Commits on Source (23)
-
Evangelos Foutras authored
This avoids triggering a GitLab push rule which rejects files that look like secrets.
-
Kristian Klausen authored
Whoosh is used by default, but it is slow at indexing (multiple hours for just aur-requests) and searching e.g. aur-requests isn't possible (it is slow and uses 3G+ of memory resulting in it getting OOM-killed). Xapian indexed everything in just 76 minutes and searching aur-requests now works and is plenty fast. Co-authored-by:
Evangelos Foutras <evangelos@foutrelis.com>
-
Kristian Klausen authored
The code isn't vulnerable to nginx alias traversal[1][2], nevertheless it should only match /static/ and not e.g. /staticfoobar. [1] d94f18a7 ("Fix nginx alias traversal") [2] https://github.com/yandex/gixy/blob/641060d6355fbb5bd71695928a2bf14a9bcb8bf2/docs/en/plugins/aliastraversal.md Fixes: 9294828f ("Setup mailman3 server")
-
Kristian Klausen authored
From time to time aurweb is failing with "Too many open files" errors[1], this could indicate a bug in aurweb or perhaps the limit is just too low. Let's try doubling the limit and see if it helps. [1] https://gitlab.archlinux.org/archlinux/aurweb-errors/-/issues/275
-
Kristian Klausen authored
The buildbot POC wants to use Keycloak for user authentication. The client is public, because it doesn't make sense to have a client secret, which can't be kept under wrap anyway (it would need to be shipped with the CLI[1]). [1] https://gitlab.archlinux.org/foxboron/buildctl
-
Kristian Klausen authored
tf/keycloak: Add openid client for buildbot See merge request !623
-
nl6720 authored
The mailing list is used for non-public communication with users, so everyone needs be able to post to it. It is also the assigned email address of the ArchWiki user "WikiSysop". See https://wiki.archlinux.org/title/ArchWiki:Maintenance_Team#Who,_when_and_how_to_contact
-
Kristian Klausen authored
mailman3: allow everyone to post to the arch-wiki-admins mailing list See merge request !629
-
Kristian Klausen authored
Fixes: 2e799bd1 ("arch_boxes_sync: Create predictable symlinks for latest image files")
-
Kristian Klausen authored
arch-boxes has decided to use GitLab's package registry instead of job artifacts[1]. [1] arch-boxes@d04c8274
-
Kristian Klausen authored
Fixes: 2e799bd1 ("arch_boxes_sync: Create predictable symlinks for latest image files")
-
Kristian Klausen authored
-
Kristian Klausen authored
arch_boxes_sync: Pull the artifacts from GitLab's package registry See merge request !580
-
Kristian Klausen authored
The service was enabled in arch-boxes to account for "hardware clock is not in UTC, but instead UTC+X"[1], in our case the (VM) hardware clock is in UTC and we therfor don't need the slow systemd-time-wait-sync service (+30 seconds). [1] arch-boxes@e23d3c57
-
Evangelos Foutras authored
-
Evangelos Foutras authored
-
Evangelos Foutras authored
Prevents the following lint failure: jinja: You need to install "jmespath" prior to running json_query filter (jinja[invalid])
-
Evangelos Foutras authored
-
Evangelos Foutras authored
Not sure why this is needed but whatever.
https://github.com/ansible/schemas/discussions/227 -
Evangelos Foutras authored
Seems ansible-lint thinks a task calling the unqualified user module is "not valid under any of the given schemas (schema[tasks])".
-
Evangelos Foutras authored
Fix lint warnings and errors with ansible-lint 6.6.0 See merge request !631
-
Evangelos Foutras authored
The Ansible output is too noisy with all the skipped tasks; avoid this by moving host-speicific tasks into their own files that get included.
-
Evangelos Foutras authored
Showing
- .gitlab-ci.yml 1 addition, 1 deletion.gitlab-ci.yml
- docs/email.md 2 additions, 2 deletionsdocs/email.md
- playbooks/tasks/include/post-upgrade/borg-clients.yml 7 additions, 0 deletionsplaybooks/tasks/include/post-upgrade/borg-clients.yml
- playbooks/tasks/include/post-upgrade/build.archlinux.org.yml 8 additions, 0 deletionsplaybooks/tasks/include/post-upgrade/build.archlinux.org.yml
- playbooks/tasks/include/post-upgrade/gemini.archlinux.org.yml 17 additions, 0 deletions...books/tasks/include/post-upgrade/gemini.archlinux.org.yml
- playbooks/tasks/include/upgrade-server.yml 8 additions, 41 deletionsplaybooks/tasks/include/upgrade-server.yml
- roles/arch_boxes_sync/files/arch-boxes-sync.service 1 addition, 1 deletionroles/arch_boxes_sync/files/arch-boxes-sync.service
- roles/arch_boxes_sync/files/arch-boxes-sync.sh 48 additions, 22 deletionsroles/arch_boxes_sync/files/arch-boxes-sync.sh
- roles/archusers/tasks/main.yml 1 addition, 1 deletionroles/archusers/tasks/main.yml
- roles/archweb/tasks/main.yml 12 additions, 12 deletionsroles/archweb/tasks/main.yml
- roles/archwiki/meta/main.yml 4 additions, 0 deletionsroles/archwiki/meta/main.yml
- roles/aurweb/files/id_ed25519.vault 0 additions, 0 deletionsroles/aurweb/files/id_ed25519.vault
- roles/aurweb/tasks/main.yml 1 addition, 1 deletionroles/aurweb/tasks/main.yml
- roles/aurweb/templates/aurweb.service.j2 1 addition, 0 deletionsroles/aurweb/templates/aurweb.service.j2
- roles/borg_server/tasks/main.yml 1 addition, 1 deletionroles/borg_server/tasks/main.yml
- roles/dbscripts/tasks/main.yml 1 addition, 1 deletionroles/dbscripts/tasks/main.yml
- roles/geo_dns/meta/main.yml 4 additions, 0 deletionsroles/geo_dns/meta/main.yml
- roles/gitlab_runner/files/libvirt-executor-update-base-image 1 addition, 1 deletionroles/gitlab_runner/files/libvirt-executor-update-base-image
- roles/grafana/templates/grafana.ini.j2 9 additions, 0 deletionsroles/grafana/templates/grafana.ini.j2
- roles/hetzner_storagebox/tasks/main.yml 2 additions, 2 deletionsroles/hetzner_storagebox/tasks/main.yml