Sven Ketelsen
|
1c3954fd76
|
DEV-1058 set management realm to "stage-connect"
|
3 years ago |
|
Ketelsen, Sven
|
91303a458d
|
DEV-1042: added new stage for demo mpmx
|
3 years ago |
|
Sven Ketelsen
|
d12e670bda
|
chore: added hint to default hetzner ssh keys
- always add them to hetzner clound console.
server creation will be broken if not
|
3 years ago |
Michael Haehnel
|
44654487f6
|
NOTICKET: Add new DevOps user Hendrik Kiedrowski
|
3 years ago |
|
Sven Ketelsen
|
c8297ab6d1
|
hotfix: pmci playbooks broken
- server create
- renamed hetzner roles
- docker networks broken
- pinned pip dependencies
|
3 years ago |
|
Sven Ketelsen
|
6f01e9d0c3
|
DEV-446 added backuphamster to user deletion prevention
|
3 years ago |
|
Michael Hähnel
|
1bb111ce7f
|
DEV-1004 Manage Grafana Dashboard Permissions
|
3 years ago |
|
Ketelsen, Sven
|
f30c28733d
|
DEV-837 k8s bootstrap: added creation of load balancer and dns record
|
3 years ago |
|
Sven Ketelsen
|
fcb59f2710
|
bugfix: awx config update broken
- fixed awx url's after refactoring
|
3 years ago |
|
Ketelsen, Sven
|
8e9268ca3b
|
DEV-526 added pmci tenant management
|
3 years ago |
|
Ketelsen, Sven
|
f686073dc8
|
DEV-1009 Setup dev-acr cluster with blueprint
|
3 years ago |
Hans-Peter.Wissenba
|
b6af6e6036
|
DEV-1018 add custom_stage_hetzner_ssh_keys
|
3 years ago |
Görz, Friedrich
|
96da6ef83f
|
Feature/dev 962 es clsuter activehards alert
|
3 years ago |
|
Hans-Peter Wissenbach
|
2d771f4989
|
Feature/dev 829 - ansible version updaten
|
3 years ago |
friedrich goerz
|
bb0471a9bb
|
NOTICKET: removed forgotten wrong set ansible-VAR
|
3 years ago |
|
Michael Haehnel
|
e37561f2d5
|
DEV-927 Fix Prometheus blackbox http targets
|
3 years ago |
|
Michael Hähnel
|
6b1fd778b5
|
Feature/dev 927
|
3 years ago |
|
Ketelsen, Sven
|
b73a8a4723
|
DEV-914 bugfix of regression from customer specific domains
|
3 years ago |
|
Ketelsen, Sven
|
e4a391be7f
|
DEV-873 added custom node exporter polling for EXT stage
|
3 years ago |
|
friedrich goerz
|
e94cf00a1b
|
DEV-889: inc. thresholds ... inc.connect version for mgmt-instance
|
3 years ago |
|
Görz, Friedrich
|
cfd44dc938
|
DEV-830: removed pip-dependencty for debugigng purpose
|
3 years ago |
|
Sven Ketelsen
|
5cd09c7682
|
DEV-822 feat: ssh key für Hans-Peter Wissenbach hinzugefügt
|
3 years ago |
|
Görz, Friedrich
|
8a9e7bfee5
|
DEV-788: increased keycloak version - pimped dockercompose jinja template due...
|
3 years ago |
|
Michael Hähnel
|
76c7b4b628
|
DEV-679 New Role+Playbook for infrastructure realm
|
3 years ago |
|
Ketelsen, Sven
|
a12c9c3973
|
DEV-735 updated default firewall rules
|
3 years ago |
|
friedrich goerz
|
1c6f257b28
|
DEV-730: added sep. keycloak instance
|
3 years ago |
|
Sven Ketelsen
|
52d89b5259
|
NOTICKET: changed keycloak version from 14.0.0.2 to 14.0.0.4
- get rid of the stupid small role selects
|
3 years ago |
|
Ketelsen, Sven
|
7e80cfaa0e
|
DEV-711 use servers without shared_service_network
|
3 years ago |
|
Görz, Friedrich
|
982ec72f28
|
DEV-695: fixing buggy firewall stuff
|
3 years ago |
|
Görz, Friedrich
|
2ef6773ed3
|
DEV-701: changed node-exporter installation from ubuntu-repo to...
