|
|
53da4c20ab
|
keycloak: stop writing oauth2-proxy secret
|
2026-01-15 02:37:04 -03:00 |
|
|
|
82090c1953
|
vault: read oidc config from vault
|
2026-01-14 23:20:04 -03:00 |
|
|
|
fb671865e5
|
vault: inject remaining services with wrappers
|
2026-01-14 17:29:09 -03:00 |
|
|
|
4f1fb62ab3
|
vault: bump job names for injector
|
2026-01-14 14:33:57 -03:00 |
|
|
|
98d67293bc
|
vault: prepopulate injector for jobs
|
2026-01-14 14:29:29 -03:00 |
|
|
|
d559aeb464
|
keycloak: schedule on arm64 workers
|
2026-01-14 13:49:37 -03:00 |
|
|
|
9c16d0fbc0
|
keycloak: bump job names
|
2026-01-14 13:42:08 -03:00 |
|
|
|
89f4b0dbdf
|
vault: stabilize injector templates and add health apps
|
2026-01-14 13:40:29 -03:00 |
|
|
|
58c880d9ce
|
keycloak: switch jobs to vault injector
|
2026-01-14 13:20:57 -03:00 |
|
|
|
b1f9df4d83
|
vault: sync harbor pulls
|
2026-01-14 10:07:31 -03:00 |
|
|
|
37302664c2
|
vault: add remaining secret syncs
|
2026-01-14 06:16:42 -03:00 |
|
|
|
5683b3f941
|
jobs: bump names after vault tweaks
|
2026-01-14 05:47:21 -03:00 |
|
|
|
9ec08e1dc2
|
jobs: drop apk in kubectl image
|
2026-01-14 05:41:01 -03:00 |
|
|
|
35369d53d8
|
jobs: bump names for immutability
|
2026-01-14 05:32:07 -03:00 |
|
|
|
de3db3133b
|
vault(consumption): sync secrets via CSI
|
2026-01-14 05:07:23 -03:00 |
|
|
|
fd2ae6bdd5
|
vault: wire more services to CSI
|
2026-01-14 02:54:59 -03:00 |
|
|
|
55234f8536
|
vault: align oidc roles with keycloak
|
2026-01-14 02:24:32 -03:00 |
|
|
|
1d894ea80f
|
keycloak: fix harbor oidc job
|
2026-01-14 01:24:18 -03:00 |
|
|
|
537d304b36
|
keycloak: bump harbor oidc job
|
2026-01-14 01:22:30 -03:00 |
|
|
|
e776f004c9
|
keycloak: ensure harbor oidc scope
|
2026-01-14 01:21:08 -03:00 |
|
|
|
4a1c4766b8
|
feat: add harbor/vault oidc automation
|
2026-01-14 01:07:47 -03:00 |
|
|
|
4602656578
|
vault: prep helm releases and image pins
|
2026-01-13 19:29:14 -03:00 |
|
|
|
3fc9f7bbdb
|
iac: localize configmap scripts
|
2026-01-13 12:07:03 -03:00 |
|
|
|
4d6d0b89b2
|
planka: default users to project owners
|
2026-01-12 23:24:09 -03:00 |
|
|
|
1a50f51115
|
planka: enable project owners via oidc
|
2026-01-12 23:14:17 -03:00 |
|
|
|
7a9cf1df98
|
keycloak: fix logs oauth2 cookie secret
|
2026-01-09 08:57:13 -03:00 |
|
|
|
cac71e4a41
|
logging: add opensearch dashboards ui
|
2026-01-09 08:54:07 -03:00 |
|
|
|
0fc4b299da
|
keycloak: re-run mas secrets ensure
|
2026-01-08 05:43:33 -03:00 |
|
|
|
d3c6ddeead
|
comms: re-run signing key and synapse oidc
|
2026-01-08 05:40:28 -03:00 |
|
|
|
5a23514a30
|
sso: install kubectl in synapse oidc job
|
2026-01-08 03:57:35 -03:00 |
|
|
|
220cc1f31a
|
sso: run synapse oidc job with kubectl
|
2026-01-08 03:56:18 -03:00 |
|
|
|
76deb9a160
|
comms: ensure core secrets and synapse oidc
|
2026-01-08 03:53:49 -03:00 |
|
|
|
d3c3db612d
|
sso: recheck mas encryption bytes
|
2026-01-08 03:44:54 -03:00 |
|
|
|
8d1284412f
|
sso: validate mas encryption length
|
2026-01-08 03:43:06 -03:00 |
|
|
|
04817691c6
|
sso: strip mas secret newlines
|
2026-01-08 03:38:51 -03:00 |
|
|
|
072af083bc
|
sso: fix mas encryption secret
|
2026-01-08 03:35:40 -03:00 |
|
|
|
6e0b3c43bd
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:32:31 -03:00 |
|
|
|
9d3b27e567
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:25:55 -03:00 |
|
|
|
6e7118c14d
|
keycloak: use create for MAS secrets
|
2026-01-08 02:23:40 -03:00 |
|
|
|
6c99eb452e
|
keycloak: make MAS secret job idempotent
|
2026-01-08 02:21:37 -03:00 |
|
|
|
e9fb11af40
|
keycloak: allow MAS secret apply read access
|
2026-01-08 02:19:21 -03:00 |
|
|
|
afce04b9b2
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:17:04 -03:00 |
|
|
|
2aea7e3601
|
keycloak: retry MAS secret bootstrap
|
2026-01-08 02:12:40 -03:00 |
|
|
|
05848223eb
|
comms: ensure MAS secrets via keycloak admin job
|
2026-01-08 02:09:23 -03:00 |
|
|
|
55606e5b70
|
fix(portal): pin kubectl image digest
|
2026-01-04 03:40:13 -03:00 |
|
|
|
17a9a7e245
|
test(portal): sync e2e client secret
|
2026-01-04 03:35:26 -03:00 |
|
|
|
a7f68ddddb
|
test: ensure smtp probe user has email
|
2026-01-04 01:08:17 -03:00 |
|
|
|
38b4935e1d
|
test: send execute-actions-email to existing mailbox
|
2026-01-04 01:06:05 -03:00 |
|
|
|
7cbbb7e193
|
test: fix keycloak execute-actions-email probe
|
2026-01-04 00:59:24 -03:00 |
|
|
|
eb11eaff4e
|
keycloak: allow e2e client execute-actions-email
|
2026-01-04 00:58:02 -03:00 |
|
