bae489a528
Add new countries for metadata checking
2024-10-11 15:43:52 +02:00
0ba5675049
Test went fine
2024-10-11 08:00:18 +02:00
d1a072aea7
Test new code
2024-10-11 07:49:17 +02:00
5ffaa8c493
changed to an old setup did by berra in commit 6cb958f984
2024-10-10 20:49:56 +02:00
3a7f612d51
Update eidas test suite to 2.1.17, Ref: SC-2528
2024-10-10 15:49:15 +02:00
19786c9579
Secrets
2024-10-02 14:15:33 +02:00
27d14b4e0e
Secrets
2024-10-02 14:11:07 +02:00
ad11332fad
New partition challange
2024-10-02 12:29:30 +02:00
8957839798
updated Johan W's key
2024-09-30 19:02:49 +02:00
b7e53eb93e
Add Cyprus to PRID in prod: SC-2426
2024-09-25 14:39:45 +02:00
1b10684966
Add Cyprus to PRID in QA: SC-2426
2024-09-24 08:55:46 +02:00
3ba1d006ec
Bump eidastest-testid to 2.1.16: SC-2485
2024-09-20 09:28:23 +02:00
299c436188
Bump eidastest-testid to 2.1.15 in QA: SC-2485
2024-09-18 14:02:52 +02:00
7a899efb59
allowing new SUNET LB servers in IDM app servers
...
Move backend registration to new SUNET LB servers
ref: SC-2460
2024-09-11 11:13:40 +02:00
Patrik Holmqvist
028ba3d608
Merge pull request #56 from SUNET/pahol-fix-noble-eyaml
...
patch for broken eyaml in ubuntu24.04.
2024-09-10 13:16:19 +02:00
7941e3f970
Merge the 2 patch functions to 1.
2024-09-09 17:29:31 +02:00
fac9a556ba
Patch for broken eyaml in ubuntu24.04.
2024-09-09 16:52:38 +02:00
75fcceacf9
removed Fredrik Kjellman's GPG key
2024-09-06 15:40:01 +02:00
39fa13b641
delete kjellman's ssh key and berra's GPG key
2024-09-06 15:16:26 +02:00
8bcdf11ceb
migrated to new LBs
2024-09-04 15:24:38 +02:00
43dc9b2b20
Bump proxy service in prod to 3.0.3
...
Ticket ref: SC-2432
2024-09-03 14:44:26 +02:00
86e1af73fe
setup separate tag for puppet-sunet in QA
2024-09-03 14:19:38 +02:00
468b4cf7f6
removed from the list
2024-08-30 17:01:03 +02:00
8c631bde16
removed berra's gpg key
...
SUNETOPS-1891
2024-08-30 16:51:26 +02:00
634e12142c
removed berra's ssh key
2024-08-30 15:50:42 +02:00
0a4f3d865a
Update metadata for eidas-proxy in prod.
...
Remove eidas-high. JIRA: SC-2429
2024-08-29 10:38:38 +02:00
27455f937d
upgraded proxy
...
ref: SC-2432
2024-08-27 15:16:10 +02:00
ca702e71e5
upgraded proxy
...
SC-2432
2024-08-27 15:08:37 +02:00
ef6c96f6a2
Update metadata for eidas-proxy in QA.
...
Remove eidas-high. JIRA: SC-2429
2024-08-22 15:24:19 +02:00
2a37471e59
Update metadata for eidas-proxy in test.
...
Remove eidas-high. JIRA: SC-2429
2024-08-22 14:54:26 +02:00
884c958ec8
save configuration with sunet-reinstall
2024-07-23 15:22:42 +02:00
d36aebfceb
upgrade demw in prod to 3.3.0
...
ref: SC-2296
2024-07-10 10:35:32 +02:00
cfbe5f381b
new directory for hsql db
2024-07-10 10:14:52 +02:00
203b17c1b3
HSM slot changed
2024-07-08 12:12:44 +02:00
8817d753a3
upgrade demw application to 3.2.0 in prod
...
ref: SC-2047
2024-07-08 11:06:39 +02:00
f05da52d8a
run eidas-test branch in idm servers in Test
2024-07-05 17:59:21 +02:00
ff069fc841
removed double entry and unnecessary cert location
2024-07-04 23:48:12 +02:00
770a5ca3cc
Merge pull request #55 from SUNET/patlu-fleetlock-lock-timeouts
...
fleetlock: configurable lock/unlock timeout
2024-07-04 13:07:34 +02:00
aa88795ee0
sunet-fleetlock: also handle ReadTimeout
...
Turns out this was not caught by ConnectionError.
2024-07-03 14:13:22 +02:00
01768129f0
fleetlock: configurable lock/unlock timeout
...
While we already support setting a healthcheck timeout it probably
makes sense to be able to control how long we wait for a
fleetlock_lock() or fleetlock_unlock() call. This becomes important if
only running cosmos once a night or something like that. In that case we
you probably want to give a physical machine more than than 1 minute to
complete a reboot etc.
This can now be controlled by setting fleetlock_lock_timeout and
fleetlock_unlock_timeout in /etc/run-cosmos-fleetlock-conf. Keep in mind
that while it can make sense to increase the time for taking a lock,
releasing a lock should always be fast (either you have it and release
it, or you dont have it and it is a no-op) so setting a long unlock
timeout should probably never be done.
Since we also potentially wait the unlock timeout at boot (if the
fleetlock server is broken etc) that is another reason to keep it
short. The default 1m is probably OK for most uses.
2024-07-03 13:27:52 +02:00
443611dd3f
Merge pull request #49 from SUNET/john-permissions-fix
...
Enforce more strict permissions for files in Cosmos
2024-07-03 11:36:21 +02:00
52a30ae970
upgrade DEMW application in QA to 3.3.0
...
ref: SC-2296
2024-07-02 16:15:41 +02:00
022f29d7e8
enabling SP metadata signing in TEST connector service
2024-07-02 14:22:58 +02:00
ba5a53c1f0
made signing with HSm true in Test environment
2024-07-02 14:13:36 +02:00
994262fddc
let demw in test environement run eidas-test branch
2024-07-01 18:32:17 +02:00
a5a33e95a5
updating docker env parameters
2024-06-27 22:27:16 +02:00
249c690ddb
changed slot number
2024-06-20 16:53:15 +02:00
47dae869d3
New version for tests. SC-2354.
2024-06-20 08:10:21 +02:00
5518048d79
Merge pull request #54 from SUNET/pahol-ubuntu24
...
Ubuntu-24 fixes
2024-06-19 15:07:17 +02:00
4231b4ac1d
Migrate from legacy fact
...
This did not work on modern puppet in ubuntu24:
Warning: Interpolation failed with '::lsbdistcodename', but compilation continuing;
New syntax inspiration from:
https://www.puppet.com/docs/puppet/8/hiera_config_yaml_5#configuring_hiera
2024-06-19 14:07:13 +02:00
