hetzner-ansible

Commit Graph

Author	SHA1	Message	Date
Ketelsen, Sven	7e80cfaa0e	DEV-711 use servers without shared_service_network	3 years ago
Görz, Friedrich	982ec72f28	DEV-695: fixing buggy firewall stuff	3 years ago
Görz, Friedrich	2ef6773ed3	DEV-701: changed node-exporter installation from ubuntu-repo to...	3 years ago
Ketelsen, Sven	d72b6a3fda	DEV-700 pmci: bugfix for elastic search feature	3 years ago
friedrich goerz	8146179308	DEV-699: removed label, added assert-stmt for catching error	3 years ago
Ketelsen, Sven	d912762383	DEV-628 pmci: added spk bz prod configuration as host_vars file	3 years ago
Görz, Friedrich	2da1f1ee28	DEV-687 aachen ip hcloud fw	3 years ago
Sven Ketelsen	c9c09828bb	DEV-677 update hetzner firewall rules for new k8s worker node on dev	3 years ago
Hoan To	1bbd04b131	DEV-533: added IP for aachen to whitelist and firewalls	3 years ago
friedrich goerz	64ebe201e2	DEV-648: added addintionl k8s node	3 years ago
Sven Ketelsen	954b961ab6	MA-2005 added new feature flag for datasource-action	3 years ago
Sven Ketelsen	16bee429de	DEV-666 added iam configuration for mpmexec	3 years ago
Hoan To	2a3c384550	DEV-587:added prometheus and alertmanager for prodwork01 login credentials to vault	3 years ago
Görz, Friedrich	fe97fbbab5	Bug/dev 659 pgdatadir nospace	3 years ago
Sven Ketelsen	9f76d05353	SMA-1993 new platform qa server	3 years ago
sven.ketelsen	36752d1f57	DEV-658 increased prodnso prometheus data space - old 3 * 30 - new 10 * 30	3 years ago
sven.ketelsen	e5604dd030	DEV-656 prepare rollout - added hetzner dns api tokens	3 years ago
Ketelsen, Sven	e343b5f76e	DEV-647 added hetzner domain smardigo.dev	3 years ago
Ketelsen, Sven	35b94aab8a	DEV-649 updated pip to >=2.28.1	3 years ago
sven.ketelsen	ad6f470920	Revert "DEV-647 added hetzner domain smardigo.dev" This reverts commit `0b7b2a0f01`.	3 years ago
Ketelsen, Sven	0b7b2a0f01	DEV-647 added hetzner domain smardigo.dev	3 years ago
Görz, Friedrich	a9c0e86f36	Revert "DEV-647 added hetzner domain smardigo.dev"	3 years ago
Ketelsen, Sven	7cdc602534	DEV-647 added hetzner domain smardigo.dev	3 years ago
Hoan To	8f4b884ba1	added bootstrap for prodwork01	3 years ago
Michael Hähnel	9b63b2e5a8	DEV-601 added extra configuration for bdev mpmexec demo server	3 years ago
Michael Hähnel	b9e48a3260	DEV-601 added playbook for bdev demo setup	3 years ago
friedrich goerz	959dcc6832	NOTICKET: someone broke sth	3 years ago
Hoan To	593b1fb743	added volume to backup storage space	3 years ago
sven.ketelsen	c59cd4c715	DEV-579 add basic auth to prometheus stack	3 years ago
Ketelsen, Sven	db57bcb7ca	DEV-579 add basic auth to prometheus stack	3 years ago
Görz, Friedrich	24e5cbf3d9	DEV-616: increased vol_count to mitigate disk size problem	3 years ago
Hoan To	17e923b9b4	Feature/dev 583 new cluster	3 years ago
Hoan To	98c5f39c85	DEV-579: added prometheus basic auth	3 years ago
Ketelsen, Sven	e5e2bdf93e	DEV-597 removed ssh keys	3 years ago
Ketelsen, Sven	9919985e3d	DEV-593 updated versions	3 years ago
Görz, Friedrich	01049bf031	DEV-548: testcluster	3 years ago
Ketelsen, Sven	ac7285bbcf	DEV-572: alertmanager metrics	3 years ago
Görz, Friedrich	01c972771b	Rollout main=>qa 13.09.2022	3 years ago
Ketelsen, Sven	e6dddbe4c9	DEV 534: Added hetzner volume to prodnso-postgres-01 for /backups	3 years ago
