gitea-admin
/
hetzner-ansible
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
1,044 Commits
10 Branches
0 Tags
12 MiB
prodnso
main
qa
feature/DEV-655
feature/SC-124
feature/SC-55
feature/DEV-470_2nd
feature/DEV-380_2nd
feature/DEV-380
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b67ee1a0d'
${ noResults }
Commit Graph

415 Commits (7b67ee1a0d73d5576b6f93fa29b8142b0d3c9747)

Author SHA1 Message Date
Ketelsen, Sven f30c28733d DEV-837 k8s bootstrap: added creation of load balancer and dns record 3 years ago
Michael Haehnel 32d867ef30
DEV-1034 Allow temporarily public access to prodnso-keycloak 3 years ago
Sven Ketelsen 42944bd359 chore: fix pmci error 
- wordpress isn't mandatory
 3 years ago
Sven Ketelsen fcb59f2710 bugfix: awx config update broken 
- fixed awx url's after refactoring
 3 years ago
Sven Ketelsen 4ae3845681 chore: activate kubernetes awx on dev/qa/prod 
- config updates aren't possible without activation flag
- split axw config update into own playbook: awx.yml
 3 years ago
Sven Ketelsen 808155f266 chore: set awx hetzner ansible version to main 3 years ago
Ketelsen, Sven 8e9268ca3b DEV-526 added pmci tenant management 3 years ago
Ketelsen, Sven f686073dc8 DEV-1009 Setup dev-acr cluster with blueprint 3 years ago
Hans-Peter.Wissenba b6af6e6036 DEV-1018 add custom_stage_hetzner_ssh_keys 3 years ago
Michael Hähnel 9ea698f937 DEV-966 Dismantling prodwork01-keycloak-01 3 years ago
Sven Ketelsen 96a0a6ebb9 chore: allow ssh access to ext-mpmexec-02 
- 'daniel.risse'
- 'esther.fuhrmann'
- 'philipp.eichhorn'
 3 years ago
Hoan To 2ad91fb877 DEV-974: added keycloak backup 3 years ago
Görz, Friedrich 02846bbe75 DEV-987: added missing prodwork01-workernode IPs 3 years ago
Michael Hähnel 8374ae0d2a DEV-880 Configure Prometheus high_load Alert instance specific 3 years ago
Görz, Friedrich 96da6ef83f Feature/dev 962 es clsuter activehards alert 3 years ago
Hans-Peter Wissenbach 2d771f4989 Feature/dev 829 - ansible version updaten 3 years ago
friedrich goerz bb0471a9bb NOTICKET: removed forgotten wrong set ansible-VAR 3 years ago
Görz, Friedrich 58cbd76df6 Bug/dev 960 prodwork01 clsuter full 3 years ago
Michael Haehnel e37561f2d5
DEV-927 Fix Prometheus blackbox http targets 3 years ago
Hoan To e24ee7b4fd DEV-931: setup new prodnso k8s cluster 3 years ago
Michael Haehnel 9ff3844eb7
DEV-927 Fix blackbox http targets 3 years ago
Hoan To 955a40448c Feature/dev 930 3 years ago
Michael Hähnel 6b1fd778b5 Feature/dev 927 3 years ago
Ketelsen, Sven b73a8a4723 DEV-914 bugfix of regression from customer specific domains 3 years ago
Hoan To ef8cb4f2fb Dev-631: backup minio 3 years ago
Ketelsen, Sven e4a391be7f DEV-873 added custom node exporter polling for EXT stage 3 years ago
friedrich goerz e94cf00a1b DEV-889: inc. thresholds ... inc.connect version for mgmt-instance 3 years ago
Görz, Friedrich cfd44dc938 DEV-830: removed pip-dependencty for debugigng purpose 3 years ago
friedrich goerz 60d32cc316 DEV-830: added quickfix to workaround 3 years ago
Görz, Friedrich 5d4974887b DEV-786: added hetzner fw-rules due to mobene nsodev migration 3 years ago
Sven Ketelsen 7cebf472a4 DEV-794 changed default server profile for elastic from cx31 to cpx31 3 years ago
Sven Ketelsen 5cd09c7682 DEV-822 feat: ssh key für Hans-Peter Wissenbach hinzugefügt 3 years ago
Hoan To 00dc0435eb DEV-826: added 40 gb to prodnso-postgres-02 backup 3 years ago
Hans-Peter Wissenbach 62b7aec05d DEV-822 feat: ssh key für Hans-Peter Wissenbach hinzugefügt 3 years ago
Hoan To aeb0730c95 DEV-805: added postgres-02 to backup hosts file in qa and prodnso 3 years ago
Hoan To 9be0882562 Dev 783 pg backup secondary node 3 years ago
Görz, Friedrich 8a9e7bfee5 DEV-788: increased keycloak version - pimped dockercompose jinja template due... 3 years ago
friedrich goerz 2f270f1da8 DEV-793: inc. disk count for backup-VM 3 years ago
Hoan To 3fc56d9754 substituted old DO Tokens 3 years ago
friedrich goerz 29cd0de9e0 DEV-769: inc.volcount for pg-backup-vol 3 years ago
friedrich goerz 10763a08be NOTICKET: argocd loglevel decrease to WARN to reduce wasting argo logmessages 3 years ago
Hoan To 4e82754c78 DEV-769: subtituted base_requirements_backup with lv_with_hetzner_volumes role 3 years ago
friedrich goerz 28f8616551 MOB-486: changed IPfilter for mobene 3 years ago
Michael Hähnel 76c7b4b628 DEV-679 New Role+Playbook for infrastructure realm 3 years ago
Ketelsen, Sven a12c9c3973 DEV-735 updated default firewall rules 3 years ago
friedrich goerz 1c6f257b28 DEV-730: added sep. keycloak instance 3 years ago
friedrich goerz 61e034f04e DEV-732: resched. cron to exec metrics sycn script later - added tags 3 years ago
Sven Ketelsen 1b98be3d14 DEV-721 increased backup volumes from 3 to 5 (60GB to 90GB) 3 years ago
Ketelsen, Sven 7c8d548e4d DEV-719 added prometheus polling for ext-bdev-mpmexec-02-connect 3 years ago
Sven Ketelsen 52d89b5259 NOTICKET: changed keycloak version from 14.0.0.2 to 14.0.0.4 
- get rid of the stupid small role selects
 3 years ago
Ketelsen, Sven 7e80cfaa0e DEV-711 use servers without shared_service_network 3 years ago
Görz, Friedrich 982ec72f28 DEV-695: fixing buggy firewall stuff 3 years ago
Görz, Friedrich 2ef6773ed3 DEV-701: changed node-exporter installation from ubuntu-repo to... 3 years ago
Ketelsen, Sven d72b6a3fda DEV-700 pmci: bugfix for elastic search feature 3 years ago
friedrich goerz 8146179308 DEV-699: removed label, added assert-stmt for catching error 3 years ago
Ketelsen, Sven d912762383 DEV-628 pmci: added spk bz prod configuration as host_vars file 3 years ago
Görz, Friedrich 2da1f1ee28 DEV-687 aachen ip hcloud fw 3 years ago
Sven Ketelsen c9c09828bb DEV-677 update hetzner firewall rules for new k8s worker node on dev 3 years ago
Hoan To 1bbd04b131 DEV-533: added IP for aachen to whitelist and firewalls 3 years ago
friedrich goerz 64ebe201e2 DEV-648: added addintionl k8s node 3 years ago
Sven Ketelsen 954b961ab6 MA-2005 added new feature flag for datasource-action 3 years ago
Sven Ketelsen 16bee429de DEV-666 added iam configuration for mpmexec 3 years ago
Hoan To 2a3c384550 DEV-587:added prometheus and alertmanager for prodwork01 login credentials to vault 3 years ago
Görz, Friedrich fe97fbbab5 Bug/dev 659 pgdatadir nospace 3 years ago
Sven Ketelsen 9f76d05353 SMA-1993 new platform qa server 3 years ago
sven.ketelsen 36752d1f57 DEV-658 increased prodnso prometheus data space 
- old 3 * 30
- new 10 * 30
 3 years ago
sven.ketelsen e5604dd030 DEV-656 prepare rollout - added hetzner dns api tokens 3 years ago
Ketelsen, Sven e343b5f76e DEV-647 added hetzner domain smardigo.dev 3 years ago
Ketelsen, Sven 35b94aab8a DEV-649 updated pip to >=2.28.1 3 years ago
sven.ketelsen ad6f470920 Revert "DEV-647 added hetzner domain smardigo.dev" 
This reverts commit 0b7b2a0f01.
 3 years ago
Ketelsen, Sven 0b7b2a0f01 DEV-647 added hetzner domain smardigo.dev 3 years ago
Görz, Friedrich a9c0e86f36 Revert "DEV-647 added hetzner domain smardigo.dev" 3 years ago
Ketelsen, Sven 7cdc602534 DEV-647 added hetzner domain smardigo.dev 3 years ago
Hoan To 8f4b884ba1 added bootstrap for prodwork01 3 years ago
Michael Hähnel 9b63b2e5a8 DEV-601 added extra configuration for bdev mpmexec demo server 3 years ago
Michael Hähnel b9e48a3260 DEV-601 added playbook for bdev demo setup 3 years ago
friedrich goerz 959dcc6832 NOTICKET: someone broke sth 3 years ago
Hoan To 593b1fb743 added volume to backup storage space 3 years ago
sven.ketelsen c59cd4c715 DEV-579 add basic auth to prometheus stack 3 years ago
Ketelsen, Sven db57bcb7ca DEV-579 add basic auth to prometheus stack 3 years ago
Görz, Friedrich 24e5cbf3d9 DEV-616: increased vol_count to mitigate disk size problem 3 years ago
Hoan To 17e923b9b4 Feature/dev 583 new cluster 3 years ago
Hoan To 98c5f39c85 DEV-579: added prometheus basic auth 3 years ago
Ketelsen, Sven e5e2bdf93e DEV-597 removed ssh keys 3 years ago
Ketelsen, Sven 9919985e3d DEV-593 updated versions 3 years ago
Görz, Friedrich 01049bf031 DEV-548: testcluster 3 years ago
Ketelsen, Sven ac7285bbcf DEV-572: alertmanager metrics 3 years ago
Görz, Friedrich 01c972771b Rollout main=>qa 13.09.2022 3 years ago
Ketelsen, Sven e6dddbe4c9 DEV 534: Added hetzner volume to prodnso-postgres-01 for /backups 3 years ago
friedrich goerz 45f4fd20f3 DEV-537: added availability check for kube-awx-domain 3 years ago
Hoan To 6027ba958e added hoan.to ssh-key 3 years ago
friedrich goerz 79f2e5b41b DEV-517: added sperate DO for DEVSCR 3 years ago
Görz, Friedrich ea79ce2a29 DEV-517: changed DO-token due to 'too many request' problem 3 years ago
friedrich goerz 981f32690e DEV-506/ changed domain names for metric-stack - removed substring kube 4 years ago
friedrich goerz 2494f2002b DEV-497/DEV-505: added stuff to enable helm secrets in argo 4 years ago
Bas Cancrinus 75c780aeae SC-13: Added public ssh key 4 years ago
Philipp Eichhorn ab5cba3c7c SC-05: add devscr variables to create harbor-pull secret 4 years ago
Sven Ketelsen 06c3589e94 SC-20: added harbor entry to etc/hosts file 
- access to harbor through loadbalancer with private ip
 4 years ago
Görz, Friedrich b4ebe98e3c DEV-505: removed settings for CCM for kubespray run => install hetzner-CCM in sep. ansible-run; updated used kubespray version 4 years ago
Görz, Friedrich beb013aca3 DEV-497: added stuff for gitea to for bootstrapping k8s-clsuter 4 years ago
Görz, Friedrich c744eaa837 DEV-497: created new branch due to git-problems - dunno what exactly 4 years ago
Eichhorn, Philipp 6200deea76 DEV-489: add ssh key for philipp.eichhorn@netgo.de 4 years ago
Görz, Friedrich 84a013d169 MOB-148: added k8s cluster for mobene stuff 4 years ago
Görz, Friedrich 0f69260711 DEV-416: added stuff to enable filebeat for postgres + mariabb instances 4 years ago
friedrich goerz 8180523963 DEV-480: decrease prometheus retention time for DEV-stage 4 years ago
Sven Ketelsen 79bd5863e0 bugfix: set connect LOG_LEVELs from DEBUG to INFO 4 years ago
Sven Ketelsen 05ccebc851 feat: added initial password creation to portal 
- randomize passwords according to password policies
  2 Uppercase Characters
  2 Lowercase Characters
  2 Special Characters
  1 Digits
 4 years ago
Sven Ketelsen 00ca2bc3f1 feat: added initial password creation to portal 
- randomize passwords according to password policies
  2 Uppercase Characters
  2 Lowercase Characters
  2 Special Characters
  1 Digits
 4 years ago
Sven Ketelsen 51c1a79eb1 chore: apt: removed duplicated iotop entry 4 years ago
Görz, Friedrich 0eac3f3d3c DEV-429: mariadb upgrade 4 years ago
Sven Ketelsen ea827b727e feat: apt: added iotop to defaults 4 years ago
Sven Ketelsen 4fbf0b4203 feat: added node-exporter for kubernetes servers 4 years ago
Görz, Friedrich 4bf4167216 DEV-386: to use techn.user to scrape metrics for ssh-root-login 4 years ago
Görz, Friedrich d4aab3b7d8 DEV-473: removed stage specific threshold for replication_lag - flapping... 4 years ago
Görz, Friedrich 6c6dd5c1ae DEV-442: added threshold for pg_repl_lag to avoid false positives on DEV-stage 4 years ago
Sven Ketelsen acee683569 feat: added workflow heatmap flag to portal 
- SMA_WORKFLOW_HEATMAP_ENABLED: [false]|true
 4 years ago
Sven Ketelsen 9f65ecaf96 DEV-447: added new ext server ext-bdev-mpmexec-01 4 years ago
Sven Ketelsen f55a892418 bugfix: pgadmin username/password 
- username: nso.devops@netgo.de
- password: DEV default
- password: QA vault
- password: PRODNSO vault
 4 years ago
Michael Haehnel c112a780f1 Extend hetzner_ssh_keys for michael.haehnel 4 years ago
Michael Haehnel 10bd066617 DEV-456: Added SSH key for michael.haehnel 4 years ago
Görz, Friedrich b4937db87a DEV-375: bugfix to run stuff for testdb only when is set 4 years ago
Sven Ketelsen f631b487bd chore: new smardigo workflow version 4 years ago
friedrich goerz 615121fe72 DEV-375: added label for restore- server to ignore them in promehtues 4 years ago
Görz, Friedrich 03c87e74dc DEV-435: ssh-key rotation for technical users 4 years ago
Sven Ketelsen ab790591c2 chore: whitelisted admin ips 4 years ago
Görz, Friedrich a2fa12ef40 DEV-396: changed diskspace alert from predictive to alert of current usage 4 years ago
Görz, Friedrich 62e0a64f26 DEV-414: follow-up tasks prod@hetzner-incident 4 years ago
Görz, Friedrich 49fc416764 DEV-382: enable SSL for postgres-connections 4 years ago
Sven Ketelsen d99c9001bf DEV-383: enable SSL for mariadb-connections 4 years ago
Sven Ketelsen 6297ad954e feat: removed admin ips from firewalls 4 years ago
Sven Ketelsen 0b18fc9bc2 MOB-28: added custom whitelisted ips for services 4 years ago
Sven Ketelsen 62fa239b6f MOB-28: added firewall whitelist for mobene - keycloak 4 years ago
Sven Ketelsen fec11415bc MOB-28: added firewall whitelist for mobene - keycloak 4 years ago
Sven Ketelsen 7bb1c9eed3 chore: update of ip whitelist 4 years ago
friedrich goerz 44e21b4f03 NOTICKET: fix broken playbook due to violation of password policy 4 years ago
Görz, Friedrich 43da648df6 DEV-389: added gpg-decryption for backup 4 years ago
Görz, Friedrich 0c9042da83 DEV-373: try to automate restore from database backup 4 years ago
Sven Ketelsen 80b321cd65 DEV-375 feat: new process for backup scheduling 4 years ago
Sven Ketelsen 49aa913213 bugfix: backup runs with gather_facts: false 4 years ago
Sven Ketelsen 68f1c76919 bugfix: timestamp wasn't stabel anymore 4 years ago
Sven Ketelsen 5733b20dc3 bugfix: server creation was broken due to backupuser 4 years ago
Sven Ketelsen b35744a3b3 bugfix: used wrong email address for hetzner key 4 years ago
Sven Ketelsen 2c7504c781 chore: renamed master into main - consistency 4 years ago
Sven Ketelsen 8dbd533c97 DEV-273 added branch to rollout for stages 
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
 4 years ago
Sven Ketelsen 42f0ae114a DEV-273 added branch to rollout for stages 
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
 4 years ago
Sven Ketelsen 6394d9150c bugfix: awx uses now own user for automation 4 years ago
Sven Ketelsen 92c11ecef4 bugfix: ansible user for awx 4 years ago
Ketelsen, Sven e17c62f81e DEV-371: added stuff to do remote backup 4 years ago
Sven Ketelsen 9d5105f764 feat: updated awx-operator/awx 
- extracted argocd revision into variable
- on dev stage revision is main
- default revision is <stage> (qa, prodnso, ...)
 4 years ago
Görz, Friedrich ac8998f212 DEV-273: automate rollout ansible by gitlab 4 years ago