Page MenuHomeDevCentral
Feed All Stories

All Stories
Use Results
Edit Query

Sun, Mar 29

yousra updated the diff for D4026: Deploy or rotate Vault secrets.

Enable rotation of Vault AppRole credentials on CARP routers

Sun, Mar 29, 18:21
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Sun, Mar 29, 17:56 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the test plan for D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 17:40
yousra updated the test plan for D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 17:40
yousra requested review of D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 16:41
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Sun, Mar 29, 15:18 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Sun, Mar 29, 14:04 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra moved T2290: Installation of CARP switch Python dependencies via Salt from Working on to Done on the Secure HA tunnels board.
Sun, Mar 29, 13:44 · Python package, Drake network, Servers, Secure HA tunnels
yousra closed T2290: Installation of CARP switch Python dependencies via Salt as Resolved.
Sun, Mar 29, 13:44 · Python package, Drake network, Servers, Secure HA tunnels
yousra closed T2290: Installation of CARP switch Python dependencies via Salt, a subtask of T2276: Automate CARP VIP MAC reassignment using devd and OVH API, as Resolved.
Sun, Mar 29, 13:44 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels

Wed, Mar 25

Duranzed added a comment to D3988: Configure strongSwan as IPsec implementation.

Configuration deployed and running on router-002/router-003 and WindRiver

Wed, Mar 25, 15:48
yousra accepted D3988: Configure strongSwan as IPsec implementation.
Wed, Mar 25, 15:47
yousra added a reviewer for D3988: Configure strongSwan as IPsec implementation: yousra.
Wed, Mar 25, 15:46
yousra accepted D4011: Allow to search dotfiles with ripgrep.
Wed, Mar 25, 15:37
yousra added a comment to D4011: Allow to search dotfiles with ripgrep.

Tested locally with ripgrep. Configuration files like .arcconfig are now correctly included in search results !

Wed, Mar 25, 15:37
yousra added a comment to D4023: Provide a Docker image able to run tests.

I tested the Docker image locally and the image builds, the container starts correctly, and the test suite runs inside it.

Wed, Mar 25, 15:01
yousra accepted D4024: Make available TeX fonts to all the system on devserver.
Wed, Mar 25, 14:03
yousra added a reviewer for D4024: Make available TeX fonts to all the system on devserver: yousra.
Wed, Mar 25, 14:02
yousra accepted D4025: Prune OCSP artefact from Git ignore list.
Wed, Mar 25, 13:55
yousra added a reviewer for D4025: Prune OCSP artefact from Git ignore list: yousra.
Wed, Mar 25, 13:55
yousra accepted D4026: Deploy or rotate Vault secrets.
Wed, Mar 25, 13:26
Duranzed accepted D4024: Make available TeX fonts to all the system on devserver.
Wed, Mar 25, 12:52
dereckson moved T1939: Implement blue/green deployment or immutable artefacts for router-001 from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Servers, Drake network
dereckson moved T2096: WindRiver Route to Drake private network Ignored from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Drake network, Servers
dereckson moved T2167: Implement Common Address Redundancy Protocol (CARP) from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Servers, Drake network, Workshop
dereckson moved T2276: Automate CARP VIP MAC reassignment using devd and OVH API from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson moved T2290: Installation of CARP switch Python dependencies via Salt from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Python package, Drake network, Servers, Secure HA tunnels
Duranzed accepted D4018: Install LLVM 22 on shellserver and devserver roles.
Wed, Mar 25, 12:41
yousra added a reviewer for D4026: Deploy or rotate Vault secrets: yousra.
Wed, Mar 25, 12:36
yousra closed D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 12:24
yousra committed rOPS88bee5959739: Sort more DevCentral projects in Notifications Center (authored by dereckson).
Sort more DevCentral projects in Notifications Center
Wed, Mar 25, 12:24
yousra accepted D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 11:48
yousra added a reviewer for D4030: Sort more DevCentral projects in Notifications Center: yousra.
Wed, Mar 25, 11:38
dereckson closed D4020: Install GNU findutils.
Wed, Mar 25, 11:32
dereckson committed rOPS0564e79c0fe6: Install GNU findutils (authored by dereckson).
Install GNU findutils
Wed, Mar 25, 11:32
yousra closed D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 11:31
yousra committed rOPSdafd033ae37e: Allow role router to access ops/secrets/network/router/vault (authored by yousra).
Allow role router to access ops/secrets/network/router/vault
Wed, Mar 25, 11:31
Duranzed accepted D4020: Install GNU findutils.
Wed, Mar 25, 11:31
Duranzed accepted D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 11:26
dereckson added a parent task for T2291: Configure explicitly php-fpm pool in nginx Docker image: T1294: Dockerize tools.nasqueron.org.
Wed, Mar 25, 11:24 · Nasqueron Tools, Docker images
dereckson added a subtask for T1294: Dockerize tools.nasqueron.org: T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:24 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Need Dockerfile or config on the Docker images board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson updated the task description for T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:22 · Nasqueron Tools, Docker images
dereckson triaged T2291: Configure explicitly php-fpm pool in nginx Docker image as High priority.
Wed, Mar 25, 11:20 · Nasqueron Tools, Docker images
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

