An error occurred fetching the project authors.
- 24 Nov, 2021 1 commit
-
-
Łukasz Nowak authored
JSON schema uses simple string and internal process, and caddy instances are not kept simple and are not considered future-proof.
-
- 11 Oct, 2021 1 commit
-
-
Julien Muchembled authored
Adapt all promise sections to changes in plugin promise recipe.
-
- 23 Aug, 2021 1 commit
-
-
Boxiang Sun authored
Changes explanation: slave_reference.lower(): The configparser which the current buildout using is case sensitive, which cause some options cannot be found. slap_software_type: The recipe softwaretype need this option, but switch-softwaretype doesn't. caddyprofiledeps: It provides the deps of caddy. Switch to switch-softwaretype leads to the error like "ImportError: No module named furl". Force caddyprofiledeps installed first can solve this issue.
-
- 29 Jun, 2021 1 commit
-
-
Xavier Thompson authored
Change all `check_port_listening` promises to `check_socket_listening` and rename all associated `config-hostname` arguments to `config-host`
-
- 12 May, 2021 1 commit
-
-
Łukasz Nowak authored
Accessing http with path starting with /HTTPS/ would result with 503 responses from ATS itself. Test is covering the problem and also asserting that fix does not damage https access with path starting with /HTTP/
-
- 03 Mar, 2021 1 commit
-
-
Łukasz Nowak authored
By adding failover url the user is able to configure special backend to use in case if the real backend is down. Original PoC was done by Kazuhiko SHIOZAKI <kazuhiko@nexedi.com>.
-
- 25 Feb, 2021 1 commit
-
-
Łukasz Nowak authored
It's available only on the slave, so it is not part of master partition configuration. Due to the cleanup change the parameter parsing logic has to be improved.
-
- 05 Feb, 2021 2 commits
-
-
Łukasz Nowak authored
backend-active-check is really long and technical name, whereas health-check is well known description of backend checks.
-
Łukasz Nowak authored
-
- 27 Jan, 2021 1 commit
-
-
Łukasz Nowak authored
-
- 26 Jan, 2021 3 commits
-
-
Łukasz Nowak authored
It's not used at all in current approach.
-
Łukasz Nowak authored
The public-ipv4 comes from the historical usage of the system, but since new implementation came into place it was never needed, so now it's time to say goodbye. Test has been updated to do in-house mimic of the used IP to access.
-
Łukasz Nowak authored
As decision making quite often requires access to more than one slave entry, it's better to keep the logic above configuration generation. Also configuration generation is already complex, and it's better to have it simplified, especially in case of switching the component. Use already prepared values from apache-custom-slave-list.cfg.in in default-virtualhost.conf.in to simplify even more. Pass variables to the other profiles without casting them to string, so that they work out of the box.
-
- 18 Nov, 2020 2 commits
-
-
Łukasz Nowak authored
Despite the introspection has replaced old style Caddy-based log-access, some bits were not removed, so remove then now. fixes 0c830c4c
-
Łukasz Nowak authored
It was done in frontend partition, but missed in kedifa. fixes 3469e864
-
- 10 Nov, 2020 1 commit
-
-
Łukasz Nowak authored
-
- 27 Oct, 2020 2 commits
-
-
Łukasz Nowak authored
Thanks to this other sections can directly reference them, and so they are correctly created as needed, so linking section does not need update-command
-
Łukasz Nowak authored
The password is anyway present in the section itself, so it's eventual change will result with reinstalling the section.
-
- 20 Oct, 2020 5 commits
-
-
Łukasz Nowak authored
stop-on-error during instantiation can lead to endless instantiation in some cases, which disallows to create services required for given part to pass, and in the same time in many cases the called scripts are smart enough to continue and restart on error.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
It's a dict, and in SlapOS usage of Jinja2 it's good to see the type of a variable immediately.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
That's true, that those are templates, but the important information which shall be in the name of the parameter is its purpose - a profile.
-
- 05 Oct, 2020 1 commit
-
-
Łukasz Nowak authored
Each node allows for global statistic access for full backend-haproxy, which is exposed using special frontend, and then transferred back to the master partition, so that the administrator can access it.
-
- 25 Sep, 2020 2 commits
-
-
Łukasz Nowak authored
Thanks to using check_execute_command with logrotate -d one can assure, that logrotate is for sure correctly configured.
-
Łukasz Nowak authored
By disabling delaycompress filenames are going to be stable, on delaying the compression is not needed.
-
- 15 Sep, 2020 1 commit
-
-
Łukasz Nowak authored
By using nginx it's possible to set it up to expose logs nicely with the real frontend. furl is used to rewrite URL from the frontend to add proper username and password information.
-
- 30 Jul, 2020 4 commits
-
-
Łukasz Nowak authored
Backend logs are exposed as usual access and error logs. By using rsyslogd templates and regex filtering, the rsyslogd reacts itself and creates needed files per each slave which accesses it. Thanks to this, it's configuration is static from point of view of SlapOS profiles, and can be generated once. As the rsyslogd configuration became fully special to backend-haproxy, the rsyslogd template filename and its references has been correctly renamed.
-
Łukasz Nowak authored
Logs are critical for caddy-frontend, so let's configure rotate-num locally, as changes in the stack can come unattended, and can result with loosing logs.
-
Łukasz Nowak authored
We moved out from local logrotate configuration long time ago, it was just leftover.
-
Łukasz Nowak authored
The logrotate folder also serves as an publication folder for logs, so be sure that logs are linked there.
-
- 17 Jul, 2020 5 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
By default do not offer authentication certificate, the switch authenticate-to-backend can be used on cluster or slave level to control this feature.
-
Łukasz Nowak authored
rsyslogd is used, as haproxy does not support writing log files by its own.
-
Łukasz Nowak authored
This is needed in order to provide future support for client certificates to the backend. Also it means that haproxy is used in all cases, with or without cache, and as a result the "cached" version of caddy is dropped. Let haproxy setup maxconn by itself, as it's wise enough. Also trust that it'll detect and use proper limits, instead enforcing them in the shell with ulimit trick (ulimit -n $(ulimit -Hn)). As empty server alias can impact the configuration, add proper test for checking it.
-
- 14 Jul, 2020 2 commits
-
-
Łukasz Nowak authored
Instead of passing various kedifa information to the profile generating configuration use section kedifa-configuration and access later such grouped values.
-
Łukasz Nowak authored
In context of frontend node reuse passed directory section to slave configuration to improve readability and simplify future enhancements.
-
- 22 Jun, 2020 2 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-