Commit Graph

7974 Commits (1aecfc1e19b8c453227430c715cbde5fc7e3de6d)
 

Author SHA1 Message Date
René Moser 542a96f907 Merge pull request #1827 from jasperla/pkgin_update_cache
support for 'update_cache' in pkgin module
9 years ago
René Moser 31de43d306 Merge pull request #1952 from mscherer/fix_cloudstack
Do not leak passwords in case of error in cloudstack modules
9 years ago
Monty Taylor 38c8fec277 Merge pull request #1149 from Jmainguy/puppet_stdout
Enable stdout and stderr on sucessful runs, making show_diff useable
9 years ago
Evgeni Golov 8db3a63983 fix handling of config options that share the same prefix
container_config:
      - "lxc.network.ipv4.gateway=auto"
      - "lxc.network.ipv4=192.0.2.1"

might try to override lxc.network.ipv4.gateway in the second entry as both
start with "lxc.network.ipv4".
use a regular expression to find a line that contains (optional) whitespace
and an = after the key.

Signed-off-by: Evgeni Golov <evgeni@golov.de>
9 years ago
Evgeni Golov c03e77a63a strip whitespace from key and value before inserting it into the config
before the following would produce four entries:

    container_config:
      - "lxc.network.flags=up"
      - "lxc.network.flags =up"
      - "lxc.network.flags= up"
      - "lxc.network.flags = up"

let's strip the whitespace and insert only one "lxc.network.flags = up"
into the final config

Signed-off-by: Evgeni Golov <evgeni@golov.de>
9 years ago
René Moser 474baaa831 Merge pull request #1981 from macdiesel/macdiesel/urlencode-hipchat-api-path
Escape room name in hipchat api v2 urls
9 years ago
René Moser fc79c8820e Merge pull request #1971 from insom/devel
Add `to_destination` parameter to iptables
9 years ago
Vlad Gusev f1175693f6 system/puppet: add --tags parameter (#1916)
* system/puppet: add --tags parameter

--tags [1] is used to apply a part of the node’s catalog.

In puppet:
puppet agent --tags update,monitoring

In ansible:
puppet: tags=update,monitoring

[1] https://docs.puppetlabs.com/puppet/latest/reference/lang_tags.html#restricting-catalog-runs

* Add example of tag usage.

* system/puppet: add list type for a tags dict.
9 years ago
Michael Scherer 197ee8bef4 Client_secret is supposed to be kept secret, so mark it as no_log (#1995) 9 years ago
Ricardo Carrillo Cruz 34045fddb1 Add os_user_facts module
This module gather facts about one or more OpenStack users
9 years ago
Ricardo Carrillo Cruz d914b3fa84 Add os_keystone_domain_facts module
This module gathers one or more OpenStack domains facts
9 years ago
nitzmahone 5abb914315 win_updates fix to use documented InstanceGuid property name 9 years ago
nitzmahone 93db039783 win_updates shouldn't install hidden updates 9 years ago
= 8192ad24d5 adding the ability to manage binary registry data 9 years ago
Michael Scherer bc198cc33a Avoid token leak by marking it as sensitive with no_log (#1966) 9 years ago
Michael Scherer 7120fb4b01 Properly label path argument with type='path' (#1940) 9 years ago
Michael Scherer 3385bf5ef2 Do not leak mail password by error 9 years ago
Michael Scherer c215bff12e Mark password as 'no_log', to avoid leaking it 9 years ago
Brian Beggs ed35159702 hipchat api v2 rooms are now url escaped 9 years ago
Rob 84f2aa6167 Updated Amazon module guidelines regarding boto3
* Updated Amazon module guidelines regarding boto3

