- 28 May, 2019 5 commits
-
-
Łukasz Nowak authored
Promises will fail with stderr filled, and it can be such if sha256sum emits error messages, so just discard them.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Some arguments needs Caddy process restart, so implement it with hash-files and also inform the master partition requester about parameters which will result with process restart.
-
Łukasz Nowak authored
Kedifa partition was missing monitoring at all, so add it and monitor kedifa and exposer ip and port. Partition running caddy was missing monitoring for exposer, so add it.
-
- 25 May, 2019 2 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
- 17 May, 2019 1 commit
-
-
Łukasz Nowak authored
Use unreal address to avoid any tries for network connectivity.
-
- 16 May, 2019 1 commit
-
-
Łukasz Nowak authored
Kedifa requires some time to process new slave, and during that time the key download URL is not available, but as it is required for proper mapping file, use some url to mimic it.
-
- 15 May, 2019 4 commits
-
-
Julien Muchembled authored
Recent setuptools found a way to install by downloading wheels from PyPI. But we want to control the versions of all components.
-
Łukasz Nowak authored
Buildout's kedifa updater just prepares, and so real one has to be run.
-
Łukasz Nowak authored
During buildout run no network communication is required in order to prepare fallback certificates, so call kedifa-updater with --prepare-only
-
Łukasz Nowak authored
-
- 13 May, 2019 1 commit
-
-
Killian Lufau authored
-
- 09 May, 2019 3 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
Thomas Gambier authored
-
- 08 May, 2019 6 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
It is needed by users to check certificate of KeDiFa while uploading certificates.
-
Łukasz Nowak authored
Each time new slave appears the kedifa-updater has to be run immediately, in order for certificates to be properly setup. Otherwise caddy can be left in non-runnable state until next kedifa-updater would run again.
-
Łukasz Nowak authored
Improvements: * report processed file * process all files even if one is incorrect * report errors with exit code /reviewed-on nexedi/slapos!558
-
Łukasz Nowak authored
Add missing keys and fix types.
-
Łukasz Nowak authored
-
- 07 May, 2019 1 commit
-
-
Thomas Gambier authored
-
- 06 May, 2019 8 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
Łukasz Nowak authored
URLs to generate authentication and to upload keys uses self-signed certificates, which can't be verified.
-
Łukasz Nowak authored
caddy-frontend master partition does not implement any promise in etc/promise, all is migrated to etc/plugin
-
Łukasz Nowak authored
-
Łukasz Nowak authored
is-process-older-than-dependency-set is not needed, since monitor stack does not require the older-than-dependecy-set promise.
-
Łukasz Nowak authored
promise-monitor-httpd-is-process-older-than-dependency-set promise is not needed anymore, as hash-files are used.
-
Łukasz Nowak authored
caddy-frontend-is-running-actual-software-release promise is not needed anymore, as hash-files are used.
-
- 30 Apr, 2019 2 commits
-
-
Killian Lufau authored
-
Killian Lufau authored
/cc @tomo /reviewed-on nexedi/slapos!555
-
- 29 Apr, 2019 3 commits
-
-
Thomas Gambier authored
-
Thomas Gambier authored
@rafael I think it would be useful if people can request an NBD server to hold custom image. What do you think ? /reviewed-on nexedi/slapos!552
-
Killian Lufau authored
-
- 26 Apr, 2019 3 commits
-
-
Łukasz Nowak authored
This reverts commit 6d2019b965f4a3521b651f2cb9ef241dce29af55, as new caddy has issues with tls certificate configuration: https://github.com/mholt/caddy/issues/2588 About nxd-v0.11.5-4-g9d3151db: * not released yet functionality for regular expression cookie rewriting is available: https://github.com/mholt/caddy/pull/2144 * not released yet functionality for ca_certifices in proxy: https://github.com/mholt/caddy/pull/2380 * support for builtin log rotation disabling
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Since caddy 1.0.0 it is less fragile for PEMs with some garbage, and can serve sites in such cases. It revealed, that test was wrongly written, as now the certificate can be a bit messy, and will be lodaded, but then won't be used, as it does not match the site.
-