| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Refactor openshift_hosted's docker-registry route setup | David Moreau-Simard | 2017-07-23 | 1 | -46/+55 |
| | | | | | | | | | | | | | | | | | | | | We have identified an issue where a docker-registry service set up as 'reencrypt' with a provided certificate and a self-signed certificate on the pod does not authorize users to push images. If the docker-registry service is set up as 'passthrough' with the same provided certificate, everything works. In light of this, this commit essentially adds support for configuring provided certificates with a passthrough route while maintaining backwards compatibility with the other use cases. The default remains 'passthrough' with self-generated certificates. Other miscellaneous changes include: - Move fact setup that were only used in secure.yml there - Omit the hostname for the route if there are none to configure, oc_route takes care of handling the default - Replace hardcoded /etc/origin/master by openshift_master_config_dir | ||||
| * | Add docker-registry.default.svc short name to registry service signing | Scott Dodson | 2017-04-03 | 1 | -1/+2 |
| | | |||||
| * | openshift_hosted: add openshift_hosted_registry_cert_expire_days parameter. | Slava Semushin | 2017-03-29 | 1 | -0/+1 |
| | | |||||
| * | Fixed error handling when oc adm ca create-server-cert fails. Fixed a logic ↵ | Kenny Woodson | 2017-03-01 | 1 | -1/+1 |
| | | | | | error in secure. | ||||
| * | removing extra when condition | Kenny Woodson | 2017-03-01 | 1 | -1/+0 |
| | | |||||
| * | Removing run_once. | Kenny Woodson | 2017-03-01 | 1 | -4/+0 |
| | | |||||
| * | Adding the activeDeadlineSeconds. Removed debug. | Kenny Woodson | 2017-03-01 | 1 | -11/+0 |
| | | |||||
| * | Separating routes so logic is simpler. | Kenny Woodson | 2017-03-01 | 1 | -6/+30 |
| | | |||||
| * | Defaulting variables properly to avoid undefined route in dict error. | Kenny Woodson | 2017-03-01 | 1 | -14/+13 |
| | | |||||
| * | Removed duplicate host param. | Kenny Woodson | 2017-02-28 | 1 | -1/+0 |
| | | |||||
| * | Modified base debug statements. Fixed oc_secret debug/verbose flag. Added ↵ | Kenny Woodson | 2017-02-28 | 1 | -16/+8 |
| | | | | | reencrypt for route. | ||||
| * | Adding support for a route with certs and reencrypt. | Kenny Woodson | 2017-02-28 | 1 | -1/+31 |
| | | |||||
| * | openshift_hosted: Update tasks to use oc_ modules | Russell Teague | 2017-02-24 | 1 | -101/+46 |
| | | |||||
| * | Merge pull request #3291 from ashcrow/oc-route-module | Jan Chaloupka | 2017-02-14 | 1 | -8/+8 |
| |\ | | | | | [WIP] oc route commands now using the oc_route module | ||||
| | * | oc route commands now using the oc_route module | Steve Milner | 2017-02-14 | 1 | -8/+8 |
| | | | |||||
| * | | Merge pull request #3306 from ingvagabund/oc_service | Jan Chaloupka | 2017-02-13 | 1 | -6/+5 |
| |\ \ | |/ |/| | replace 'oc service' command with its lib_openshift equivalent | ||||
| | * | replace 'oc service' command with its lib_openshift equivalent | Jan Chaloupka | 2017-02-11 | 1 | -6/+5 |
| | | | |||||
| * | | Merge pull request #3300 from ashcrow/oc-secret-module | Jan Chaloupka | 2017-02-11 | 1 | -8/+11 |
| |\ \ | | | | | | | WIP: oc secrets now done via oc_secret module | ||||
| | * | | oc secrets now done via oc_secret module | Steve Milner | 2017-02-10 | 1 | -8/+11 |
| | |/ | |||||
| * / | Replace service account secrets handling with oc_serviceaccount_secret module | Jan Chaloupka | 2017-02-10 | 1 | -4/+6 |
| |/ | |||||
| * | Re-add when condition which was removed mistakenly in #3036 | Maciej Szulik | 2017-01-05 | 1 | -0/+1 |
| | | |||||
| * | Fix jsonpath expected output when checking registry volume secrets | Maciej Szulik | 2017-01-05 | 1 | -6/+5 |
| | | | | | | | In k8s 1.5 (see rebase PR: origin 12143) jsonpath output is slightly different than previously. Causing this line to fail. We need to pick secret or secretName when checking this task failure condition. | ||||
| * | Fix metricsPublicURL only being set correctly on first master. | Devan Goodwin | 2016-12-01 | 1 | -1/+1 |
| | | | | | | | | | | | | | | Problem was caused by facts not being set for that master. To fix this patch cleans up the calculation of metricsPublicURL in general. Because this value is used in openshift_master to template into the master config file, we now define these facts more clearly in openshift_master_facts, and add a dependency on this to openshift_metrics. The calculation of default sub-domain is also changed to remove it from system facts (as neither of these are facts about the system) and instead use plain variables. | ||||
| * | Switch from "oadm" to "oc adm" and fix bug in binary sync. | Devan Goodwin | 2016-10-19 | 1 | -1/+1 |
| | | | | | | | | | Found bug syncing binaries to containerized hosts where if a symlink was pre-existing, but pointing to the wrong destination, it would not be corrected. Switched to using oc adm instead of oadm. | ||||
| * | Secure registry improvements. | Andrew Butcher | 2016-09-29 | 1 | -8/+49 |
| | | | | | | | * Convert oc template calls to jsonpath. * Wait for deployments to finish before restarting docker. * Re-organize node ca configuration. | ||||
| * | Set config/namespace where missing for secure registry deployment. | Andrew Butcher | 2016-09-09 | 1 | -0/+4 |
| | | |||||
| * | Secure registry for atomic registry deployment (deployment_subtype=registry). | Andrew Butcher | 2016-09-02 | 1 | -0/+83 |
 |
index : csa/devops/ansible-patches/openshift.git | |
| Unnamed repository; edit this file 'description' to name the repository. |
| summaryrefslogtreecommitdiffstats |