Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/puppet/zulip_ops/files
History
Alex Vandiver 1a65315566 puppet: Switch teleport to running under systemd, not supervisord. 
There is no reason that the base node access method should be run
under supervisor, which exists primarily to give access to the `zulip`
user to restart its managed services.  This access is unnecessary for
Teleport, and also causes unwanted restarts of Teleport services when
the `supervisor` base configuration changes.  Additionally,
supervisor does not support the in-place upgrade process that Teleport
uses, as it replaces its core process with a new one.

Switch to installing a systemd configuration file (as generated by
`teleport install systemd`) for each part of Teleport, customized to
pass a `--config` path.  As such, we explicitly disable the `teleport`
service provided by the package.

The supervisor process is shut down by dint of no longer installing
the file, which purges it from the managed directory, and reloads
Supervisor to pick up the removed service.
 		2023-03-15 17:23:42 -04:00
..
apache puppet: Move nagios to behind teleport. 2021-06-02 18:38:38 -07:00
apt/apt.conf.d puppet: Set APT::Periodic::Unattended-Upgrade in apt config. 2021-02-12 08:59:19 -08:00
certs
cron.d cron: Remove unused STATE_FILE environment variable. 2022-06-22 12:07:38 -07:00
grafana grafana: Enable auto-sign-up. 2022-07-19 17:52:17 -07:00
iptables puppet: Configure ip6tables in parallel to ipv4. 2021-08-24 16:05:46 -07:00
munin puppet: Configure munin and nagios under apache with puppet. 2020-07-13 13:23:11 -07:00
munin-plugins munin: Update to use NAGIOS_BOT_HOST. 2021-01-27 12:07:09 -08:00
nagios4 nagios: Switch check_user_zephyr_mirror_liveness to run via cron. 2022-06-22 12:07:38 -07:00
nagios_plugins/zulip_zephyr_mirror ruff: Fix RUF004 exit() is only available in the interpreter. 2022-12-04 22:11:24 -08:00
needrestart puppet: Tell needrestart to not default to restarting core services. 2022-07-19 17:51:18 -07:00
nginx/sites-available uploads: Serve S3 uploads directly from nginx. 2023-01-09 18:23:58 -05:00
postgresql puppet: Add a database teleport server. 2021-06-08 22:21:21 -07:00
prometheus puppet: Only fetch from running hosts in Grafana ec2 discovery. 2021-12-09 08:12:03 -08:00
supervisor/conf.d puppet: Switch teleport to running under systemd, not supervisord. 2023-03-15 17:23:42 -04:00
chrony.conf puppet: Configure chrony to use AWS-local NTP sources. 2022-03-25 17:07:53 -07:00
common-session
dot_emacs.el cleanup: Delete leading newlines. 2019-08-06 23:29:11 -07:00
krb5.conf puppet: Replace debathena krb5 package with equivalent puppet file. 2022-01-18 14:13:28 -08:00
nagios_ssh_config puppet: Use existing autossh tunnels as OpenSSH "master" sockets. 2022-11-01 22:24:40 -07:00
sshd_config
teleport_app.yaml puppet: Only include "app_service" section if there are apps. 2022-04-26 16:36:13 -07:00
teleport_node.yaml puppet: Only include "app_service" section if there are apps. 2022-04-26 16:36:13 -07:00
teleport_server.yaml teleport: Add explicit WebAuthn config, not just U2F. 2022-07-18 11:41:00 -07:00
tornado_process_exporter.yaml puppet: Add a prometheus monitor for tornado processes. 2022-03-20 16:12:11 -07:00
zephyr-clients puppet: Replace debathena zephyr package with equivalent puppet file. 2022-01-18 14:13:28 -08:00