e919b3	feature/smarch-78	4 years ago
Sven Ketelsen	45f9edbd28	chore: webdav server configuration (w.i.p.)	4 years ago
Alexander Gordon	03604a5708	Added alexander.gordon ssh-key	4 years ago
Ketelsen, Sven	3c60e35668	SMARCH-81: feat: added webdav as shared service	4 years ago
Ketelsen, Sven	be4a9c3f5c	SMARCH-63: Feat: Anlegen/Konfigurieren einer Datenbank auf dem DB-Server (DEV)	4 years ago
Sven Ketelsen	84bceb730d	review: setup awx server with ansible	4 years ago
Heise, Peter	6034d87f97	feature/postgresql-cluster	4 years ago
Sven Ketelsen	01eb505c32	feat: added dev-postgres-01/dev-postgres-02	4 years ago
Sven Ketelsen	6e38f3e9aa	chore: removed daniel.dz	4 years ago
Paetow, Claus	f1e22a9bff	SMARCH-71: SSH Server Zugriff für Hetzner hinzufügen	4 years ago
Sven Ketelsen	8819c64bf5	chore: removed daniel.dz	4 years ago
Sven Ketelsen	4bb091adb0	chore: consolidation	4 years ago
Sven Ketelsen	736c89b6c1	chore: added wordpress (wip)	4 years ago
Sven Ketelsen	0e9c26e439	chore: switched workflow search to elastic mode	5 years ago
Sven Ketelsen	7b66778cda	chore: added netgo teams hook configuration	5 years ago
Sven Ketelsen	7632da1019	chore: cleanup	5 years ago
Sven Ketelsen	bf8ed74d3f	SMARCH-46: smardigo self service portal (wip)	5 years ago
Sven Ketelsen	0fed0dbdb8	SMARCH-46: smardigo self service portal (wip)	5 years ago
Sven Ketelsen	7f7054244b	SMARCH-46: smardigo self service portal (wip)	5 years ago
Sven Ketelsen	2c9a9029ad	SMARCH-46: smardigo self service portal (wip)	5 years ago
Sven Ketelsen	7b290611e7	feat: provisioning playbook with dynamic inventory (wip)	5 years ago
Sven Ketelsen	b27511ea53	feat: provisioning playbook with dynamic inventory (wip)	5 years ago
Sven Ketelsen	a12d77390a	chore: use robot account for harbor	5 years ago
Sven Ketelsen	1a93b40658	feat: provisioning playbook with dynamic inventory (wip)	5 years ago
Sven Ketelsen	18f3fd3102	SMARCH-40: monitoring for harbor	5 years ago
Sven Ketelsen	ea45d111d9	SMARCH-46: smardigo self service portal (wip)	5 years ago
Sven Ketelsen	51ba3f7c16	SMARCH-33: added elastic stack setup	5 years ago
Dziedzicki, Daniel	308383f9ec	Feature/smarch 44	5 years ago
Sven Ketelsen	896bd7faab	chore: cleanup	5 years ago
Sven Ketelsen	b438a9c12a	feat: hetzner default root users	5 years ago
Sven Ketelsen	1bce1bb3f5	feat: added users	5 years ago
Sven Ketelsen	46b2367622	chore: harbor playground	5 years ago
Sven Ketelsen	31450aac16	feat: added elasticsearch exporter setup	5 years ago
Sven Ketelsen	53352252da	feat: added connect/keycloak setup	5 years ago
Sven Ketelsen	4b8ea52d05	feat: setup connect servers	5 years ago
Sven Ketelsen	57ff124d00	feat: setup prometheus stack	5 years ago
Sven Ketelsen	c10d556038	chore: setup docker-registry	5 years ago
Sven Ketelsen	c63d557861	feat: added traefik and node_exporter	5 years ago
Sven Ketelsen	7eefe6b28f	feat: setup servers on hetzner cloud	5 years ago
Sven Ketelsen	6c50019d6d	feat: setup servers on hetzner cloud	5 years ago

... 3 4 5 6 7 ...

398 Commits (57346e177563581a3d552ddee20b21d85f13a6c3)