heroes / salt

Clone
Source Code
GIT

Files

  1.   726a889926e213e0d290842ffeb1140b37ed6d82
  2.   pillar
  3.   role
  4.   pagure.sls
Blob Blame History Raw 
include:
{% if salt['grains.get']('include_secrets', True) %}
  - secrets.role.pagure
{% endif %}
  - role.common.nginx

sshd_config:
  matches:
    git_user:
      type:
        User: git
      options:
        AuthorizedKeysCommand: /usr/lib/pagure/keyhelper.py "%u" "%h" "%t" "%f"
        AuthorizedKeysCommandUser: git
    proxy:
      type:
        Address:
          - 192.168.47.4
          - 192.168.47.101
          - 192.168.47.102
      options:
        AllowUsers:
          - git

profile:
  pagure:
    database_user: pagure
    database_host: 192.168.47.4

nginx:
  ng:
    servers:
      managed:
        code.opensuse.org.conf:
          config:
            - server:
                - server_name: code.opensuse.org
                - listen:
                    - 80
                    - default_server
                - location @pagure:
                    - proxy_set_header: Host $http_host
                    - proxy_set_header: X-Real-IP $remote_addr
                    - proxy_set_header: X-Forwarded-For $proxy_add_x_forwarded_for
                    - proxy_set_header: X-Forwarded-Proto $scheme
                    - proxy_pass: http://unix:/srv/gitolite/.pagure_web.sock
                - location /:
                    - try_files: $uri @pagure
                - location /releases:
                    - alias: /srv/www/pagure-releases/
                    - autoindex: 'on'
          enabled: True
        releases.opensuse.org.conf:
          config:
            - server:
                - server_name: releases.opensuse.org
                - listen:
                    - 80
                - location /:
                    - alias: /srv/www/pagure-releases/
                    - autoindex: 'on'
          enabled: True
        ev.opensuse.org.conf:
          config:
            - server:
                - server_name: ev.opensuse.org
                - listen:
                    - 80
                - location @pagure_ev:
                    - proxy_set_header: Host $http_host
                    - proxy_set_header: X-Real-IP $remote_addr
                    - proxy_set_header: X-Forwarded-For $proxy_add_x_forwarded_for
                    - proxy_set_header: X-Forwarded-Proto $scheme
                    - proxy_pass: http://localhost:8080
                - location /:
                    - try_files: $uri @pagure_ev
          enabled: True
        pages.opensuse.org.conf:
          config:
            - server:
                - server_name: pages.opensuse.org
                - listen:
                    - 80
                - location @pagure_docs:
                    - proxy_set_header: Host $http_host
                    - proxy_set_header: X-Real-IP $remote_addr
                    - proxy_set_header: X-Forwarded-For $proxy_add_x_forwarded_for
                    - proxy_set_header: X-Forwarded-Proto $scheme
                    - proxy_pass: http://unix:/srv/gitolite/.pagure_docs_web.sock
                - location /:
                    - try_files: $uri @pagure_docs
          enabled: True

zypper:
  repositories:
    openSUSE:infrastructure:pagure:
      baseurl: http://download.infra.opensuse.org/repositories/openSUSE:/infrastructure:/pagure/openSUSE_Leap_$releasever/
      priority: 100
      refresh: True
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.