Page MenuHomeDevCentral
Feed All Stories

All Stories
Use Results
Edit Query

Wed, Mar 25

Duranzed accepted D4018: Install LLVM 22 on shellserver and devserver roles.
Wed, Mar 25, 12:41
yousra added a reviewer for D4026: Deploy or rotate Vault secrets: yousra.
Wed, Mar 25, 12:36
yousra closed D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 12:24
yousra committed rOPS88bee5959739: Sort more DevCentral projects in Notifications Center (authored by dereckson).
Sort more DevCentral projects in Notifications Center
Wed, Mar 25, 12:24
yousra accepted D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 11:48
yousra added a reviewer for D4030: Sort more DevCentral projects in Notifications Center: yousra.
Wed, Mar 25, 11:38
dereckson closed D4020: Install GNU findutils.
Wed, Mar 25, 11:32
dereckson committed rOPS0564e79c0fe6: Install GNU findutils (authored by dereckson).
Install GNU findutils
Wed, Mar 25, 11:32
yousra closed D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 11:31
yousra committed rOPSdafd033ae37e: Allow role router to access ops/secrets/network/router/vault (authored by yousra).
Allow role router to access ops/secrets/network/router/vault
Wed, Mar 25, 11:31
Duranzed accepted D4020: Install GNU findutils.
Wed, Mar 25, 11:31
Duranzed accepted D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 11:26
dereckson added a parent task for T2291: Configure explicitly php-fpm pool in nginx Docker image: T1294: Dockerize tools.nasqueron.org.
Wed, Mar 25, 11:24 · Nasqueron Tools, Docker images
dereckson added a subtask for T1294: Dockerize tools.nasqueron.org: T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:24 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Need Dockerfile or config on the Docker images board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson updated the task description for T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:22 · Nasqueron Tools, Docker images
dereckson triaged T2291: Configure explicitly php-fpm pool in nginx Docker image as High priority.
Wed, Mar 25, 11:20 · Nasqueron Tools, Docker images
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

Two actions to fix:

Wed, Mar 25, 11:14 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
Duranzed accepted D3988: Configure strongSwan as IPsec implementation.
Wed, Mar 25, 10:53
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

The nginx configuration doesn't seem the same for the Docker container and the development site:

Wed, Mar 25, 10:44 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1294: Dockerize tools.nasqueron.org from Live on tools. to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 10:31 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1982: Upgrade from Python 3.9 to Python 3.11+ from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:33 · TLS certificates, Servers
dereckson moved T1599: Install TLS wildcard certificates for nginx fallback vhost from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T1167: Restart nginx on Ysul when renew certificates from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Wolfplex migration, Servers, User-Dereckson
dereckson moved T1966: Automate certificates renewal for Vault from Backlog to Vault / Nasqueron PKI on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Vault
dereckson moved T1513: Propagate certificate to Openfire server from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, XMPP, security, Servers
dereckson moved T1602: Provision ACME DNS credentials for core domains on each servers from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), security, Servers
dereckson moved T1505: Automate Let's Encrypt TLS certificates management for every server from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Servers
dereckson moved T1342: Let's encrypt on Debian use logrotate from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers, Eglide, Salt
dereckson moved T2043: Switch to acme.sh instead of certbot from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T2062: Native TLS support from Backlog to Applications on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, wurf
dereckson moved T2112: Renew Vault web server certificate automatically from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers
dereckson moved T2155: Review rotation for acme.sh logs from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, security, Servers
dereckson moved T2196: Reload of dovecot and postfix when certif renew from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, good-first-issue, Nasqueron Operations Squad, Mail
dereckson requested review of D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 08:53
dereckson set the image for TLS certificates to F25014448: profile.
Wed, Mar 25, 08:31
dereckson created TLS certificates.
Wed, Mar 25, 08:30
dereckson accepted D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 08:23

Tue, Mar 24

yousra closed D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 21:36
yousra committed rOPSef6ea0d9f929: Install dependencies to register MAC address to ISP (authored by yousra).
Install dependencies to register MAC address to ISP
Tue, Mar 24, 21:36
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a comment to T2276: Automate CARP VIP MAC reassignment using devd and OVH API.

The script to test if we can access to the OVH credentials (application_key, application_secret, consumer_key):

Tue, Mar 24, 21:26 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 21:09 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:29 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:28 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra requested review of D4029: Allow role router to access ops/secrets/network/router/vault.
Tue, Mar 24, 20:27
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 20:20 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 19:54 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 19:40 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a comment to T2276: Automate CARP VIP MAC reassignment using devd and OVH API.