|
3 years ago |
|
Görz, Friedrich
|
2da1f1ee28
|
DEV-687 aachen ip hcloud fw
|
3 years ago |
|
Sven Ketelsen
|
c9c09828bb
|
DEV-677 update hetzner firewall rules for new k8s worker node on dev
|
3 years ago |
Hoan To
|
1bbd04b131
|
DEV-533: added IP for aachen to whitelist and firewalls
|
3 years ago |
|
Sven Ketelsen
|
9f76d05353
|
SMA-1993 new platform qa server
|
3 years ago |
|
Ketelsen, Sven
|
e343b5f76e
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Ketelsen, Sven
|
35b94aab8a
|
DEV-649 updated pip to >=2.28.1
|
3 years ago |
sven.ketelsen
|
ad6f470920
|
Revert "DEV-647 added hetzner domain smardigo.dev"
This reverts commit 0b7b2a0f01.
|
3 years ago |
|
Ketelsen, Sven
|
0b7b2a0f01
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Görz, Friedrich
|
a9c0e86f36
|
Revert "DEV-647 added hetzner domain smardigo.dev"
|
3 years ago |
|
Ketelsen, Sven
|
7cdc602534
|
DEV-647 added hetzner domain smardigo.dev
|
3 years ago |
|
Hoan To
|
8f4b884ba1
|
added bootstrap for prodwork01
|
3 years ago |
Michael Hähnel
|
b9e48a3260
|
DEV-601 added playbook for bdev demo setup
|
3 years ago |
|
friedrich goerz
|
959dcc6832
|
NOTICKET: someone broke sth
|
3 years ago |
|
Ketelsen, Sven
|
db57bcb7ca
|
DEV-579 add basic auth to prometheus stack
|
3 years ago |
|
Hoan To
|
17e923b9b4
|
Feature/dev 583 new cluster
|
3 years ago |
|
Ketelsen, Sven
|
e5e2bdf93e
|
DEV-597 removed ssh keys
|
3 years ago |
|
Ketelsen, Sven
|
9919985e3d
|
DEV-593 updated versions
|
3 years ago |
|
Görz, Friedrich
|
01049bf031
|
DEV-548: testcluster
|
3 years ago |
|
Ketelsen, Sven
|
ac7285bbcf
|
DEV-572: alertmanager metrics
|
3 years ago |
|
Görz, Friedrich
|
01c972771b
|
Rollout main=>qa 13.09.2022
|
3 years ago |
|
friedrich goerz
|
45f4fd20f3
|
DEV-537: added availability check for kube-awx-domain
|
3 years ago |
|
Hoan To
|
6027ba958e
|
added hoan.to ssh-key
|
3 years ago |
Eichhorn, Philipp
|
6200deea76
|
DEV-489: add ssh key for philipp.eichhorn@netgo.de
|
4 years ago |
|
Görz, Friedrich
|
84a013d169
|
MOB-148: added k8s cluster for mobene stuff
|
4 years ago |
|
Sven Ketelsen
|
05ccebc851
|
feat: added initial password creation to portal
- randomize passwords according to password policies
2 Uppercase Characters
2 Lowercase Characters
2 Special Characters
1 Digits
|
4 years ago |
|
Sven Ketelsen
|
51c1a79eb1
|
chore: apt: removed duplicated iotop entry
|
4 years ago |
|
Görz, Friedrich
|
0eac3f3d3c
|
DEV-429: mariadb upgrade
|
4 years ago |
|
Sven Ketelsen
|
ea827b727e
|
feat: apt: added iotop to defaults
|
4 years ago |
|
Görz, Friedrich
|
6c6dd5c1ae
|
DEV-442: added threshold for pg_repl_lag to avoid false positives on DEV-stage
|
4 years ago |
|
Michael Haehnel
|
c112a780f1
|
Extend hetzner_ssh_keys for michael.haehnel
|
4 years ago |
|
Michael Haehnel
|
10bd066617
|
DEV-456: Added SSH key for michael.haehnel
|
4 years ago |
|
Sven Ketelsen
|
ab790591c2
|
chore: whitelisted admin ips
|
4 years ago |
|
Görz, Friedrich
|
a2fa12ef40
|
DEV-396: changed diskspace alert from predictive to alert of current usage
|
4 years ago |
|
Görz, Friedrich
|
62e0a64f26
|
DEV-414: follow-up tasks prod@hetzner-incident
|
4 years ago |
|
Görz, Friedrich
|
49fc416764
|
DEV-382: enable SSL for postgres-connections
|
4 years ago |
|
Sven Ketelsen
|
d99c9001bf
|
DEV-383: enable SSL for mariadb-connections
|
4 years ago |
|
Sven Ketelsen
|
6297ad954e
|
feat: removed admin ips from firewalls
|
4 years ago |
|
Sven Ketelsen
|
0b18fc9bc2
|
MOB-28: added custom whitelisted ips for services
|
4 years ago |
|
Sven Ketelsen
|
fec11415bc
|
