csa/devops/ansible-patches/openshift.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Playbook Consolidation - Redeploy Certificates	Russell Teague	2017-12-01	12	-739/+0
\|
*	Merge pull request #6225 from mtnbikenc/include-deprecation-openshift-etcd	Russell Teague	2017-11-22	1	-1/+1
\|\ \| \| \| \|	Include Deprecation - openshift-etcd
\| *	Include Deprecation - openshift-etcd	Russell Teague	2017-11-22	1	-1/+1
\| \|
* \|	Merge pull request #6151 from mtnbikenc/consolidate-openshift-master	Russell Teague	2017-11-22	2	-2/+2
\|\ \ \| \|/ \|/\|	Playbook Consolidation - openshift-master
\| *	Playbook Consolidation - openshift-master	Russell Teague	2017-11-22	2	-2/+2
\| \|
* \|	Merge pull request #6193 from mgugino-upstream-stage/etc-runtime	Michael Gugino	2017-11-22	1	-2/+0
\|\ \ \| \|/ \|/\|	Cleanup etcd runtime variable.
\| *	Cleanup etcd runtime variable.	Michael Gugino	2017-11-21	1	-2/+0
\| \| \| \| \| \| \| \|	Cleaning out reference to etcd_runtime in openshift facts.
* \|	Playbook Consolidation - openshift-node	Russell Teague	2017-11-21	1	-1/+1
\|/
*	Playbook Consolidation - openshift-etcd	Russell Teague	2017-11-16	1	-2/+2
\|
*	Removed old version code	Michael Gugino	2017-11-14	2	-9/+0
\| \| \| \| \| \|	This commit removes any references to versions < 1.5/3.5 We assume the version is always greater than or equal to 1.5/3.5.
*	Temporarily set master servingInfo.clientCA as client-ca-bundle.crt during ↵	Andrew Butcher	2017-11-06	1	-5/+9
\| \| \| \|	rolling CA redeployment.
*	Ensure servingInfo.clientCA is set as ca.crt rather than ca-bundle.crt.	Andrew Butcher	2017-10-09	1	-2/+2
\|
*	Move master cert playbooks into master config path	Russell Teague	2017-10-03	1	-1/+7
\|
*	Separate certificate playbooks.	Andrew Butcher	2017-10-02	7	-147/+65
\|
*	Include openshift_hosted when redeploying router certificates to handle ↵	Andrew Butcher	2017-09-29	1	-71/+43
\| \| \| \|	auto-generated wildcard certificate or custom openshift_hosted_router_certificate.
*	Check for router service annotations when redeploying router certificates.	Andrew Butcher	2017-09-29	1	-3/+29
\|
*	consolidate etcd_common role	Jan Chaloupka	2017-09-25	2	-129/+54
\|
*	Merge pull request #5495 from abutcher/ca-redeploy-expired-etcd	OpenShift Merge Robot	2017-09-24	3	-31/+70
\|\ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Automatic merge from submit-queue Improve CA redeploy restart logic Expired etcd certificates require special casing around restarts in the certificate redeploy playbooks. When etcd certificates are expired we can't restart masters or nodes. We also can't simply restart etcd because peers also had expired certificates so we must start/stop etcd when we detect expired etcd certificates. `openshift-ca.yml`: * No longer restart master services when etcd certificates were previously expired. * No longer restart node services when master or etcd certificates were previously expired. `etcd-ca.yml`: * No longer restart master services when etcd certificates were previously expired. Tested using [gen_expired_tls.sh](https://gist.github.com/abutcher/bdd20b9d582675d89fb22658689c49e4) on one of my master/etcd hosts to ensure that restart logic changes caused us to skip the right restarts and do a full start/stop of etcd in the `redeploy-certificates.yml` and `redeploy-etcd-certificates.yml` playbooks. Note: When this happens with a cluster and you want to replace all certificates, you can run: `redeploy-etcd-ca.yml`, `redeploy-openshift-ca.yml` (which will both skip restarts) and then run `redeploy-certificates.yml` which will now be able to full/stop start etcd.
