summaryrefslogtreecommitdiffstats
path: root/roles/base/tasks
Commit message (Collapse)AuthorAgeFilesLines
* Allow NM-controlled DNS if intendedPatrick Uiterwijk2017-08-211-1/+3
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* move this to a dep instead of including itKevin Fenzi2017-08-191-3/+0
|
* Turns out it was just missing a name=Patrick Uiterwijk2017-08-161-1/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Turns out name: is incompatible with include_rolePatrick Uiterwijk2017-08-161-2/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Move SSH setup to its own rolePatrick Uiterwijk2017-08-162-161/+3
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Revert "bypass sshd restart for nowg"Patrick Uiterwijk2017-08-151-1/+1
| | | | This reverts commit ecb03a1093dd4ad6e5e9e0ac5c3a20eeb1ac4ae3.
* bypass sshd restart for nowgPatrick Uiterwijk2017-08-151-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Lets just call out to date...Patrick Uiterwijk2017-08-151-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Add sshd_cert tagPatrick Uiterwijk2017-08-151-0/+10
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Or no quotingPatrick Uiterwijk2017-08-041-2/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Quote this too. Quote all the thingsPatrick Uiterwijk2017-08-041-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Fix EPARSEPatrick Uiterwijk2017-08-041-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Deploy sender_access filePatrick Uiterwijk2017-08-041-0/+17
| | | | Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
* when != henPatrick Uiterwijk2017-07-141-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Teach ansible about the enc900 interface on s390Patrick Uiterwijk2017-07-141-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* oops, == here not isKevin Fenzi2017-05-151-4/+4
|
* clean up iptables in base to not apply to cloud compute/master, osbs or osKevin Fenzi2017-05-151-2/+4
|
* comment in rsyslog-audit module in baseKevin Fenzi2017-05-041-20/+23
|
* initial selinux module work for rsyslog to read auditKevin Fenzi2017-05-041-0/+21
|
* Revert "ansible tells me not to use {s in when, lets see if this works"Kevin Fenzi2017-04-201-1/+1
| | | | This reverts commit 9b77ca729b3d8ea304d99e795c9aae77006c57a5.
* ansible tells me not to use {s in when, lets see if this worksKevin Fenzi2017-04-201-1/+1
|
* change state=running to start=started as the old one is going away in ↵Kevin Fenzi2017-04-132-2/+2
| | | | ansible 2.7
* Production key is generatedPatrick Uiterwijk2017-04-091-11/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Revert "Make explicitly invalid"Patrick Uiterwijk2017-04-091-1/+1
| | | | This reverts commit b91d69d1ede9d66a7a24d7fe555d33c9ca4d7574.
* Make explicitly invalidPatrick Uiterwijk2017-04-091-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* SSH does not know yearsPatrick Uiterwijk2017-04-091-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Combine properlyPatrick Uiterwijk2017-04-091-2/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Allow setting additional hostnamesPatrick Uiterwijk2017-04-091-2/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Use a static dirPatrick Uiterwijk2017-04-091-9/+12
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Fix env testsPatrick Uiterwijk2017-04-091-10/+10
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Add initial SSH certificatesPatrick Uiterwijk2017-04-092-0/+117
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* do not apply iptables to any fed-cloud machine nowKevin Fenzi2017-04-071-1/+1
|
* add tag for common scriptsKevin Fenzi2017-03-021-0/+1
|
* we need to add a larger limits for file coverageStephen Smoogen2017-01-181-1/+14
|
* Fix missing )Kevin Fenzi2016-12-051-1/+1
|
* Simplify this conditional for iptables.Kevin Fenzi2016-12-051-1/+1
|
* Exclude the osbs hosts from our default iptables template as they have their ↵Kevin Fenzi2016-12-051-1/+1
| | | | own more complex one.
* policycoreutils-python is what we want for semanage on rhelKevin Fenzi2016-11-301-1/+1
|
* adding check for non-standard ssh and semanage adjustment if foundTim Flink2016-11-301-0/+38
|
* Seems IPA masters need a different krb5 confPatrick Uiterwijk2016-11-231-0/+9
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* In ansible 2.2 always_run is depreciated. Switch to check_mode.Kevin Fenzi2016-11-012-3/+3
|
* Allow specifying additionally needed host keytabsPatrick Uiterwijk2016-10-271-0/+26
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Move keytab stuff into the base rolePatrick Uiterwijk2016-10-272-0/+107
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Create role for host keytab to test before putting in basePatrick Uiterwijk2016-10-271-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Put krb5.conf in base rolePatrick Uiterwijk2016-10-131-0/+7
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* tweak base role interfaces for docker networksKevin Fenzi2016-10-101-1/+1
|
* Install complete.crt into .crtPatrick Uiterwijk2016-09-271-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Install gateway cert with intermediate certPatrick Uiterwijk2016-09-271-1/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* push the tls change out to the smtp-mm boxesStephen Smoogen2016-09-271-3/+3
|
* Fix the order of this handlerKevin Fenzi2016-09-271-1/+1
|
generated by cgit (git 2.34.1) at 2026-03-03 04:47:30 +0000