{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":322632255,"defaultBranch":"develop","name":"ansible_pors","ownerLogin":"secure-diversITy","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2020-12-18T15:26:42.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/18724356?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1675767645.019983","currentOid":""},"activityList":{"items":[{"before":"c01bee9069932641ec89aa1cec4547eaf7fee009","after":"3dd6d21494aa1473fd8de45830d7be0fe91a342e","ref":"refs/heads/develop","pushedAt":"2024-06-18T14:07:06.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-31: allow vsphere VM re-configure\n\nthe following **will** be reconfigured:\n\n- network (set via PORS wizard)\n   - ip\n   - netmask\n   - gw\n   - dns\n- RAM (set via PORS wizard)\n- CPU (set via PORS wizard)\n- server domain (set via PORS wizard)\n- hotplug settings for RAM + CPU (set via inventories/group_vars)\n- vmem swap (set via inventories/group_vars)\n- pxe boot (set via inventories/group_vars)\n\n**NOT** reconfigured:\n\n- hard disks\n- hdd controller\n- partitions\n- anything else which is disk related","shortMessageHtmlLink":"v4.1-31: allow vsphere VM re-configure"}},{"before":"96061e70b1a6483e59736ef991aa199864b8dff8","after":"c01bee9069932641ec89aa1cec4547eaf7fee009","ref":"refs/heads/develop","pushedAt":"2024-05-02T13:24:44.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"[BREAKING] - v4.1-30: SHC enhancements\n\n- new: set an existing SHC member into manual detention on conf-start\n- new: disable manual detention of a SHC memberon conf-success\n- fixing several configure issues within the SHC config deploy\n- BREAKING: switching to systemd as init system for service handling:\n  the service name can be set via a variable (defaults to \"splunk\")\n  sudo permissions are required from now on (ie. when you are used to use the\n  splunk user account to splunk stop/start/restart you have to use a service\n  account (no changes needed when the user is in the group splunkadmin)\n  if you re-configure an existing member the legacy initd type will be\n  detected and removed before the systemd one will be added\n- the switch to systemd fixes several issues with initd (e.g. OOM-kills,\n   cluster restart issues,..) and makes the current ulimit workarounds\n   within the init script unnecessary","shortMessageHtmlLink":"[BREAKING] - v4.1-30: SHC enhancements"}},{"before":"6af4a4d1ed62b8d8dfcb7ee8b8d0451a9e0deec5","after":"96061e70b1a6483e59736ef991aa199864b8dff8","ref":"refs/heads/develop","pushedAt":"2024-04-15T12:16:25.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-29: bump version","shortMessageHtmlLink":"v4.1-29: bump version"}},{"before":"98fc7a7c282a4f089b297291efeee3d932a99ce1","after":"6af4a4d1ed62b8d8dfcb7ee8b8d0451a9e0deec5","ref":"refs/heads/develop","pushedAt":"2024-03-14T15:15:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-28:\n\n- pb|roles: complete re-work how disks are added and formatted in vSphere\n   to fix several issues when adding multiple disks\n- roles: fix an issue with incorrect permissions when using a cribl hook\n- roles|pb: add dnsmasq as system_base feature allowing to install & configure\n  dnsmasq (default: disabled)","shortMessageHtmlLink":"v4.1-28:"}},{"before":"8f131ff900f3121061ef1f73dcd88f0088c992fc","after":"98fc7a7c282a4f089b297291efeee3d932a99ce1","ref":"refs/heads/develop","pushedAt":"2024-03-06T10:47:06.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-24:\n\n- pors: fixed an issue where a traceback was shown on startup\n- pors: fixed an issue where VM destroy+deploy was ignored\n- roles: fixed app linking + deploy after the filter plugin re-work","shortMessageHtmlLink":"v4.1-24:"}},{"before":"091ed2fdf9c6be536e3023287920ef0062f192f2","after":"8f131ff900f3121061ef1f73dcd88f0088c992fc","ref":"refs/heads/develop","pushedAt":"2024-03-01T15:26:54.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-21:\n\n- roles/pb: destroy & deploy a VM, i.e. you can now select to redistribute\n  an existing VM (which will delete the VM and then start a new deploy)\n  note: currently supported on vSphere only\n- pb: cosmetics reg VM notes\n- roles: do not regen machine-id/ssh keys when reconfiguring","shortMessageHtmlLink":"v4.1-21:"}},{"before":"8aaa8b50876ba5f87a3c0c1df3ba939dcb83754f","after":"091ed2fdf9c6be536e3023287920ef0062f192f2","ref":"refs/heads/develop","pushedAt":"2024-02-29T11:06:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-19:\n\nfully re-worked the apps link handling for deploying apps:\n\nnow there is no need to create pything or jinja templates for new\nenvironments. overwriting the default filter plugin and/or jinja template\nis still possible when adding one at:\n\n/opt/pors_data/custom/roles/common/templates/ae_deploy_apps.yml.j2\n/opt/pors_data/custom/filter_plugins/linked_apps.py\n\nwhile this shouldn't be needed anymore. ensure you remove any custom\nfilter plugins and templates in your custom dirs if not strictly required.","shortMessageHtmlLink":"v4.1-19:"}},{"before":"b4eda9029a4541ab8c57f0e11992a6c60d1b94a5","after":"8aaa8b50876ba5f87a3c0c1df3ba939dcb83754f","ref":"refs/heads/develop","pushedAt":"2024-02-02T17:03:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"roles: system_base add back support for RHEL < 9","shortMessageHtmlLink":"roles: system_base add back support for RHEL &lt; 