friedrich goerz	45f4fd20f3	DEV-537: added availability check for kube-awx-domain	3 years ago
Hoan To	6027ba958e	added hoan.to ssh-key	3 years ago
friedrich goerz	79f2e5b41b	DEV-517: added sperate DO for DEVSCR	3 years ago
Görz, Friedrich	ea79ce2a29	DEV-517: changed DO-token due to 'too many request' problem	3 years ago
friedrich goerz	981f32690e	DEV-506/ changed domain names for metric-stack - removed substring kube	4 years ago
friedrich goerz	2494f2002b	DEV-497/DEV-505: added stuff to enable helm secrets in argo	4 years ago
Bas Cancrinus	75c780aeae	SC-13: Added public ssh key	4 years ago
Philipp Eichhorn	ab5cba3c7c	SC-05: add devscr variables to create harbor-pull secret	4 years ago
Sven Ketelsen	06c3589e94	SC-20: added harbor entry to etc/hosts file - access to harbor through loadbalancer with private ip	4 years ago
Görz, Friedrich	b4ebe98e3c	DEV-505: removed settings for CCM for kubespray run => install hetzner-CCM in sep. ansible-run; updated used kubespray version	4 years ago
Görz, Friedrich	beb013aca3	DEV-497: added stuff for gitea to for bootstrapping k8s-clsuter	4 years ago
Görz, Friedrich	c744eaa837	DEV-497: created new branch due to git-problems - dunno what exactly	4 years ago
Eichhorn, Philipp	6200deea76	DEV-489: add ssh key for philipp.eichhorn@netgo.de	4 years ago
Görz, Friedrich	84a013d169	MOB-148: added k8s cluster for mobene stuff	4 years ago
Görz, Friedrich	0f69260711	DEV-416: added stuff to enable filebeat for postgres + mariabb instances	4 years ago
friedrich goerz	8180523963	DEV-480: decrease prometheus retention time for DEV-stage	4 years ago
Sven Ketelsen	79bd5863e0	bugfix: set connect LOG_LEVELs from DEBUG to INFO	4 years ago
Sven Ketelsen	05ccebc851	feat: added initial password creation to portal - randomize passwords according to password policies 2 Uppercase Characters 2 Lowercase Characters 2 Special Characters 1 Digits	4 years ago
Sven Ketelsen	00ca2bc3f1	feat: added initial password creation to portal - randomize passwords according to password policies 2 Uppercase Characters 2 Lowercase Characters 2 Special Characters 1 Digits	4 years ago
Sven Ketelsen	51c1a79eb1	chore: apt: removed duplicated iotop entry	4 years ago
Görz, Friedrich	0eac3f3d3c	DEV-429: mariadb upgrade	4 years ago
Sven Ketelsen	ea827b727e	feat: apt: added iotop to defaults	4 years ago
Sven Ketelsen	4fbf0b4203	feat: added node-exporter for kubernetes servers	4 years ago
Görz, Friedrich	4bf4167216	DEV-386: to use techn.user to scrape metrics for ssh-root-login	4 years ago
Görz, Friedrich	d4aab3b7d8	DEV-473: removed stage specific threshold for replication_lag - flapping...	4 years ago
Görz, Friedrich	6c6dd5c1ae	DEV-442: added threshold for pg_repl_lag to avoid false positives on DEV-stage	4 years ago
Sven Ketelsen	acee683569	feat: added workflow heatmap flag to portal - SMA_WORKFLOW_HEATMAP_ENABLED: [false]\|true	4 years ago
Sven Ketelsen	9f65ecaf96	DEV-447: added new ext server ext-bdev-mpmexec-01	4 years ago
Sven Ketelsen	f55a892418	bugfix: pgadmin username/password - username: nso.devops@netgo.de - password: DEV default - password: QA vault - password: PRODNSO vault	4 years ago
Michael Haehnel	c112a780f1	Extend hetzner_ssh_keys for michael.haehnel	4 years ago
Michael Haehnel	10bd066617	DEV-456: Added SSH key for michael.haehnel	4 years ago
Görz, Friedrich	b4937db87a	DEV-375: bugfix to run stuff for testdb only when is set	4 years ago
