|
|
8263eb577d
|
sso: rerun realm settings and vault oidc job
|
2026-01-17 01:36:48 -03:00 |
|
|
|
9e08bc358d
|
jobs: rerun keycloak realm + mas db ensure
|
2026-01-17 01:11:45 -03:00 |
|
|
|
e8ccfa6207
|
jobs: drop apk installs and prefer arm64
|
2026-01-17 01:02:58 -03:00 |
|
|
|
43b552a720
|
keycloak: bump realm settings job
|
2026-01-17 01:00:12 -03:00 |
|
|
|
05cdf75dc6
|
finance: add actual budget and firefly
|
2026-01-16 23:52:56 -03:00 |
|
|
|
fd88e8e04f
|
keycloak: rerun realm and user overrides
|
2026-01-16 17:47:34 -03:00 |
|
|
|
574353d884
|
keycloak: enforce bstein group membership
|
2026-01-16 17:36:07 -03:00 |
|
|
|
37571ef738
|
maintenance: cleanup k3s traefik and wger attrs
|
2026-01-16 09:27:22 -03:00 |
|
|
|
b72561e5ec
|
maintenance: disable k3s traefik; keycloak portal admin roles
|
2026-01-16 07:53:04 -03:00 |
|
|
|
a603b88eea
|
vault/keycloak: restore kv access and wger sync rbac
|
2026-01-16 03:46:07 -03:00 |
|
|
|
621550cba1
|
comms: fix mas vault file paths
|
2026-01-15 23:56:32 -03:00 |
|
|
|
6d249466ee
|
keycloak: align smtp probe user
|
2026-01-15 04:44:35 -03:00 |
|
|
|
9bddcd1e76
|
keycloak: rerun execute-actions email e2e
|
2026-01-15 04:37:12 -03:00 |
|
|
|
397eefdaf6
|
keycloak: rerun realm smtp config
|
2026-01-15 04:24:16 -03:00 |
|
|
|
98ca8f6b1a
|
smtp: use mail.bstein.dev for app relays
|
2026-01-15 04:04:50 -03:00 |
|
|
|
e6ce9b0d88
|
smtp: point services at mailu relay
|
2026-01-15 03:58:03 -03:00 |
|
|
|
ad0b6d597d
|
fix: bump keycloak and portal e2e job names
|
2026-01-15 03:44:27 -03:00 |
|
|
|
30588fd739
|
vault: fix data-prepper pipeline and portal admin secret job
|
2026-01-15 03:42:57 -03:00 |
|
|
|
5b8dd6f322
|
keycloak: stop writing oauth2-proxy secret
|
2026-01-15 02:37:04 -03:00 |
|
|
|
d957e7e7f7
|
vault: read oidc config from vault
|
2026-01-14 23:20:04 -03:00 |
|
|
|
4f99000aab
|
vault: inject remaining services with wrappers
|
2026-01-14 17:29:09 -03:00 |
|
|
|
fa389be9b8
|
vault: bump job names for injector
|
2026-01-14 14:33:57 -03:00 |
|
|
|
223ff4936f
|
vault: prepopulate injector for jobs
|
2026-01-14 14:29:29 -03:00 |
|
|
|
f126dc5412
|
keycloak: schedule on arm64 workers
|
2026-01-14 13:49:37 -03:00 |
|
|
|
65d87f0b2e
|
keycloak: bump job names
|
2026-01-14 13:42:08 -03:00 |
|
|
|
4279db1619
|
vault: stabilize injector templates and add health apps
|
2026-01-14 13:40:29 -03:00 |
|
|
|
1c3cb83b0a
|
keycloak: switch jobs to vault injector
|
2026-01-14 13:20:57 -03:00 |
|
|
|
c9483b2d80
|
vault: sync harbor pulls
|
2026-01-14 10:07:31 -03:00 |
|
|
|
c24c7284e5
|
vault: add remaining secret syncs
|
2026-01-14 06:16:42 -03:00 |
|
|
|
c0bab2d528
|
jobs: bump names after vault tweaks
|
2026-01-14 05:47:21 -03:00 |
|
|
|
ab51d54101
|
jobs: drop apk in kubectl image
|
2026-01-14 05:41:01 -03:00 |
|
|
|
a4ecb0f2aa
|
jobs: bump names for immutability
|
2026-01-14 05:32:07 -03:00 |
|
|
|
bdc32b7a36
|
vault(consumption): sync secrets via CSI
|
2026-01-14 05:07:23 -03:00 |
|
|
|
3c65695dfc
|
vault: wire more services to CSI
|
2026-01-14 02:54:59 -03:00 |
|
|
|
0d9291da7e
|
vault: align oidc roles with keycloak
|
2026-01-14 02:24:32 -03:00 |
|
|
|
023032fd76
|
keycloak: fix harbor oidc job
|
2026-01-14 01:24:18 -03:00 |
|
|
|
f343f58ced
|
keycloak: bump harbor oidc job
|
2026-01-14 01:22:30 -03:00 |
|
|
|
6779e99617
|
keycloak: ensure harbor oidc scope
|
2026-01-14 01:21:08 -03:00 |
|
|
|
ac1389b75b
|
feat: add harbor/vault oidc automation
|
2026-01-14 01:07:47 -03:00 |
|
|
|
6f4cc58941
|
vault: prep helm releases and image pins
|
2026-01-13 19:29:14 -03:00 |
|
|
|
e576daf98b
|
iac: localize configmap scripts
|
2026-01-13 12:07:03 -03:00 |
|
|
|
8a22eb1d1c
|
planka: default users to project owners
|
2026-01-12 23:24:09 -03:00 |
|
|
|
46d15d6216
|
planka: enable project owners via oidc
|
2026-01-12 23:14:17 -03:00 |
|
|
|
9242efd8c6
|
keycloak: fix logs oauth2 cookie secret
|
2026-01-09 08:57:13 -03:00 |
|
|
|
abc6e45d17
|
logging: add opensearch dashboards ui
|
2026-01-09 08:54:07 -03:00 |
|
|
|
2141e1dfa0
|
keycloak: re-run mas secrets ensure
|
2026-01-08 05:43:33 -03:00 |
|
|
|
0a1cab87c3
|
comms: re-run signing key and synapse oidc
|
2026-01-08 05:40:28 -03:00 |
|
|
|
a84b51d640
|
sso: install kubectl in synapse oidc job
|
2026-01-08 03:57:35 -03:00 |
|
|
|
b9e16fc155
|
sso: run synapse oidc job with kubectl
|
2026-01-08 03:56:18 -03:00 |
|
|
|
4ffa39c5a4
|
comms: ensure core secrets and synapse oidc
|
2026-01-08 03:53:49 -03:00 |
|