MOB-28: added firewall whitelist for mobene - keycloak
|
4 years ago |
|
Sven Ketelsen
|
7bb1c9eed3
|
chore: update of ip whitelist
|
4 years ago |
|
Görz, Friedrich
|
43da648df6
|
DEV-389: added gpg-decryption for backup
|
4 years ago |
|
Görz, Friedrich
|
0c9042da83
|
DEV-373: try to automate restore from database backup
|
4 years ago |
|
Sven Ketelsen
|
49aa913213
|
bugfix: backup runs with gather_facts: false
|
4 years ago |
|
Sven Ketelsen
|
68f1c76919
|
bugfix: timestamp wasn't stabel anymore
|
4 years ago |
|
Sven Ketelsen
|
5733b20dc3
|
bugfix: server creation was broken due to backupuser
|
4 years ago |
|
Sven Ketelsen
|
b35744a3b3
|
bugfix: used wrong email address for hetzner key
|
4 years ago |
|
Sven Ketelsen
|
8dbd533c97
|
DEV-273 added branch to rollout for stages
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
|
4 years ago |
|
Sven Ketelsen
|
42f0ae114a
|
DEV-273 added branch to rollout for stages
- master/main -> DEV
- qa -> QA
- prodnso -> PRODNSO
|
4 years ago |
|
Sven Ketelsen
|
6394d9150c
|
bugfix: awx uses now own user for automation
|
4 years ago |
|
Sven Ketelsen
|
92c11ecef4
|
bugfix: ansible user for awx
|
4 years ago |
|
Ketelsen, Sven
|
e17c62f81e
|
DEV-371: added stuff to do remote backup
|
4 years ago |
|
Görz, Friedrich
|
ac8998f212
|
DEV-273: automate rollout ansible by gitlab
|
4 years ago |
|
Görz, Friedrich
|
ea2ef949c9
|
DEV-360: rollout k8s on prodnso
|
4 years ago |
|
Görz, Friedrich
|
c732ab8eb3
|
DEV-341: tried to implement review critics
|
4 years ago |
|
Sven Ketelsen
|
e353d718ba
|
bugfix: removed "ignore_errors: true" from patchday (kubernetes)
|
4 years ago |
|
Sven Ketelsen
|
8b885a30b7
|
bugfix: patchay was broken due to missing pip dependency
- kubernetes
|
4 years ago |
|
Ketelsen, Sven
|
5d604700dd
|
DEV-319: feat: split dev/qa into own hetzner projects
|
4 years ago |
|
Sven Ketelsen
|
aa09887b9e
|
feat: rollout new tokens/passwords for qa stage
|
4 years ago |
|
Görz, Friedrich
|
59a409fc32
|
DEV-342: added patchday playbook
|
4 years ago |
|
friedrich goerz
|
46e021d22c
|
DEV-327: added several stuff for new prodnso-stage + bugfixing and improving other stuff
|
4 years ago |
|
Sven Ketelsen
|
cdd9c2543a
|
cleanup: removed vault for group/all > moved to stage groups
- every stage has now its own vault file
|
4 years ago |
|
Sven Ketelsen
|
190b8394eb
|
feat: added metricbeat (inactive)
|
4 years ago |
|
Sven Ketelsen
|
d314e164c7
|
bugfix: disabled blackbox exporter for connect management
- current config didn't works with 302 to login page
|
4 years ago |
|
Sven Ketelsen
|
df0e320743
|
bugfix: fixed connect url for blackbox exporter
|
4 years ago |
|
Görz, Friedrich
|
76289d2242
|
DEV-316: fixing linter problems
|
4 years ago |
|
Sven Ketelsen
|
44c7509e11
|
feat: consolidation for harbor
- dev-docker-registry-01 -> dev-harbor-01
- qa-docker-registry-01 -> qa-harbor-01
|
4 years ago |
|
Sven Ketelsen
|
212ef00807
|
bugfix: connect-wordpress orchestration
- added missing configuration to wordpress service
REALM_ID
REGISTRATION_ID
CLIENT_ID
CLIENT_SECRET
CLIENT_USERNAME
CLIENT_PASSWORD
SMARDIGO_AUTH_TOKEN_NAME
SMARDIGO_AUTH_TOKEN_VALUE
|
4 years ago |
|
Görz, Friedrich
|
9f9a192432
|
DEV-269: added stuff to federate k8s-internal prometheus metrics
|
4 years ago |
|
Sven Ketelsen
|
ea231be89f
|
DEV-277 feat: added stage for external usage
- stage without shared services
- setup isolated services
|
4 years ago |
|
Görz, Friedrich
|
5bdff07d1b
|
DEV-253: digitalocean stuff - add droplet but not idempotentgit branch git branch plz check
|
4 years ago |