The script to test the connection to Vault, using a YAML configuration file that tells the secretsmith client how to connect to Vault :

Tue, Mar 24, 19:32 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra created P398 access to credentials Vault.
Tue, Mar 24, 19:06
dereckson accepted D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:58
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 17:37 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the diff for D4027: Install dependencies to register MAC address to ISP.

It is not necessary to create a local map.jinja here, since it only imports a variable from the global map.jinja.

Tue, Mar 24, 17:27
dereckson created P397 rg packages_prefixes.
Tue, Mar 24, 17:18
dereckson added inline comments to D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:12
yousra added a project to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: Drake network.
Tue, Mar 24, 16:38 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra edited projects for T2276: Automate CARP VIP MAC reassignment using devd and OVH API, added: Servers; removed Python.
Tue, Mar 24, 16:38 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a project to T2290: Installation of CARP switch Python dependencies via Salt: Python package.
Tue, Mar 24, 16:37 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the summary of D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 16:31
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 16:26 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 16:17 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of CARP switch Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added projects to T2290: Installation of CARP switch Python dependencies via Salt: Secure HA tunnels, Servers, Drake network.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:28 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of secretsmith and ovh via Salt to Installation of Python dependencies via Salt.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added a subtask for T2276: Automate CARP VIP MAC reassignment using devd and OVH API: T2290: Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson added a parent task for T2290: Installation of CARP switch Python dependencies via Salt: T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the diff for D4027: Install dependencies to register MAC address to ISP.
  1. Install pip using the OS-specific package prefix from map.jinja.
Tue, Mar 24, 15:27
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 14:08 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson updated the test plan for D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:59
yousra removed projects from T2290: Installation of CARP switch Python dependencies via Salt: Python package, Salt, Secure HA tunnels.
Tue, Mar 24, 13:50 · Python package, Drake network, Servers, Secure HA tunnels
dereckson retitled D4027: Install dependencies to register MAC address to ISP from Install ovh and secretsmith via Salt to Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:42
dereckson added a revision to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:42 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added projects to T2290: Installation of CARP switch Python dependencies via Salt: Salt, Python package.
Tue, Mar 24, 13:42 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the summary of D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:40
yousra added a revision to T2290: Installation of CARP switch Python dependencies via Salt: D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:40 · Python package, Drake network, Servers, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 13:39 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra triaged T2290: Installation of CARP switch Python dependencies via Salt as Normal priority.
Tue, Mar 24, 13:39 · Python package, Drake network, Servers, Secure HA tunnels
dereckson requested review of D4028: Update Black style.
Tue, Mar 24, 12:48
ptdradmin accepted D3945: WIP: Installation and creation of a first Jenkins pipeline.
Tue, Mar 24, 09:38

Mon, Mar 23

yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Mon, Mar 23, 23:12 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra updated the task description for T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Mon, Mar 23, 23:12 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added a comment to D4027: Install dependencies to register MAC address to ISP.

ovh and secretsmith are now installed on the router-002 and router-003.

Mon, Mar 23, 23:09
yousra updated the diff for D4027: Install dependencies to register MAC address to ISP.

1.Add map to avoid to hunt version every time we update python.

Mon, Mar 23, 22:59
dereckson added inline comments to D4027: Install dependencies to register MAC address to ISP.
Mon, Mar 23, 20:51
yousra requested review of D4027: Install dependencies to register MAC address to ISP.
Mon, Mar 23, 20:37
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

removed canonical ipv4 from network.sls and corrected node function

Mon, Mar 23, 18:42
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

better variable name

Mon, Mar 23, 17:47
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

removed for loop

Mon, Mar 23, 17:39
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

testing list format for routers

Mon, Mar 23, 17:19
dereckson added a comment to D2084: Usee Docker pillar information in nginx config.

I've asked upstream for advice how to resolve pillar for another server than the current node @ https://groups.google.com/g/salt-tower/c/XEKg2CEiZrU

Mon, Mar 23, 17:06
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

added router parameter

Mon, Mar 23, 16:58
Duranzed updated the diff for D3988: Configure strongSwan as IPsec implementation.

Light modifications

Mon, Mar 23, 16:46
dereckson planned changes to D2084: Usee Docker pillar information in nginx config.

The output is really useful to avoid to manually repeat the ports.

Mon, Mar 23, 16:37
dereckson updated the diff for D2084: Usee Docker pillar information in nginx config.

Rebased. Fixed pillar handling.

Mon, Mar 23, 16:32
dereckson added a comment to D4026: Deploy or rotate Vault secrets.
In D4026#62889, @dereckson wrote:

Note: we're deploying a third secret for CARP routers scripts. If we've already that code merged, we'll need to append a line to deploy that state too.

Mon, Mar 23, 14:26
First
Prev
Next
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator