gitea-admin
/
hetzner-ansible
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
903 Commits
10 Branches
0 Tags
12 MiB
prodnso
main
qa
feature/DEV-655
feature/SC-124
feature/SC-55
feature/DEV-470_2nd
feature/DEV-380_2nd
feature/DEV-380
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'd324a30ff1'
${ noResults }
Commit Graph

341 Commits (d324a30ff1f6f955a2e6eea4268983a70f5a5628)

Author SHA1 Message Date
Michael Hähnel 9b63b2e5a8 DEV-601 added extra configuration for bdev mpmexec demo server 3 years ago
Michael Hähnel b9e48a3260 DEV-601 added playbook for bdev demo setup 3 years ago
friedrich goerz 959dcc6832 NOTICKET: someone broke sth 3 years ago
Hoan To 593b1fb743 added volume to backup storage space 3 years ago
sven.ketelsen c59cd4c715 DEV-579 add basic auth to prometheus stack 3 years ago
Ketelsen, Sven db57bcb7ca DEV-579 add basic auth to prometheus stack 3 years ago
Görz, Friedrich 24e5cbf3d9 DEV-616: increased vol_count to mitigate disk size problem 3 years ago
Hoan To 17e923b9b4 Feature/dev 583 new cluster 3 years ago
Hoan To 98c5f39c85 DEV-579: added prometheus basic auth 3 years ago
Ketelsen, Sven e5e2bdf93e DEV-597 removed ssh keys 3 years ago
Ketelsen, Sven 9919985e3d DEV-593 updated versions 3 years ago
Görz, Friedrich 01049bf031 DEV-548: testcluster 3 years ago
Ketelsen, Sven ac7285bbcf DEV-572: alertmanager metrics 3 years ago
Görz, Friedrich 01c972771b Rollout main=>qa 13.09.2022 3 years ago
Ketelsen, Sven e6dddbe4c9 DEV 534: Added hetzner volume to prodnso-postgres-01 for /backups 3 years ago
friedrich goerz 45f4fd20f3 DEV-537: added availability check for kube-awx-domain 3 years ago
Hoan To 6027ba958e added hoan.to ssh-key 3 years ago
friedrich goerz 79f2e5b41b DEV-517: added sperate DO for DEVSCR 3 years ago
Görz, Friedrich ea79ce2a29 DEV-517: changed DO-token due to 'too many request' problem 3 years ago
friedrich goerz 981f32690e DEV-506/ changed domain names for metric-stack - removed substring kube 4 years ago
friedrich goerz 2494f2002b DEV-497/DEV-505: added stuff to enable helm secrets in argo 4 years ago
Bas Cancrinus 75c780aeae SC-13: Added public ssh key 4 years ago
Philipp Eichhorn ab5cba3c7c SC-05: add devscr variables to create harbor-pull secret 4 years ago
Sven Ketelsen 06c3589e94 SC-20: added harbor entry to etc/hosts file 
- access to harbor through loadbalancer with private ip
 4 years ago
Görz, Friedrich b4ebe98e3c DEV-505: removed settings for CCM for kubespray run => install hetzner-CCM in sep. ansible-run; updated used kubespray version 4 years ago
Görz, Friedrich beb013aca3 DEV-497: added stuff for gitea to for bootstrapping k8s-clsuter 4 years ago
Görz, Friedrich c744eaa837 DEV-497: created new branch due to git-problems - dunno what exactly 4 years ago
Eichhorn, Philipp 6200deea76 DEV-489: add ssh key for philipp.eichhorn@netgo.de 4 years ago
Görz, Friedrich 84a013d169 MOB-148: added k8s cluster for mobene stuff 4 years ago
Görz, Friedrich 0f69260711 DEV-416: added stuff to enable filebeat for postgres + mariabb instances 4 years ago
friedrich goerz 8180523963 DEV-480: decrease prometheus retention time for DEV-stage 4 years ago
Sven Ketelsen 79bd5863e0 bugfix: set connect LOG_LEVELs from DEBUG to INFO 4 years ago
Sven Ketelsen 05ccebc851 feat: added initial password creation to portal 
- randomize passwords according to password policies
  2 Uppercase Characters
  2 Lowercase Characters
  2 Special Characters
  1 Digits
 4 years ago
Sven Ketelsen 00ca2bc3f1 feat: added initial password creation to portal 
- randomize passwords according to password policies
  2 Uppercase Characters
  2 Lowercase Characters
  2 Special Characters
  1 Digits
 4 years ago
Sven Ketelsen 51c1a79eb1 chore: apt: removed duplicated iotop entry 4 years ago
Görz, Friedrich 0eac3f3d3c DEV-429: mariadb upgrade 4 years ago
Sven Ketelsen ea827b727e feat: apt: added iotop to defaults 4 years ago
Sven Ketelsen 4fbf0b4203 feat: added node-exporter for kubernetes servers 4 years ago
Görz, Friedrich 4bf4167216 DEV-386: to use techn.user to scrape metrics for ssh-root-login 4 years ago
Görz, Friedrich d4aab3b7d8 DEV-473: removed stage specific threshold for replication_lag - flapping... 4 years ago
Görz, Friedrich 6c6dd5c1ae DEV-442: added threshold for pg_repl_lag to avoid false positives on DEV-stage 4 years ago
Sven Ketelsen acee683569 feat: added workflow heatmap flag to portal 
- SMA_WORKFLOW_HEATMAP_ENABLED: [false]|true
 4 years ago
Sven Ketelsen 9f65ecaf96 DEV-447: added new ext server ext-bdev-mpmexec-01 4 years ago
Sven Ketelsen f55a892418 bugfix: pgadmin username/password 
- username: nso.devops@netgo.de
- password: DEV default
- password: QA vault
- password: PRODNSO vault
 4 years ago
Michael Haehnel c112a780f1 Extend hetzner_ssh_keys for michael.haehnel 4 years ago
Michael Haehnel 10bd066617 DEV-456: Added SSH key for michael.haehnel 4 years ago
Görz, Friedrich b4937db87a DEV-375: bugfix to run stuff for testdb only when is set 4 years ago
Sven Ketelsen f631b487bd chore: new smardigo workflow version 4 years ago
friedrich goerz 615121fe72 DEV-375: added label for restore- server to ignore them in promehtues 4 years ago
Görz, Friedrich 03c87e74dc DEV-435: ssh-key rotation for technical users 4 years ago
Sven Ketelsen ab790591c2 chore: whitelisted admin ips 4 years ago
Görz, Friedrich a2fa12ef40 DEV-396: changed diskspace alert from predictive to alert of current usage 4 years ago
Görz, Friedrich 62e0a64f26 DEV-414: follow-up tasks prod@hetzner-incident 4 years ago
Görz, Friedrich 49fc416764 DEV-382: enable SSL for postgres-connections 4 years ago
Sven Ketelsen d99c9001bf DEV-383: enable SSL for mariadb-connections 4 years ago
Sven Ketelsen 6297ad954e feat: removed admin ips from firewalls 4 years ago
Sven Ketelsen 0b18fc9bc2 MOB-28: added custom whitelisted ips for services 4 years ago
Sven Ketelsen 62fa239b6f MOB-28: added firewall whitelist for mobene - keycloak 4 years ago
Sven Ketelsen fec11415bc MOB-28: added firewall whitelist for mobene - keycloak 4 years ago
Sven Ketelsen 7bb1c9eed3 chore: update of ip whitelist 4 years ago
friedrich goerz 44e21b4f03 NOTICKET: fix broken playbook due to violation of password policy 4 years ago
Görz, Friedrich 43da648df6 DEV-389: added gpg-decryption for backup 4 years ago
Görz, Friedrich 0c9042da83 DEV-373: try to automate restore from database backup 4 years ago
Sven Ketelsen 80b321cd65 DEV-375 feat: new process for backup scheduling 4 years ago
Sven Ketelsen 49aa913213 bugfix: backup runs with gather_facts: false 4 years ago
Sven Ketelsen 68f1c76919 bugfix: timestamp wasn't stabel anymore 4 years ago
Sven Ketelsen 5733b20dc3 bugfix: server creation was broken due to backupuser 4 years ago
Sven Ketelsen b35744a3b3 bugfix: used wrong email address for hetzner key 4 years ago
Sven Ketelsen 2c7504c781 chore: renamed master into main - consistency 4 years ago
Sven Ketelsen 8dbd533c97 DEV-273 added branch to rollout for stages 
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
 4 years ago
Sven Ketelsen 42f0ae114a DEV-273 added branch to rollout for stages 
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
 4 years ago
Sven Ketelsen 6394d9150c bugfix: awx uses now own user for automation 4 years ago
Sven Ketelsen 92c11ecef4 bugfix: ansible user for awx 4 years ago
Ketelsen, Sven e17c62f81e DEV-371: added stuff to do remote backup 4 years ago
Sven Ketelsen 9d5105f764 feat: updated awx-operator/awx 
- extracted argocd revision into variable
- on dev stage revision is main
- default revision is <stage> (qa, prodnso, ...)
