summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* refactor firewall management into new roleJason DeTiberus2015-03-0512-59/+477
| | | | | | | | | | | | | | | | | - Add os_firewall role - Remove firewall settings from base_os, add wait task to os_firewall - Added a iptables firewall module for maintaining the following (in a mostly naive manner): - ensure the OPENSHIFT_ALLOW chain is defined - ensure that there is a jump rule in the INPUT chain for OPENSHIFT_ALLOW - adds or removes entries from the OPENSHIFT_ALLOW chain - issues '/usr/libexec/iptables/iptables.init save' when rules are changed - Limitations of iptables firewall module - only allows setting of ports/protocols to open - no testing on ipv6 support - made os_firewall a dependency of openshift_common - Hardcoded openshift_common to use iptables (through the vars directory) until upstream support is in place for firewalld
* add vim vim modeline to ansible modulesJason DeTiberus2015-03-051-0/+1
|
* Merge pull request #95 from a13m/destination_formatThomas Wiest2015-03-042-62/+251
|\ | | | | Add flexible destination format string to ec2.py
| * Add flexible destination format string to ec2.pyAndy Grimm2015-03-042-1/+12
| | | | | | | | | | This allows us to construct hostnames from a format string plus ec2 tag values.
| * Sync ec2.py with upstreamAndy Grimm2015-03-041-61/+239
|/
* Merge pull request #93 from liangxia/patch-2Thomas Wiest2015-03-031-1/+1
|\ | | | | Correct syntax error of missing quotes
| * Correct syntax error of missing quotesLiang Xia2015-03-031-1/+1
| | | | | | Always quote template expression brackets when they start a value.
* | Merge pull request #92 from liangxia/patch-1Thomas Wiest2015-03-031-3/+3
|\ \ | | | | | | remove extra '}'
| * | remove extra '}'Liang Xia2015-03-031-3/+3
| |/
* | Merge pull request #73 from lhuard1A/fix_aws_cluster_listThomas Wiest2015-03-031-1/+1
|\ \ | | | | | | Fix './cluster.sh list' on AWS when some VMs have no name
| * | Fix './cluster.sh list' on AWS when some VMs have no nameLénaïc Huard2015-02-201-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In case some AWS VMs have no name (VMs not managed by openshift-online-ansible), './cluster.sh list' fails with the following error: ./cluster.sh list /home/lenaic/doc/prog/RedHat/openshift-online-ansible/lib/aws_helper.rb:31:in `sort_by': comparison of Array with Array failed (ArgumentError) from /home/lenaic/doc/prog/RedHat/openshift-online-ansible/lib/aws_helper.rb:31:in `sort_by!' from /home/lenaic/doc/prog/RedHat/openshift-online-ansible/lib/aws_helper.rb:31:in `get_hosts' from /home/lenaic/doc/prog/RedHat/openshift-online-ansible/lib/aws_command.rb:118:in `list' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/command.rb:27:in `run' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/invocation.rb:126:in `invoke_command' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor.rb:359:in `dispatch' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/invocation.rb:115:in `invoke' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor.rb:235:in `block in subcommand' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/command.rb:27:in `run' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/invocation.rb:126:in `invoke_command' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor.rb:359:in `dispatch' from /home/lenaic/.gem/ruby/2.2.0/gems/thor-0.19.1/lib/thor/base.rb:440:in `start' from ./cloud.rb:27:in `block in <main>' from ./cloud.rb:25:in `chdir' from ./cloud.rb:25:in `<main>' With that fix, we get the expected result: ./cluster.sh list Name Env State IP Address Created By ---- --- ----- ---------- ---------- UNSET UNSET running 54.152.46.170 test-openshift-master-92675686da test running 54.152.33.235 lenaic test-openshift-node-2a43dcb0b4 test running 52.1.69.75 lenaic test-openshift-node-94af201376 test running 54.86.4.149 lenaic
* | | Merge pull request #65 from lhuard1A/osxThomas Wiest2015-03-034-4/+15
|\ \ \ | |_|/ |/| | Allows it to run on OSX
| * | Allows it to run on OSXAkram Ben Aissi2015-02-194-4/+15
| |/ | | | | | | | | - Versions of ruby ported on OSX requires escaping of hyphens in regexp - Adds documentation on packages required by OSX to run openshift-online-ansible on OSX
* | Merge pull request #91 from detiber/downWithJSONThomas Wiest2015-03-023-14/+37
|\ \ | | | | | | Prefer YAML style datastructures over JSON
| * | Prefer YAML style datastructures over JSONJason DeTiberus2015-03-023-14/+37
| | | | | | | | | | | | - Switch JSON style datastructures to YAML for debuggability
* | | Merge pull request #90 from detiber/addSdnRolesThomas Wiest2015-03-0210-0/+181
|\ \ \ | | | | | | | | Add openshift_sdn_{master,node} roles
| * | | add openshift_sdn_{master,node} rolesJason DeTiberus2015-03-0210-0/+181
| |/ /
* | | Merge pull request #89 from detiber/registerNodeThomas Wiest2015-03-022-0/+156
|\ \ \ | | | | | | | | openshift_node changes for register_node module
| * | | openshift_node changes for register_node moduleJason DeTiberus2015-03-022-0/+156
| |/ / | | | | | | | | | | | | - add openshift_register_node module to openshift_node role - verifies that node isn't already registered before attempting to register it
* | | Merge pull request #87 from detiber/hostnameWorkaroundVarThomas Wiest2015-03-023-2/+8
|\ \ \ | |/ / |/| | add openshift_hostname workaround var
| * | Add openshift_hostname default variable to openshift_commonJason DeTiberus2015-03-022-2/+2
| | | | | | | | | | | | | | | - for use anywhere the hostname is used that would be dependent on the openshift_hostname_workaround setting.
| * | add openshift_hostname workaround varJason DeTiberus2015-03-023-2/+8
|/ / | | | | | | | | - use openshift_bind_ip for hostname when openshift_hostname_workaround is true - defaults to true to maintain current behavior.