\| *	Do a full stop/start when etcd certificates had expired.	Andrew Butcher	2017-09-21	1	-0/+12
\| \|
\| *	Improve CA playbook restart logic and skip restarts when related services ↵	Andrew Butcher	2017-09-21	2	-31/+58
\| \| \| \| \| \| \| \|	had previously expired certificates.
* \|	Consolidate etcd certs roles	Jan Chaloupka	2017-09-18	2	-12/+23
\|/ \| \| \| \| \| \|	This is a part of the etcd_ like role consolidationi into an action-based role. As part of the consilidation some roles have been removed and some replaced by include_role module. Resulting in reorder and shift of role dependencies from a role into a play.
*	Config was missed before replace.	jkaurredhat	2017-07-14	1	-1/+1
\| \| \| \|	Signed-off-by: jkaurredhat <jkaur@redhat.com>
*	Redeploy-certificates will fail for registry and router if user is not ↵	jkaurredhat	2017-07-13	2	-0/+2
\| \| \| \| \| \|	system:admin Signed-off-by: jkaurredhat <jkaur@redhat.com>
*	Update master configuration for named certificates during master cert redeploy.	Andrew Butcher	2017-06-27	1	-0/+10
\|
*	Separate etcd and OpenShift CA redeploy playbooks.	Andrew Butcher	2017-06-09	2	-135/+159
\|
*	Skip service restarts within ca redeployment playbook when expired ↵	Andrew Butcher	2017-06-01	1	-0/+37
\| \| \| \|	certificates are detected.
*	move etcd upgrade related code into etcd_upgrade role	Jan Chaloupka	2017-05-18	2	-5/+12
\|
*	Differentiate between service serving router certificate and custom ↵	Andrew Butcher	2017-04-24	1	-1/+60
\| \| \| \|	openshift_hosted_router_certificate when replacing the router certificate.
*	Fix paths for file includes	Russell Teague	2017-04-17	1	-3/+3
\|
*	Remove unnecessary folder refs	Russell Teague	2017-04-10	1	-3/+3
\|
*	Add 'docker-registry.default.svc' to cert-redeploy too	Scott Dodson	2017-04-03	1	-1/+1
\|
*	redeploy-certificates/registry.yml: add ↵	Slava Semushin	2017-03-29	1	-0/+3
\| \| \| \|	openshift_hosted_registry_cert_expire_days parameter.
*	Use meta/main.yml for role dependencies	Russell Teague	2017-03-27	1	-4/+0
\|
*	New role	Tim Bielawa	2017-03-08	1	-1/+1
\|
*	Fix indentation of run_once	Scott Dodson	2017-03-06	1	-1/+1
\| \| \| \|	Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1423430
*	BZ1414276 - Quote ansible_ssh_user when determining group id	Scott Dodson	2017-02-22	1	-1/+1
\| \| \| \| \|	So that domain users of the format 'dom\user' may be used for ansible_ssh_user
*	Fix indenting/ordering in router cert redeploy	Scott Dodson	2017-02-17	1	-3/+2
\| \| \| \|	Fixes Bug 1423430
*	Merge pull request #3306 from ingvagabund/oc_service	Jan Chaloupka	2017-02-13	1	-6/+9
\|\ \| \| \| \|	replace 'oc service' command with its lib_openshift equivalent
\| *	replace 'oc service' command with its lib_openshift equivalent	Jan Chaloupka	2017-02-11	1	-6/+9
\| \|
* \|	Merge pull request #3300 from ashcrow/oc-secret-module	Jan Chaloupka	2017-02-11	2	-11/+21
\|\ \ \| \| \| \| \| \|	WIP: oc secrets now done via oc_secret module
\| * \|	oc secrets now done via oc_secret module	Steve Milner	2017-02-10	2	-11/+21
\| \| \|
* \| \|	Ensure etcd client certs are regenerated with embedded etcd.	Andrew Butcher	2017-02-10	1	-0/+8
\|/ /
* /	Ensure embedded etcd config uses CA bundle.	Andrew Butcher	2017-02-09	1	-0/+21
\|/
*	Use service annotations to redeploy router service serving cert signer cert.	Andrew Butcher	2017-02-06	1	-15/+16
\|
*	Restructure certificate redeploy playbooks	Andrew Butcher	2017-02-02	10	-0/+669