Sven Ketelsen	f631b487bd	chore: new smardigo workflow version	4 years ago
friedrich goerz	615121fe72	DEV-375: added label for restore- server to ignore them in promehtues	4 years ago
Görz, Friedrich	03c87e74dc	DEV-435: ssh-key rotation for technical users	4 years ago
Sven Ketelsen	ab790591c2	chore: whitelisted admin ips	4 years ago
Görz, Friedrich	a2fa12ef40	DEV-396: changed diskspace alert from predictive to alert of current usage	4 years ago
Görz, Friedrich	62e0a64f26	DEV-414: follow-up tasks prod@hetzner-incident	4 years ago
Görz, Friedrich	49fc416764	DEV-382: enable SSL for postgres-connections	4 years ago
Sven Ketelsen	d99c9001bf	DEV-383: enable SSL for mariadb-connections	4 years ago
Sven Ketelsen	6297ad954e	feat: removed admin ips from firewalls	4 years ago
Sven Ketelsen	0b18fc9bc2	MOB-28: added custom whitelisted ips for services	4 years ago
Sven Ketelsen	62fa239b6f	MOB-28: added firewall whitelist for mobene - keycloak	4 years ago
Sven Ketelsen	fec11415bc	MOB-28: added firewall whitelist for mobene - keycloak	4 years ago
Sven Ketelsen	7bb1c9eed3	chore: update of ip whitelist	4 years ago
friedrich goerz	44e21b4f03	NOTICKET: fix broken playbook due to violation of password policy	4 years ago
Görz, Friedrich	43da648df6	DEV-389: added gpg-decryption for backup	4 years ago
Görz, Friedrich	0c9042da83	DEV-373: try to automate restore from database backup	4 years ago
Sven Ketelsen	80b321cd65	DEV-375 feat: new process for backup scheduling	4 years ago
Sven Ketelsen	49aa913213	bugfix: backup runs with gather_facts: false	4 years ago
Sven Ketelsen	68f1c76919	bugfix: timestamp wasn't stabel anymore	4 years ago
Sven Ketelsen	5733b20dc3	bugfix: server creation was broken due to backupuser	4 years ago
Sven Ketelsen	b35744a3b3	bugfix: used wrong email address for hetzner key	4 years ago
Sven Ketelsen	2c7504c781	chore: renamed master into main - consistency	4 years ago
Sven Ketelsen	8dbd533c97	DEV-273 added branch to rollout for stages - master/main -> DEV - qa -> QA - prodnso -> PRODNSO	4 years ago
Sven Ketelsen	42f0ae114a	DEV-273 added branch to rollout for stages - master/main -> DEV - qa -> QA - prodnso -> PRODNSO	4 years ago
Sven Ketelsen	6394d9150c	bugfix: awx uses now own user for automation	4 years ago
Sven Ketelsen	92c11ecef4	bugfix: ansible user for awx	4 years ago
Ketelsen, Sven	e17c62f81e	DEV-371: added stuff to do remote backup	4 years ago
Sven Ketelsen	9d5105f764	feat: updated awx-operator/awx - extracted argocd revision into variable - on dev stage revision is main - default revision is <stage> (qa, prodnso, ...)	4 years ago
Görz, Friedrich	ac8998f212	DEV-273: automate rollout ansible by gitlab	4 years ago
friedrich goerz	84fd4f57be	DEV-363: VAR set twice - removed 2nd one + ansible-run done + argo login check done	4 years ago
friedrich goerz	4416164ba6	DEV-364: fixed some stuff for patchday play	4 years ago
friedrich goerz	1858c40b47	DEV-364: revoke direct push on master branch	4 years ago
friedrich goerz	2945f3d351	DEV-364: fixed some stuff for patchday play	4 years ago
Görz, Friedrich	ea2ef949c9	DEV-360: rollout k8s on prodnso	4 years ago
friedrich goerz	17103ccfe7	DEV-362: enable prometheus federation	4 years ago
Sven Ketelsen	7c891e472c	feat: activated jaeger traecing on dev - traefik - connect - iam	4 years ago
