Secrets have been migrated from dot notation to slash notation.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Advanced Search
Jan 28 2024
May 29 2023
Server log
May 18 2023
DRP merged, so we're good :)
May 13 2023
Okay, let's do an easy thing to solve that for DevCentral repositories:
Apr 16 2023
The role webserver-alkane instead of the role webserver-legacy can be deployed to WindRiver.
Mar 15 2023
Mar 7 2023
Documentation says Zemke-Rhyme Phabricator account should be used.
All secrets are now stored in Vault and provisioned through Salt, with policies restricting access to secrets by node.
The point is currently moot as we don't have an operations SIG large enough to allow key shares.
Current status: ZR has been decom, we now deploy credentials through from Vault.
And with the Zemke-Rhyne decom, we're done.
Mar 3 2023
Those issues are resolved now we use Vault to provision passwords.
Feb 24 2023
Feb 16 2023
Feb 9 2023
Nov 13 2022
May 30 2022
May 12 2022
Apr 15 2022
Vault is live and Salt deployments were successful to cloudhugger dwellers windriver ysul (and Complector itself).
Apr 3 2022
Mar 29 2022
Mar 26 2022
Mar 24 2022
Migrated secrets
Mar 22 2022
Mar 15 2022
Sep 12 2021
Oct 2 2020
So Vault?
Sep 22 2020
All the quoted containers are priority candidates to be moved to Kubernetes cluster.
Feb 14 2020
The option is the same for Etherpad and DevCentral:
Jan 31 2020
It seems it's also possible to store the deploy key on the master, as long as it's fine to copy it to the server:
Jan 25 2020
D2151 works well, but there are two issues:
Perhaps a master key would be more pertinent, if so, that's a candidate for Vault.
We've a deploy key in salt master, let's use it.