9"}},{"before":"c46ac7e984089cbe677c9f71cad3c478b63addb6","after":"b4eda9029a4541ab8c57f0e11992a6c60d1b94a5","ref":"refs/heads/develop","pushedAt":"2024-01-31T11:04:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-18:\n\nplaybooks:\n- optimize cribl logstream config\n- removed elrepo kernel support (migrate to AlmaLinux if possible)\n- ensure the PORS api account is used instead of the admin account\n- optimize / adapt playbooks to new Ansible standards\n- fixing an ordering issue when adding disks to a VM\n- add hotplug options (RAM+CPU) for vSphere deployment\n\nroles:\n- removed elrepo kernel support (migrate to AlmaLinux if possible)\n- ensure the PORS api account is used instead of the admin account\n- fixed and optimized adding users to splunk (even without PORS)\n- fixed an issue with first user creation (file permissions)\n- fixed an issue with systemd enable boot (hen&egg due due to user/file perms)\n- fixed an issue with a not working login during splunk install\n- fixed an issue with logstream config (worker port)\n- ensure shelper does not get re-installed everytime when unneeded\n- removed unnecessary become while waiting for a SSH connection\n- fixed an issue where firewalld was still running after disabling\n- enhanced ssh user authorized_keys handling\n- fixed an issue with user creation when SSSd was running\n- fixed an issue with splunk user creation on first install\n- NEW: added unattended upgrade setup + config option\n\npors:\n- fixing error handling for system upgrade\n- optimize hosts file check before VM deploy\n- add missing error handling for user creation","shortMessageHtmlLink":"v4.1-18:"}},{"before":"d85b283397793e358dc30bd1779f65c3bc59121d","after":"c46ac7e984089cbe677c9f71cad3c478b63addb6","ref":"refs/heads/develop","pushedAt":"2024-01-04T10:00:12.000Z","pushType":"push","commitsCount":8,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-14:\n\npors:\n- added DEFUPGDELAY (delay between hosts on guided upgrade)\n\npb:\n- fix ssh user on upgrade\n\nadjusted copyright lines","shortMessageHtmlLink":"v4.1-14:"}},{"before":"cf680d8ed7ab7d5e215bf72229af67dd0f91569f","after":"d85b283397793e358dc30bd1779f65c3bc59121d","ref":"refs/heads/develop","pushedAt":"2023-08-05T16:46:14.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-13 - pors setup - WIP","shortMessageHtmlLink":"v4.1-13 - pors setup - WIP"}},{"before":"b3947a431ef5c2bfe2d2be1a136ab9bd30eb32a0","after":"cf680d8ed7ab7d5e215bf72229af67dd0f91569f","ref":"refs/heads/develop","pushedAt":"2023-07-06T13:41:46.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-11:\n\n- reload_apps added to shelper action\n- common directory for apps added","shortMessageHtmlLink":"v4.1-11:"}},{"before":"d6a7f6e2c9064b9db138f99c99afac3d2beee84f","after":"b3947a431ef5c2bfe2d2be1a136ab9bd30eb32a0","ref":"refs/heads/develop","pushedAt":"2023-07-06T09:14:38.000Z","pushType":"push","commitsCount":9,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-10:\n\n- fix issue with duplicates on host selection\n- some minor tweaks","shortMessageHtmlLink":"v4.1-10:"}},{"before":"8f03b292ef69ddea83c1fbf1768f78298eff24bf","after":"d6a7f6e2c9064b9db138f99c99afac3d2beee84f","ref":"refs/heads/develop","pushedAt":"2023-05-31T11:00:50.067Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"BREAKING: v4.1-7: create PORS user support added\n\nBREAKING:\n\n- switched default user from \"ansible\" to \"ansible-pors\" to avoid  conflicts\n\nAdded:\n\n- add pipelining check\n- add support for non-idempotent tasks\n- fix issue when python version differs from remote\n- add PORS user creation playbook and roles\n- add tasks for testing PORS user after creation\n- ensure the proper ssh key is used for sshkey login test\n- cleanup ansible.cfg example\n- create local ssh key for PORS user\n- add a task for installing all Ansible requirements/dependencies\n\nnew vars added:\n\n- pors_ssh_key: \"~/.ssh/{{ pors_ssh_user }}_ed25519\"\n- pors_allow_autoupgrade_requirements: false\n- system_default_shell: /bin/bash\n- pors_touch_dir: /var/lib/pors","shortMessageHtmlLink":"BREAKING: v4.1-7: create PORS user support added"}},{"before":"89c927509f4e9ee6cb171a50f3641f8f481c2444","after":"8f03b292ef69ddea83c1fbf1768f78298eff24bf","ref":"refs/heads/develop","pushedAt":"2023-05-24T09:09:55.139Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-6:\n\n- app mgmt: ensure we search locally only\n- install:  support setups w/o touching authorized_keys","shortMessageHtmlLink":"v4.1-6:"}},{"before":"ed1691a48aac2cfac064da84853fd460f2e010bc","after":"89c927509f4e9ee6cb171a50f3641f8f481c2444","ref":"refs/heads/develop","pushedAt":"2023-03-24T16:30:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"se-di","name":"TF","path":"/se-di","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18724325?s=80&v=4"},"commit":{"message":"v4.1-5:\n\n- update package database based on OS family before installing software\n- unix account: use more secure random passwords when creating\n- unix account: set the default shell as a variable\n- unix account: prepare to set  fixed UID and / or GID (not active yet)\n- splunk unix account: set the default shell as a variable\n- splunk unix account: allow to set a fixed UID and / or GID","shortMessageHtmlLink":"v4.1-5:"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEaIqjEQA","startCursor":null,"endCursor":null}},"title":"Activity · secure-diversITy/ansible_pors"}