Ketelsen, Sven	74e4174826	SMAR-21: feat: added jaeger tracing	4 years ago
Ketelsen, Sven	65df2886e3	DEV-359: feat: added jaeger-operator/jaeger	4 years ago
Sven Ketelsen	bd6fb2f189	DEV-341: cleanup after merge - removed shared_service_awx_hostname	4 years ago
Görz, Friedrich	c732ab8eb3	DEV-341: tried to implement review critics	4 years ago
Sven Ketelsen	9304b78a8a	feat: updated connect versions - management 8.5.26 > 8.6.9 - default dev 8.5.26 > 8.5.47 - default qa 8.5.26 > 8.5.47 - default prodnso 8.5.26 > 8.5.47	4 years ago
Sven Ketelsen	08e8d3f31f	bugfix: added default value for loadbalancer ip	4 years ago
Sven Ketelsen	a5ff2d53c9	bugfix: rollout new kubernetes cluster	4 years ago
Ketelsen, Sven	4c777356fd	DEV-358: feat: removed hard coded loadbalancer ips	4 years ago
Sven Ketelsen	e353d718ba	bugfix: removed "ignore_errors: true" from patchday (kubernetes)	4 years ago
Sven Ketelsen	8b885a30b7	bugfix: patchay was broken due to missing pip dependency - kubernetes	4 years ago
Ketelsen, Sven	5d604700dd	DEV-319: feat: split dev/qa into own hetzner projects	4 years ago
Ketelsen, Sven	e72ecaf3ac	DEV-349: bugfix: increased postfix message_size_limit	4 years ago
Sven Ketelsen	199e49432c	bugfix: connect uses now netgo_msteams_hook_cd as connection - <CI/CD> vs. <Alerting {{ stage }}> channel	4 years ago
Sven Ketelsen	3b4a515757	feat: rollout new tokens/passwords for prodnso stage	4 years ago
Sven Ketelsen	aa09887b9e	feat: rollout new tokens/passwords for qa stage	4 years ago
Sven Ketelsen	9c7cdfd24b	feat: rollout new tokens/passwords for dev stage	4 years ago
Sven Ketelsen	68bde6085e	DEV-322: enable ApplicationSet CRD for argoCD - added mechanism to apply defined argocd CRD-objects	4 years ago
Görz, Friedrich	59a409fc32	DEV-342: added patchday playbook	4 years ago
Sven Ketelsen	d7e92c315c	bugfix: removed default connect feature values - configured by portal	4 years ago
Sven Ketelsen	11352747b2	feat: added connect feature to portal - webdav - resubmission - element_template - config_delete_Scope - external_tasks_script_worker	4 years ago
Sven Ketelsen	031650c3ed	cleanup	4 years ago
Sven Ketelsen	5a45e8325b	chore: added comment for traefik usage	4 years ago
friedrich goerz	46e021d22c	DEV-327: added several stuff for new prodnso-stage + bugfixing and improving other stuff	4 years ago
Sven Ketelsen	cdd9c2543a	cleanup: removed vault for group/all > moved to stage groups - every stage has now its own vault file	4 years ago
Sven Ketelsen	190b8394eb	feat: added metricbeat (inactive)	4 years ago
Sven Ketelsen	d314e164c7	bugfix: disabled blackbox exporter for connect management - current config didn't works with 302 to login page	4 years ago
Sven Ketelsen	df0e320743	bugfix: fixed connect url for blackbox exporter	4 years ago
Görz, Friedrich	76289d2242	DEV-316: fixing linter problems	4 years ago
Sven Ketelsen	56f7859314	feat: add access to create/edit dashboards/visualizations	4 years ago
Sven Ketelsen	77c27e706b	feat: configuration of connections for connect management installation - awx - teams	4 years ago
Sven Ketelsen	b42bcb76cd	chore: updated connect version from 8.5.8 to 8.5.26	4 years ago
Sven Ketelsen	44c7509e11	feat: consolidation for harbor - dev-docker-registry-01 -> dev-harbor-01 - qa-docker-registry-01 -> qa-harbor-01	4 years ago
