Gitiles
Code Review Sign In
gerrit.cesnet.cz / ci / ansible-cesnet / 253900d5f484201d72271456037607580a30e6d1
commit253900d5f484201d72271456037607580a30e6d1[log] [tgz]
authorJan Kundrát <jan.kundrat@cesnet.cz>Wed Jun 05 22:32:33 2019 +0200
committerJan Kundrát <jan.kundrat@cesnet.cz>Wed Jun 05 22:58:19 2019 +0200
tree63c48fde904e56ec95006b249dd4c283743abbfd
parentbd3bfda4c31aee3eb5a0e7ca571d7212f5277226 [diff]
Allow `curl` with HTTPS on the executor

I tried to come up with a limited whitelist, but in the end it was like
playing a whack-a-mole game. So long, and let's rely on the usual Unix
permissions here -- that should be a non-brainer anyway.

Change-Id: I2e85276f14a04dfb84042b1366ecec4f240458ba
1 file changed
tree: 63c48fde904e56ec95006b249dd4c283743abbfd
  1. README.md
  2. ansible.cfg
  3. files/
  4. group_vars/
  5. production
  6. requirements.yml
  7. roles/
  8. site.yml
README.md

Continuous Integration (CI) Setup via Ansible

This is what is currently powering the CI infrastructure tied to our Gerrit. It's mostly about Zuul v3 with Nodepool, log storage, etc.

Note that some pieces (Gerrit itself in particular) are still deployed via Puppet for legacy reasons. That configuration is internal.

# Example: provision the Zuul server
ansible-playbook -i production site.yml -l zuul-server