summaryrefslogtreecommitdiffstats
path: root/inventory/group_vars/pkgs
blob: fd0e9312a2d4a4d3ffe5737d6937082c639534cb (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

---
lvm_size: 100000
mem_size: 4096
num_cpus: 4

tcp_ports: [80, 443, 9418,
    # These 16 ports are used by fedmsg.  One for each wsgi thread.
    3000, 3001, 3002, 3003, 3004, 3005, 3006, 3007,
    3008, 3009, 3010, 3011, 3012, 3013, 3014, 3015]

# Definining these vars has a number of effects
# 1) mod_wsgi is configured to use the vars for its own setup
# 2) iptables opens enough ports for all threads for fedmsg
# 3) roles/fedmsg/base/ declares enough fedmsg endpoints for all threads
wsgi_fedmsg_service: pagure
wsgi_procs: 4
wsgi_threads: 4

fas_client_groups: sysadmin-main,sysadmin-cvs,sysadmin-build,sysadmin-noc,sysadmin-veteran
fas_client_restricted_app: PAGURE_CONFIG=/etc/pagure/pagure_hook.cfg HOME=/srv/git /usr/share/gitolite3/gitolite-shell %(username)s
fas_client_admin_app: PAGURE_CONFIG=/etc/pagure/pagure_hook.cfg HOME=/srv/git /usr/share/gitolite3/gitolite-shell -s %(username)s
fas_client_ssh_groups: "@cvs,sysadmin-main,sysadmin-cvs,sysadmin-releng,sysadmin-noc,sysadmin-veteran"
admin_groups: "@sysadmin-cvs @sysadmin-releng @sysadmin-noc @sysadmin-veteran"

git_group: packager
git_port: 9418
git_server: /usr/libexec/git-core/git-daemon
git_server_args: --export-all --syslog --inetd --verbose
git_basepath: /srv/git/repositories
git_daemon_user: nobody

clamscan_mailto: admin@fedoraproject.org
clamscan_paths:
- /srv/cache/lookaside/pkgs
clamscan_excludes:
- clamav-
- amavisd-new-2.3.3.tar.gz
- bro-20080804.tgz
- mailman-
- sagator-
- nicotine
- fwsnort-1.0.6.tar.gz
- psad-2.1.7.tar.bz2
- pymilter-
- linkchecker-
- julia-0.3.7.tar.gz
- jbossws-cxf-5.1.5.Final.zip
- wss4j-2.1.5-source-release.zip
- python-impacket-0.9.14-67fc19e.tar.gz

# These are consumed by a task in roles/fedmsg/base/main.yml
fedmsg_certs:
- service: shell
  owner: root
  group: sysadmin
  can_send:
  - git.branch
  - git.mass_branch.complete
  - git.mass_branch.start
  - git.pkgdb2branch.complete
  - git.pkgdb2branch.start
  - logger.log
- service: scm
  owner: root
  group: packager
  can_send:
  - git.receive
- service: lookaside
  owner: root
  group: apache
  can_send:
  - git.lookaside.new
generated by cgit (git 2.34.1) at 2026-01-08 14:29:08 +0000