Skip to content
Permalink
Branch: newtroy
Commits on May 8, 2018
  1. Update encrypted configs

    mrled committed May 8, 2018
  2. Rename route53 roles

    mrled committed May 8, 2018
  3. Update encrypted configs

    mrled committed May 8, 2018
  4. Fix IP addresses

    mrled committed May 8, 2018
    - Fix mismatched IP address assignments
    - Add IP address for VPN server
Commits on May 5, 2018
  1. Allow defining just a VPN server hostname

    mrled committed May 5, 2018
    - Allow defining a VPN server hostname, like algo.example.com
    - Break out the client DNS stuff, so that clients can be assigned
      subdomains on a separate domain, like client1.internal.example.com
Commits on May 3, 2018
Commits on May 2, 2018
  1. Add back the /CN={{ user }} conn stanzas

    mrled committed May 2, 2018
    Required because different IPSEC implementations submit different IDs
  2. Use {{ newtroy_server_cert_common_name_ }} var

    mrled committed May 2, 2018
    - Takes the place of almost all instances of {{ IP_subject_alt_name }},
      eliminating nearly all uses of that variable
    - Using a non-IP for the CommonName is not yet tested,
      but is the next step
  3. Use {{ newtroy_server_configs }} var

    mrled committed May 2, 2018
    - Replaces 'configs/{{ IP_subject_alt_name }}'
    - Eliminates about half the uses of the IP_subject_alt_name var
    - Necessary for moving to a DNS name for the server cert's CommonName
  4. Improve ansible output

    mrled committed May 2, 2018
  5. newtroy.py: Fix edge case

    mrled committed May 2, 2018
  6. Sort known_hosts lines

    mrled committed May 2, 2018
  7. Do not regenerate .p12 files if they exist

    mrled committed May 2, 2018
    Eliminates lots of noisy churn from config archive changes
  8. Update configs

    mrled committed May 2, 2018
  9. Update configs

    mrled committed May 2, 2018
  10. Eliminate randomly generated UUIDs

    mrled committed May 2, 2018
    Use the new nbuuid filter plugin instead of random UUIDs.
    
    This results in UUIDs that do not change on deployment, so long as the
    input values (including server IP) do not change.
  11. Add *.pyc to .gitignore

    mrled committed May 2, 2018
  12. Improve the newtroy_nbuuid.py filter module

    mrled committed May 2, 2018
    - Use argparse for better help
    - Add url_nbuuid()
    - Add dns_nbuuid()
Commits on Apr 30, 2018
  1. Typo

    jackivanov committed Apr 30, 2018
Commits on Apr 29, 2018
  1. Update configs

    mrled committed Apr 29, 2018
  2. Add 'newtroy.py config gitdiff'

    mrled committed Apr 29, 2018
    Enables users to compare the contents of the encrypted config archive
    that is on disk to the one that is committed to git.
    
    Also use new command structure:
    
         newtroy.py deploy    # for deployments
         newtroy.py config    # for config operations
    
    Misc improvements:
    
    - Log stderr to debug when shelling out
    - Allow get_config_diff() to replace the paths that diff reports
      (useful when using temp directories)
    - Ensure all path arguments are resolved
    - Handle BrokenPipeError
  3. Improve dns_route53 role

    mrled committed Apr 29, 2018
    - Take in zone ID as parameter
    - Remove generated CFN template so it doesn’t clutter the configs dir
      or cause mismatched diffs between the that and the encrypted archive
Older
You can’t perform that action at this time.