Two actions to fix:

Wed, Mar 25, 11:14 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
Duranzed accepted D3988: Configure strongSwan as IPsec implementation.
Wed, Mar 25, 10:53
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

The nginx configuration doesn't seem the same for the Docker container and the development site:

Wed, Mar 25, 10:44 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1294: Dockerize tools.nasqueron.org from Live on tools. to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 10:31 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1982: Upgrade from Python 3.9 to Python 3.11+ from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:33 · TLS certificates, Servers
dereckson moved T1599: Install TLS wildcard certificates for nginx fallback vhost from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T1167: Restart nginx on Ysul when renew certificates from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Wolfplex migration, Servers, User-Dereckson
dereckson moved T1966: Automate certificates renewal for Vault from Backlog to Vault / Nasqueron PKI on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Vault
dereckson moved T1513: Propagate certificate to Openfire server from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, XMPP, security, Servers
dereckson moved T1602: Provision ACME DNS credentials for core domains on each servers from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), security, Servers
dereckson moved T1505: Automate Let's Encrypt TLS certificates management for every server from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Servers
dereckson moved T1342: Let's encrypt on Debian use logrotate from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers, Eglide, Salt
dereckson moved T2043: Switch to acme.sh instead of certbot from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T2062: Native TLS support from Backlog to Applications on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, wurf
dereckson moved T2112: Renew Vault web server certificate automatically from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers
dereckson moved T2155: Review rotation for acme.sh logs from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, security, Servers
dereckson moved T2196: Reload of dovecot and postfix when certif renew from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, good-first-issue, Nasqueron Operations Squad, Mail
dereckson requested review of D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 08:53
dereckson set the image for TLS certificates to F25014448: profile.
Wed, Mar 25, 08:31
dereckson created TLS certificates.
Wed, Mar 25, 08:30
dereckson accepted D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 08:23

Tue, Mar 24

yousra closed D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 21:36
yousra committed rOPSef6ea0d9f929: Install dependencies to register MAC address to ISP (authored by yousra).
Install dependencies to register MAC address to ISP
Tue, Mar 24, 21:36
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a comment to T2276: Automate CARP VIP MAC reassignment using devd and OVH API.

The script to test if we can access to the OVH credentials (application_key, application_secret, consumer_key):

Tue, Mar 24, 21:26 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:09 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:29 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra requested review of D4029: Allow role router to access ops/secrets/network/router/vault.
Tue, Mar 24, 20:27
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:20 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 19:54 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 19:40 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a comment to T2276: Automate CARP VIP MAC reassignment using devd and OVH API.

The script to test the connection to Vault, using a YAML configuration file that tells the secretsmith client how to connect to Vault :

Tue, Mar 24, 19:32 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra created P398 access to credentials Vault.
Tue, Mar 24, 19:06
dereckson accepted D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:58
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 17:37 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the diff for D4027: Install dependencies to register MAC address to ISP.

It is not necessary to create a local map.jinja here, since it only imports a variable from the global map.jinja.

Tue, Mar 24, 17:27
dereckson created P397 rg packages_prefixes.
Tue, Mar 24, 17:18
dereckson added inline comments to D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:12
yousra added a project to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: Drake network.
Tue, Mar 24, 16:38 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra edited projects for T2276: Automate CARP VIP MAC reassignment using devd and OVH API, added: Servers; removed Python.
Tue, Mar 24, 16:38 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a project to T2290: Installation of CARP switch Python dependencies via Salt: Python package.
Tue, Mar 24, 16:37 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the summary of D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 16:31
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 16:26 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 16:17 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of CARP switch Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added projects to T2290: Installation of CARP switch Python dependencies via Salt: Secure HA tunnels, Servers, Drake network.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:28 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of secretsmith and ovh via Salt to Installation of Python dependencies via Salt.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added a subtask for T2276: Automate CARP VIP MAC reassignment using devd and OVH API: T2290: Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson added a parent task for T2290: Installation of CARP switch Python dependencies via Salt: T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the diff for D4027: Install dependencies to register MAC address to ISP.
  1. Install pip using the OS-specific package prefix from map.jinja.
Tue, Mar 24, 15:27
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 14:08 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
First
Prev
Next
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator