11 Commits

Author SHA1 Message Date
Jill Rouleau
971d97bf99 Correct file modes for rpmlint failures
Numerous files have incorrect modes set. Correct these so that executables
have 755 and yaml files are 644 to address rpmlint errors.

Change-Id: I8db36209b41a492f6b85e3469994de884bf556e8
2018-12-14 13:21:28 -07:00
Juan Antonio Osorio Robles
64f30b5b3c Delete novajoin manual setup from freeipa setup script
This is no longer needed, as the setup is done as part of the
installation steps for novajoin.

Change-Id: Iab76b924cfa569487ff557d30d767f7ec8680669
2018-10-23 13:28:30 +03:00
Michele Baldessari
d2da6c8ac6 Add a FreeIPAExtraArgs param to ci/scripts/freeipa_setup.sh
There are scripts that need some customized parameters (infrared
uses freeipa_setup.sh for example). And sometimes it is convenient
to be able to disable dns verification for example.

Change-Id: Ie605aade96dc690e6b52f55bdf1526c8fd51de6c
2018-08-16 19:55:00 +02:00
Juan Antonio Osorio Robles
701b544884 Setup FreeIPA to serve DNS in the setup script
This is needed for the overcloud nodes to automatically get their domain
and to autodiscover the FreeIPA server.

Change-Id: I4c055e4b4086b02fa706380f01911f499966dfc1
2017-02-15 15:21:53 +02:00
Juan Antonio Osorio Robles
8424e2140d Declare variables for freeipa_setup.sh script
These were assumed to be always passed, but as the script gets
different cases (novajoin vs pre-defined service principals) we might
get "unbound variable" errors when used outside of CI. Exporting these
variables beforehand prevents that.

Change-Id: I195321354df167c09cfc87c5b9f86c6dc5026d75
2017-02-15 10:40:13 +02:00
Juan Antonio Osorio Robles
f6d8dc6e39 FreeIPA: don't preprovision service principals if novajoin is enabled
novajoin will do this once it's enabled in CI.

Change-Id: I9f19d833f306930704b09de0c4d425461f1f3f63
2017-02-01 19:15:41 +00:00
Juan Antonio Osorio Robles
312f357b5a Fix comment in freeipa_setup.sh script
It wrongly pointed that one can use an IP, and this is not correct. For
this case, it needs to be a CIDR. This is because we are not using DHCP
to set this address in CI, so the CIDR is required, else it will use /32
which will not route.

Change-Id: Iea070d49aeb2324564bae59082481b5485d1d360
2017-01-19 01:02:13 +02:00
Juan Antonio Osorio Robles
78215fae79 Add IP to provisioning interface for FreeIPA if requested
If a variable is set in the environment, one can assign an IP for the
provisioning interface for FreeIPA, this is set by OVB and it doesn't
use DHCP, so it's needed since we want the overcloud nodes to
communicate with the CA.

bp tls-via-certmonger

Change-Id: I44a8135118b047f154e3edbb8846751bd2e16c84
2017-01-18 20:51:20 +02:00
Juan Antonio Osorio Robles
aaf4dc1690 Add git to FreeIPA test server install script
This is needed to fetch the tripleo repo; since it's not available
because we're using the generic cloud image on CI.

Change-Id: I22ebe028c7b23cb5fba7d03ce89e967bca5951f8
2017-01-13 17:10:47 +02:00
Juan Antonio Osorio Robles
00b2529d63 Allow freeipa environment file to be in /tmp
Relying on home can be tricky if run on CI, since we would need to
hard-code the user. So for this case, we can use /tmp to source that
environment file from.

bp tls-via-certmonger

Change-Id: Ie6234a15af7aa493257c13bd40cbf51ab36085be
2017-01-11 00:19:18 +02:00
Juan Antonio Osorio Robles
ee7456ef7d Add FreeIPA server installation script
This script is meant for CI and it deploys an instance of FreeIPA.
This instance is needed for deploying TLS everywhere and will serve as
the CA. The parameters relevant to this instance will then be passed to
the overcloud deploy command.

Change-Id: I38b880250c3b30d7fa1c9e56e82a1be8b59b7e30
2016-12-21 15:49:30 +02:00