* | Merge pull request #88 from detiber/openshiftRegistryOverrideThomas Wiest2015-03-022-0/+18
|\ \ | | | | | | add support for overriding default registry url
| * | add support for overriding default registry urlJason DeTiberus2015-03-022-0/+18
|/ /
* | Merge pull request #85 from detiber/moveLocalFactsThomas Wiest2015-03-022-12/+14
|\ \ | | | | | | Set local_facts for openshift_{node,master} later in the task list
| * | Set local_facts for openshift_node and openshift_master later in the task listJason DeTiberus2015-03-022-12/+14
|/ /
* | Merge pull request #86 from detiber/manageExternalThomas Wiest2015-03-022-0/+8
|\ \ | | | | | | Disable master,node services when externally managed
| * | Disable master,node services when externally managedJason DeTiberus2015-03-012-0/+8
| | |
* | | Merge pull request #84 from detiber/commonbugfixesThomas Wiest2015-03-025-5/+12
|\ \ \ | |/ / |/| | Bugfixes for openshift-common related changes
| * | Bugfixes for openshift-common related changesJason DeTiberus2015-03-015-5/+12
|/ / | | | | | | | | | | | | | | - Fix failed attempt to cleanup service notify on creds changes - Fix master URL for node to use https - Set openshift_debug_level in vars.yml for playbooks - This puts us closer to the original debug settings, where after the openshift-common changes the debug settings were defaulting back to 0
* | Merge pull request #83 from detiber/cleanupDockerroleThomas Wiest2015-02-281-6/+3
|\ \ | | | | | | docker role cleanup
| * | docker role cleanupJason DeTiberus2015-02-244-12/+3
| | | | | | | | | | | | | | | | | | - use service module for enabling/restarting docker service - remove unused role directories/files - use user module for adding the docker group to the root user
* | | Merge pull request #81 from detiber/cleanupEmptyFilesThomas Wiest2015-02-2811-22/+0
|\ \ \ | | | | | | | | Cleanup empty role dirs/files
| * | | Cleanup empty role dirs/filesJason DeTiberus2015-02-2411-22/+0
| |/ /
* | | Merge pull request #80 from detiber/supportedEnvsThomas Wiest2015-02-282-2/+2
|\ \ \ | | | | | | | | add jdetiber to list of SUPPORTED_ENVS
| * | | add jdetiber to list of SUPPORTED_ENVSJason DeTiberus2015-02-242-2/+2
| |/ /
* | | Merge pull request #82 from detiber/commonRoleThomas Wiest2015-02-2736-359/+268
|\ \ \ | |/ / |/| | create openshift-common role
| * | fix role names for aws playbooksJason DeTiberus2015-02-242-2/+2
| | |
| * | move KUBECONFIG setting to openshift_commonJason DeTiberus2015-02-242-8/+8
| | |
| * | create openshift_common roleJason DeTiberus2015-02-2421-331/+228
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - move common openshift logic into openshift_common - set openshift_common as a dependency for openshift_node and openshift_master - rename role variables to openshift_* to be more descriptive - start recording local_facts on the openshift hosts - clean up firewalld config to be a bit more dry - Update firewall ports for https, make sure http rules are removed - Replace references to ansible_eth0.ipv4.address with ansible_default_ipv4.address
| * | add symlinks for filter_plugins and roles to playbook directoriesJason DeTiberus2015-02-2418-22/+34
|/ / | | | | | | | | - allows playbooks to be able to discover roles and filter_plugins without having to manipulate the environment or use relative paths.
* | Merge pull request #78 from mwoodson/tower_installMatt Woodson2015-02-2411-1/+216
|\ \ | | | | | | tower install
| * | removing dead code for twiestMatt Woodson2015-02-241-10/+0
| | |
| * | cleaned up ansible towerMatt Woodson2015-02-245-35/+8
| | |
| * | cleaned up ansible towerMatt Woodson2015-02-243-19/+4
| | |
| * | Merge branch 'master' into tower_installMatt Woodson2015-02-2471-954/+353
| |\ \ | |/ / |/| | | | | | | | Conflicts: lib/aws_command.rb
* | | Merge pull request #77 from twiest/conf_bugThomas Wiest2015-02-2331-811/+5
|\ \ \ | | | | | | | | Fixed bug that was causing cluster creates to fail. Cleaned up cruft.
| * | | changed tint to twiest and added gshipley envThomas Wiest2015-02-232-2/+2
| | | |
| * | | removed kubernetes roles as they're just cruft at this point.Thomas Wiest2015-02-2328-808/+1
| | | |
| * | | fixed bug when updating the openshift-master sysconfig file. Also, made it ↵Thomas Wiest2015-02-231-1/+2
|/ / / | | | | | | | | | multi-line so we get better errors from ansible.