* Spelling correction
9 years ago
Aaron Brady e2138c7e14 Add `to_destination` parameter 9 years ago
Andy Baker 204b4bab56 type should be 'list' not the default of 'string' 9 years ago
Evgeni Golov 6bfd2846f8 don't create world-readable archives of LXC containers
with the default umask tar will create a world-readable archive of the

container, which may contain sensitive data



Signed-off-by: Evgeni Golov <evgeni@golov.de>
9 years ago
Michael Scherer 719b9b229b Prevent password leaks in notification/irc 9 years ago
Michael Scherer 95e07d2f51 Use no_log=True for campfire module to avoid leaks 9 years ago
Michael Scherer b5333ba08c Set no log for jabber.py password 9 years ago
Michael Scherer 5696e6c33a Do not leak passwords in case of error in cloudstack modules 9 years ago
Evgeni Golov 7c3999a92a do not use a predictable filenames in the LXC plugin
* do not use a predictable filename for the LXC attach script

* don't use predictable filenames for LXC attach script logging

* don't set a predictable archive_path



this should prevent symlink attacks which could result in

* data corruption

* data leakage

* privilege escalation
9 years ago
René Moser f710908574 Merge pull request #1915 from mscherer/fix_cpanm
Add proper type to cpanm arguments
9 years ago
Chulki Lee f3c168594a osx_defaults: fix datetime
Fix #1742
9 years ago
Matt Martz 154afa7dc1 Merge pull request #1943 from sivel/rebase-prs
Rebase PRs against $TRAVIS_BRANCH before performing tests
9 years ago
Matt Martz d4c73059fe Rebase PRs against $TRAVIS_BRANCH before performing tests 9 years ago
René Moser daddc7caf4 Merge pull request #1478 from m0/firewalld_interface
Extends firewalld module with ability to add/remove interfaces to/from zones
9 years ago
René Moser 78b6645d10 Merge pull request #1937 from Comcast/fix/iptables_dscp_docs
fix dscp marking documentation in iptables module
9 years ago
René Moser fb3d584abd Merge pull request #1933 from evgeni/no-lxc-default.conf
do not set a default config for lxc containers
9 years ago
Evgeni Golov 185bcbd8f7 explicitly set "default: null" in the docs 9 years ago
René Moser e94f28771b Merge pull request #1936 from retropc/devel
fix security vulnerability in lxc module
9 years ago
Matt Davis 7ce47aff79 Merge pull request #1117 from h0nIg/devel_win_owner
win_owner to change owner
9 years ago
David Hocky 031f98e86c fix dscp marking documentation in iptables module 9 years ago
René Moser 83a835925e Merge pull request #1737 from Dufgui/devel
fix #1731 : mongodb_user always says changed
9 years ago
Chris Porter da84e2e9b8 fix security vulnerability in lxc module
octal/decimal confusion makes file world-writable before executing it
9 years ago
René Moser 8afaa69e21 Merge pull request #1935 from bob-smith/dynamodb_tableversion
restore version_added in dynamodb_table.py
9 years ago
John Barker 950e2d9484 restore version_added in dynamodb_table.py 9 years ago
René Moser 1989b8ba57 Merge pull request #1931 from mhite/bigip_pool_member_port_0
Allow port 0 as a valid pool member port
9 years ago
René Moser 3498cd2eae Merge pull request #1927 from jwitko/devel
The current module supporting F5 BIGIP pool creation does not support…
9 years ago
Brian Coca 2a09b7a582 Merge pull request #1932 from mscherer/fix_yum_repos
Use type='path' for reposdir, since that's a path
9 years ago
Michael Scherer d9b8043b4a Use type='path' for reposdir, since that's a path 9 years ago
Matt Hite 8a27e785db Allow port 0 as a valid pool member port 9 years ago
Evgeni Golov 71b0067aa6 do not set a default config for lxc containers
otherwise deploying user-containers fail as these require information
from ~/.config/lxc/default.conf that the LXC tools will load if no
--config was supplied

Signed-off-by: Evgeni Golov <evgeni@golov.de>
9 years ago
René Moser 282221e5a0 Merge pull request #1928 from resmo/fix/build-os-user-role
openstack: doc: add return doc, fixes build
9 years ago