Sven Ketelsen	40e0a44043	DEV-279: review / vaulted variables	4 years ago
friedrich goerz	333823fb4c	DEV-279: implemented 'svensons' review critics	4 years ago
Görz, Friedrich	3d304f4ec1	DEV-279: added oidc/rbac for argocd setup (keycloak)	4 years ago
Ketelsen, Sven	d9d980b009	DEV-282: feat: added configuration of parameters through web portal	4 years ago
friedrich goerz	5bc712b4f2	DEV-201: added groupvars for gateway-servers to get them out of standard monitoring	4 years ago
Sven Ketelsen	212ef00807	bugfix: connect-wordpress orchestration - added missing configuration to wordpress service REALM_ID REGISTRATION_ID CLIENT_ID CLIENT_SECRET CLIENT_USERNAME CLIENT_PASSWORD SMARDIGO_AUTH_TOKEN_NAME SMARDIGO_AUTH_TOKEN_VALUE	4 years ago
Görz, Friedrich	9f9a192432	DEV-269: added stuff to federate k8s-internal prometheus metrics	4 years ago
Sven Ketelsen	ea231be89f	DEV-277 feat: added stage for external usage - stage without shared services - setup isolated services	4 years ago
Görz, Friedrich	5bdff07d1b	DEV-253: digitalocean stuff - add droplet but not idempotentgit branch git branch plz check	4 years ago
Ketelsen, Sven	54d6b82f1f	DEV-244 feat: added power dns to stage dev	4 years ago
Sven Ketelsen	31104d1e16	bugfix/cleanup - update-monitoring - k8s-cluster -> k8s_cluster	4 years ago
Sven Ketelsen	8a64fedc55	Merge remote-tracking branch 'origin/DEV-240'	4 years ago
Sven Ketelsen	0eafc32ec9	feat: added borken ip to whitelist	4 years ago
friedrich goerz	3766911cc5	DEV-241: added monitoring stuff for redis	4 years ago
friedrich goerz	671c3a9657	DEV-240: added code for k8s-external single-instance redis instance for DEV+QA	4 years ago
Sven Ketelsen	aeabec152c	SMARCH-106: added stuff for multi tenant setup - workflow-index-postgres - workflow-proxy-postgres - workflow-proxy-realm	4 years ago
Sven Ketelsen	7ca09573e3	kubespray: removed cert/ingress - missing configuration, has to be done by kubespray -> rtfm	4 years ago
Sven Ketelsen	8f94c4aae0	feat: added hetzner csi plugin	4 years ago
Sven Ketelsen	d31810007d	kubespray - renamed groups to match kubespray kube-master -> kube_control_plane kube-node -> kube_node - cert_manager_enabled: false -> true - ingress_nginx_enabled: false -> true	4 years ago
Sven Ketelsen	a9d6249762	feat: rollout gitea on qa	4 years ago
Sven Ketelsen	719a3e71d7	feat: kubernetes bootstrap - ccm - ingress - certmanager - argo-cd {{ stage }}-kube-argocd.{{ domain }} - prometheus {{ stage }}-kube-grafana.{{ domain }}	4 years ago
Sven Ketelsen	937cbcf84f	bugfix: removed awx from etc/hosts - awx uses public ip as bind address	4 years ago
Sven Ketelsen	c207ceb25b	bugfix: setup whole dev stage leftovers	4 years ago
Sven Ketelsen	0355c2ed8b	chore: keycloak rollout was broken due to duplicated declaration	4 years ago
Sven Ketelsen	211ed6c706	chore: cleanup	4 years ago
Sven Ketelsen	b302c4ea6a	chore: renamed kube servers after reset	4 years ago
Sven Ketelsen	bf5d2bbc54	chore: stage dev inventory	4 years ago
Sven Ketelsen	c256c56bef	feat: kubernetes bootstrap with prometheus stack - kube_proxy_metrics_bind_address 127.0.0.1:10249 > 0.0.0.0:10249 - kube-controller-manager scrape http > https 10252 > 10257	4 years ago
Ketelsen, Sven	3d00fdc7a0	DEV-222 kubernetes setup with ansible	4 years ago
Görz, Friedrich	aecd51a58b	Feature/dev 243	4 years ago