 4 years ago
Görz, Friedrich ac8998f212 DEV-273: automate rollout ansible by gitlab 4 years ago
friedrich goerz 84fd4f57be DEV-363: VAR set twice - removed 2nd one + ansible-run done + argo login check done 4 years ago
friedrich goerz 4416164ba6 DEV-364: fixed some stuff for patchday play 4 years ago
friedrich goerz 1858c40b47 DEV-364: revoke direct push on master branch 4 years ago
friedrich goerz 2945f3d351 DEV-364: fixed some stuff for patchday play 4 years ago
Görz, Friedrich ea2ef949c9 DEV-360: rollout k8s on prodnso 4 years ago
friedrich goerz 17103ccfe7 DEV-362: enable prometheus federation 4 years ago
Sven Ketelsen 7c891e472c feat: activated jaeger traecing on dev 
- traefik
- connect
- iam
 4 years ago
Ketelsen, Sven 74e4174826 SMAR-21: feat: added jaeger tracing 4 years ago
Ketelsen, Sven 65df2886e3 DEV-359: feat: added jaeger-operator/jaeger 4 years ago
Sven Ketelsen bd6fb2f189 DEV-341: cleanup after merge 
- removed shared_service_awx_hostname
 4 years ago
Görz, Friedrich c732ab8eb3 DEV-341: tried to implement review critics 4 years ago
Sven Ketelsen 9304b78a8a feat: updated connect versions 
- management 8.5.26 > 8.6.9
- default dev 8.5.26 > 8.5.47
- default qa 8.5.26 > 8.5.47
- default prodnso 8.5.26 > 8.5.47
 4 years ago
Sven Ketelsen 08e8d3f31f bugfix: added default value for loadbalancer ip 4 years ago
Sven Ketelsen a5ff2d53c9 bugfix: rollout new kubernetes cluster 4 years ago
Ketelsen, Sven 4c777356fd DEV-358: feat: removed hard coded loadbalancer ips 4 years ago
Sven Ketelsen e353d718ba bugfix: removed "ignore_errors: true" from patchday (kubernetes) 4 years ago
Sven Ketelsen 8b885a30b7 bugfix: patchay was broken due to missing pip dependency 
- kubernetes
 4 years ago
Ketelsen, Sven 5d604700dd DEV-319: feat: split dev/qa into own hetzner projects 4 years ago
Ketelsen, Sven e72ecaf3ac DEV-349: bugfix: increased postfix message_size_limit 4 years ago
Sven Ketelsen 199e49432c bugfix: connect uses now netgo_msteams_hook_cd as connection 
- <CI/CD> vs. <Alerting {{ stage }}> channel
 4 years ago
Sven Ketelsen 3b4a515757 feat: rollout new tokens/passwords for prodnso stage 4 years ago
Sven Ketelsen aa09887b9e feat: rollout new tokens/passwords for qa stage 4 years ago
Sven Ketelsen 9c7cdfd24b feat: rollout new tokens/passwords for dev stage 4 years ago
Sven Ketelsen 68bde6085e DEV-322: enable ApplicationSet CRD for argoCD 
- added mechanism to apply defined argocd CRD-objects
 4 years ago
Görz, Friedrich 59a409fc32 DEV-342: added patchday playbook 4 years ago
Sven Ketelsen d7e92c315c bugfix: removed default connect feature values 
- configured by portal
 4 years ago
Sven Ketelsen 11352747b2 feat: added connect feature to portal 
- webdav
- resubmission
- element_template
- config_delete_Scope
- external_tasks_script_worker
 4 years ago
Sven Ketelsen 031650c3ed cleanup 4 years ago
Sven Ketelsen 5a45e8325b chore: added comment for traefik usage 4 years ago
friedrich goerz 46e021d22c DEV-327: added several stuff for new prodnso-stage + bugfixing and improving other stuff 4 years ago
Sven Ketelsen cdd9c2543a cleanup: removed vault for group/all > moved to stage groups 
- every stage has now its own vault file
 4 years ago
Sven Ketelsen 190b8394eb feat: added metricbeat (inactive) 4 years ago
Sven Ketelsen d314e164c7 bugfix: disabled blackbox exporter for connect management 
- current config didn't works with 302 to login page
 4 years ago
Sven Ketelsen df0e320743 bugfix: fixed connect url for blackbox exporter 4 years ago
Görz, Friedrich 76289d2242 DEV-316: fixing linter problems 4 years ago
Sven Ketelsen 56f7859314 feat: add access to create/edit dashboards/visualizations 4 years ago
Sven Ketelsen 77c27e706b feat: configuration of connections for connect management installation 
- awx
- teams
 4 years ago
Sven Ketelsen b42bcb76cd chore: updated connect version from 8.5.8 to 8.5.26 4 years ago
Sven Ketelsen 44c7509e11 feat: consolidation for harbor 
- dev-docker-registry-01 -> dev-harbor-01
- qa-docker-registry-01 -> qa-harbor-01
 4 years ago
Sven Ketelsen 40e0a44043 DEV-279: review / vaulted variables 4 years ago
friedrich goerz 333823fb4c DEV-279: implemented 'svensons' review critics 4 years ago
Görz, Friedrich 3d304f4ec1 DEV-279: added oidc/rbac for argocd setup (keycloak) 4 years ago
Ketelsen, Sven d9d980b009 DEV-282: feat: added configuration of parameters through web portal 4 years ago
friedrich goerz 5bc712b4f2 DEV-201: added groupvars for gateway-servers to get them out of standard monitoring 4 years ago
Sven Ketelsen 212ef00807 bugfix: connect-wordpress orchestration 
- added missing configuration to wordpress service
  REALM_ID
  REGISTRATION_ID
  CLIENT_ID
  CLIENT_SECRET
  CLIENT_USERNAME
  CLIENT_PASSWORD
  SMARDIGO_AUTH_TOKEN_NAME
  SMARDIGO_AUTH_TOKEN_VALUE
 4 years ago
Görz, Friedrich 9f9a192432 DEV-269: added stuff to federate k8s-internal prometheus metrics 4 years ago
Sven Ketelsen ea231be89f DEV-277 feat: added stage for external usage 
- stage without shared services
- setup isolated services
 4 years ago
Görz, Friedrich 5bdff07d1b DEV-253: digitalocean stuff - add droplet but not idempotentgit branch git branch plz check 4 years ago
Ketelsen, Sven 54d6b82f1f DEV-244 feat: added power dns to stage dev 4 years ago
Sven Ketelsen 31104d1e16 bugfix/cleanup 
- update-monitoring
- k8s-cluster -> k8s_cluster
 4 years ago
Sven Ketelsen 8a64fedc55 Merge remote-tracking branch 'origin/DEV-240' 4 years ago
Sven Ketelsen 0eafc32ec9 feat: added borken ip to whitelist 4 years ago
friedrich goerz 3766911cc5 DEV-241: added monitoring stuff for redis 4 years ago
friedrich goerz 671c3a9657 DEV-240: added code for k8s-external single-instance redis instance for DEV+QA 4 years ago
Sven Ketelsen aeabec152c SMARCH-106: added stuff for multi tenant setup 
- workflow-index-postgres
- workflow-proxy-postgres
- workflow-proxy-realm
 4 years ago
Sven Ketelsen 7ca09573e3 kubespray: removed cert/ingress 
- missing configuration, has to be done by kubespray -> rtfm
 4 years ago
Sven Ketelsen 8f94c4aae0 feat: added hetzner csi plugin 4 years ago
Sven Ketelsen d31810007d kubespray 
- renamed groups to match kubespray
  kube-master -> kube_control_plane
  kube-node -> kube_node
- cert_manager_enabled: false -> true
- ingress_nginx_enabled: false -> true
 4 years ago
Sven Ketelsen a9d6249762 feat: rollout gitea on qa 4 years ago
Sven Ketelsen 719a3e71d7 feat: kubernetes bootstrap 
- ccm
- ingress
- certmanager
- argo-cd
  {{ stage }}-kube-argocd.{{ domain }}
- prometheus
  {{ stage }}-kube-grafana.{{ domain }}
 4 years ago
Sven Ketelsen 937cbcf84f bugfix: removed awx from etc/hosts 
- awx uses public ip as bind address
 4 years ago
Sven Ketelsen c207ceb25b bugfix: setup whole dev stage leftovers 4 years ago
Sven Ketelsen 0355c2ed8b chore: keycloak rollout was broken due to duplicated declaration 4 years ago
Sven Ketelsen 211ed6c706 chore: cleanup 4 years ago
Sven Ketelsen b302c4ea6a chore: renamed kube servers after reset 4 years ago
Sven Ketelsen bf5d2bbc54 chore: stage dev inventory 4 years ago
Sven Ketelsen c256c56bef feat: kubernetes bootstrap with prometheus stack 
- kube_proxy_metrics_bind_address
  127.0.0.1:10249 > 0.0.0.0:10249
- kube-controller-manager scrape
  http > https
  10252 > 10257
 4 years ago
Ketelsen, Sven 3d00fdc7a0 DEV-222 kubernetes setup with ansible 4 years ago
Görz, Friedrich aecd51a58b Feature/dev 243 4 years ago
Görz, Friedrich b89cc602e6 DEV-223: spike kubernetes cluster in der hetzner cloud aufsetzen 4 years ago
Sven Ketelsen 8df2970e7c feat: reverse proxy configuration for gitea 
- https://...
- ssh@...:2222
 4 years ago
Sven Ketelsen da646bf4bd chore: removed duplications between iam/gitea 
- deploying is now done by shared role
- only configuration needed by iam/gitea role
 4 years ago
Sven Ketelsen 6aa4782d34 feat: added new service: gitea 4 years ago
Sven Ketelsen c0c410e914 chore: added k8s group configuration 
- due to running prometheus updates
 4 years ago