2b142c262c
hsm changes for natmd in test
2023-12-14 12:44:04 +01:00
fe2eb9ca7d
hsm changes for eidas proxy in test
2023-12-14 12:23:56 +01:00
87b0e8277f
updated luna slot for eidas-test-connector
2023-12-14 10:23:50 +01:00
8c1ede654c
updated hsm info for eidas-test-connector
2023-12-14 10:04:49 +01:00
f8a85607b5
updated pin to hsm for eidas-connector-2.test.sveidas.se
2023-12-14 10:01:27 +01:00
b3e5f41448
updated pin to hsm for eidas-connector-1.test.sveidas.se
2023-12-14 10:00:38 +01:00
6f2bf6b8a9
fixed mistake
2023-12-12 13:31:23 +01:00
2977696502
update db
2023-12-12 13:31:06 +01:00
066d2f2cad
upgrading docker-ce in natmd-2.komreg.net
2023-12-12 13:30:10 +01:00
16a1abc761
update db
2023-12-12 12:36:20 +01:00
f18486cd59
upgrading docker in natmd-1
2023-12-12 12:35:55 +01:00
88c1142669
adding natpub-2.komre.net as publisher
2023-12-12 11:19:12 +01:00
91cb6663a6
update db
2023-12-12 11:14:26 +01:00
942e75d220
New publisher setup for natpub-2.komreg.net
2023-12-12 11:14:22 +01:00
61bee3eaa7
choosing natmd-1.komreg.net to publish
2023-12-12 11:06:58 +01:00
25b9e862ad
changed overlay file for natpub-1.komreg.net
2023-12-12 10:59:08 +01:00
ec472726d4
update db
2023-12-12 10:55:12 +01:00
47f187213e
changing publisher setup in natpub-1.komreg.net
2023-12-12 10:55:08 +01:00
078ea1fb3f
update db
2023-12-12 10:27:27 +01:00
69f2397a45
changing MDQ for natmd-2.komreg.net
...
Ref: SC-1384
2023-12-12 10:27:23 +01:00
e7f3a6d373
fixed directory name
2023-12-12 10:16:42 +01:00
7fa6cba007
update db
2023-12-12 09:58:58 +01:00
790ed6d39a
Changing MDQ in natmd-1.komreg.net
...
Ref: SC-1384
2023-12-12 09:58:04 +01:00
6e8ca11b4a
update db
2023-12-11 14:54:11 +01:00
406657f6d6
changed back
2023-12-11 14:54:07 +01:00
9726c19367
update db
2023-12-11 14:45:57 +01:00
0b31b8afde
use new setup for loading SSH keys
...
Ref: SC-1773
2023-12-11 14:45:43 +01:00
cacb97a22c
Allow running of bumptag with out signed commits or tags
...
By setting ALLOW_UNSIGNED_COMMITS_WITHOUT_TAGS you can bootstrap bumptag
on first startup of new repo
2023-12-04 14:24:34 +01:00
3e302ac36c
updated telegraf url
2023-12-01 14:31:04 +01:00
bd1a0b60dc
New version of tests for eidas. SC-1981.
2023-11-30 09:14:01 +01:00
ecedda68e3
Merge pull request #50 from SUNET/kano-sshproxyjump
...
PREPARE/ADDHOST: allow the ues of proxyjump with ip address
2023-11-29 12:53:05 +01:00
71e112e009
PREPARE/ADDHOST: allow the ues of proxyjump with ip address
...
With this patch you can specify a ProxyJump for prepare-iaas-ubuntu,
prepare-iaas-debian and addhost. Example:
./prepare-iaas-debian 89.47.191.7 hj
./addhost -b -n node1.extern.drive.test.sunet.se -p hj -- 89.47.191.7
where hj is a host defined in my .ssh/config suitable for a proxyjump
to the host in question.
This makes it easier to use ip addresses for these scripts which might
be neccessary if dns takes a while to propagate.
2023-11-29 12:10:34 +01:00
9530f35b2a
upgrade prid in production to 2.0.0
2023-11-29 10:10:29 +01:00
0cb5c9b607
update db
2023-11-29 10:09:47 +01:00
70737abf27
removed ssh-keys SC-1961
2023-11-21 15:06:09 +01:00
c92c837a89
Add new tests for QA, SC-1953.
2023-11-21 12:13:19 +01:00
8ef9120a7d
configured ha auto recovery for connectorn
2023-11-21 10:39:07 +01:00
90dd28b0e4
upgrade connector in prod
2023-11-21 10:10:01 +01:00
dc33b5005c
update db
2023-11-21 10:06:33 +01:00
John Van de Meulebrouck Brendgard
8d4ce2d1b7
Make sure that COSMOS_BASE is only readable
...
by root since it's possible that the directory
can contain files that after applying the
overlay to / only should be read or writable
by root.
2023-11-17 15:03:47 +01:00
John Van de Meulebrouck Brendgard
75e566ab61
Make sure that /root in overlay is owned by root
...
as well as that /root/.ssh and its content is
only owned and readable by root. This is redundant
if the previous permissions were properly applied
and no other changes have been made by the user
or something else, but is added for good measure
as a layered defense.
2023-11-17 14:58:51 +01:00
John Van de Meulebrouck Brendgard
ca353ed406
Set same permissions for /root/.ssh/authorized_keys
...
in post-tasks.d/010fix-ssh-perms as is done by
Puppet with sunet::ssh_keys.
2023-11-17 13:50:02 +01:00
Micke Nordin
1bd6524ad3
Merge pull request #48 from SUNET/john-bump-tag-from-nunoc-ops
...
Merge of improved bump-tag from nunoc-ops
2023-11-16 13:55:49 +01:00
John Van de Meulebrouck Brendgard
21c0cad8a0
Consistently use [[ for if statements.
2023-11-16 12:12:36 +01:00
John Van de Meulebrouck Brendgard
dc1df6671c
Shellcheck needs to have the PAGER quoted
...
in order to correctly interpret the meaning
according to it's wiki.
2023-11-16 12:11:09 +01:00
John Van de Meulebrouck Brendgard
fd4523308f
Replaced 'egrep' that is now deprecated.
2023-11-16 12:09:02 +01:00
John Van de Meulebrouck Brendgard
cb9e1f8670
Added shellcheck exceptions for misplaced warning.
2023-11-16 12:07:10 +01:00
John Van de Meulebrouck Brendgard
5a47b1a3f7
Readded this_branch=$(git rev-parse --abbrev-ref HEAD)
...
since it wasn't included in change to check
against the current branch instead of master
2023-11-16 12:04:30 +01:00
John Van de Meulebrouck Brendgard
826b8edf82
Changed from [[ ! -z ... to [[ -n ...
2023-11-16 11:59:33 +01:00
John Van de Meulebrouck Brendgard
53c58b413e
Changed from if [[ ${?} ]] to if cmd
2023-11-16 11:56:49 +01:00