Görz, Friedrich	b89cc602e6	DEV-223: spike kubernetes cluster in der hetzner cloud aufsetzen	4 years ago
Sven Ketelsen	8df2970e7c	feat: reverse proxy configuration for gitea - https://... - ssh@...:2222	4 years ago
Sven Ketelsen	da646bf4bd	chore: removed duplications between iam/gitea - deploying is now done by shared role - only configuration needed by iam/gitea role	4 years ago
Sven Ketelsen	6aa4782d34	feat: added new service: gitea	4 years ago
Sven Ketelsen	c0c410e914	chore: added k8s group configuration - due to running prometheus updates	4 years ago
Sven Ketelsen	ac1fc50e39	chore: new version for management - 8.5.0-SMARCH-98-1-SNAPSHOT -> latest	4 years ago
Sven Ketelsen	674e53d62b	bugfix: provisioning on qa stage	4 years ago
Sven Ketelsen	37cf451edd	chore: maintenance - added tag awx_repository' > update repository on awx server - moved wordpress database dump from /tmp to /backups - switch wordpress dump from <dump>.tar.gz to <dump>.gz - added hint for upload wordpress dump to README.md	4 years ago
Sven Ketelsen	0a9f699f64	bugfix: admin user/pass for management services	4 years ago
Sven Ketelsen	efd0f08293	feat: changed awx password for qa stage	4 years ago
Sven Ketelsen	79bdb2c1ee	bugfix: connect_elastic_prefix uses now _ instead of -	4 years ago
Sven Ketelsen	49cf9e1612	cleanup: factor out docker-compose version (->group all)	4 years ago
Sven Ketelsen	be0511e29a	bugfix: awx admin password	4 years ago
Görz, Friedrich	99d301234a	DEV-216: added ssh pubkey for fgoerz; changed lookup to find also non-RSA-pubkeys	4 years ago
Sven Ketelsen	aad69fcdb0	feat: split management setup into own role (dev) - the smardigo management instance is now configured by group management. connect is now only for dynamic smardigo instances. - <stage>-management-01-connect.<domain>	4 years ago
Sven Ketelsen	04b5cfb0b7	feat: split management setup into own role (dev) - the smardigo management instance is now configured by group management. connect is now only for dynamic smardigo instances. - <stage>-management-01-connect.<domain>	4 years ago
Sven Ketelsen	0515a6788d	bugfix: added configuration for qa admin users	4 years ago
Sven Ketelsen	80cce15def	bugfix: missing variables for qa stage	4 years ago
Sven Ketelsen	5cd34a896b	bugfix: added missing variable for stage management service	4 years ago
Sven Ketelsen	d3278b62ac	bugfix: stage-qa configuration - email - connect api token	4 years ago
Sven Ketelsen	f755e52ba5	feat: added smardigo feature flag ELEMENT_TEMPLATE_ENABLED	4 years ago
Sven Ketelsen	3aa23fdf72	chore: versions - connect dev/qa -> latest - iam dev/qa -> latest	4 years ago
Sven Ketelsen	1c2da22ef6	feat: synchronize authorized keys for root	4 years ago
Sven Ketelsen	335e3bb9dd	chore: cors for swagger on connect/iam	4 years ago
Sven Ketelsen	ba861969d5	chore: updated connect/iam versions to XXX-SMARCH-98-1-SNAPSHOT	4 years ago
Sven Ketelsen	2faa5e8703	chore: cleanup	4 years ago
Sven Ketelsen	f829ea7605	chore: cleanup	4 years ago
Sven Ketelsen	2d6350c11c	chore: missing parameters for qa stage	4 years ago
Sven Ketelsen	d97bedc8f1	feat: complete qa setup up to smardigo management	4 years ago
Sven Ketelsen	c87717f07d	chore: cleanup	4 years ago
Sven Ketelsen	3ad1ef73f8	feat: added external task script worker mock support	4 years ago

... 2 3 4 5 6 ...

415 Commits (7b67ee1a0d73d5576b6f93fa29b8142b0d3c9747)