|
|
4f99000aab
|
vault: inject remaining services with wrappers
|
2026-01-14 17:29:09 -03:00 |
|
|
|
fa389be9b8
|
vault: bump job names for injector
|
2026-01-14 14:33:57 -03:00 |
|
|
|
223ff4936f
|
vault: prepopulate injector for jobs
|
2026-01-14 14:29:29 -03:00 |
|
|
|
f126dc5412
|
keycloak: schedule on arm64 workers
|
2026-01-14 13:49:37 -03:00 |
|
|
|
65d87f0b2e
|
keycloak: bump job names
|
2026-01-14 13:42:08 -03:00 |
|
|
|
4279db1619
|
vault: stabilize injector templates and add health apps
|
2026-01-14 13:40:29 -03:00 |
|
|
|
1c3cb83b0a
|
keycloak: switch jobs to vault injector
|
2026-01-14 13:20:57 -03:00 |
|
|
|
c9483b2d80
|
vault: sync harbor pulls
|
2026-01-14 10:07:31 -03:00 |
|
|
|
c24c7284e5
|
vault: add remaining secret syncs
|
2026-01-14 06:16:42 -03:00 |
|
|
|
c0bab2d528
|
jobs: bump names after vault tweaks
|
2026-01-14 05:47:21 -03:00 |
|
|
|
ab51d54101
|
jobs: drop apk in kubectl image
|
2026-01-14 05:41:01 -03:00 |
|
|
|
a4ecb0f2aa
|
jobs: bump names for immutability
|
2026-01-14 05:32:07 -03:00 |
|
|
|
bdc32b7a36
|
vault(consumption): sync secrets via CSI
|
2026-01-14 05:07:23 -03:00 |
|
|
|
3c65695dfc
|
vault: wire more services to CSI
|
2026-01-14 02:54:59 -03:00 |
|
|
|
0d9291da7e
|
vault: align oidc roles with keycloak
|
2026-01-14 02:24:32 -03:00 |
|
|
|
023032fd76
|
keycloak: fix harbor oidc job
|
2026-01-14 01:24:18 -03:00 |
|
|
|
f343f58ced
|
keycloak: bump harbor oidc job
|
2026-01-14 01:22:30 -03:00 |
|
|
|
6779e99617
|
keycloak: ensure harbor oidc scope
|
2026-01-14 01:21:08 -03:00 |
|
|
|
ac1389b75b
|
feat: add harbor/vault oidc automation
|
2026-01-14 01:07:47 -03:00 |
|
|
|
6f4cc58941
|
vault: prep helm releases and image pins
|
2026-01-13 19:29:14 -03:00 |
|
|
|
e576daf98b
|
iac: localize configmap scripts
|
2026-01-13 12:07:03 -03:00 |
|
|
|
8a22eb1d1c
|
planka: default users to project owners
|
2026-01-12 23:24:09 -03:00 |
|
|
|
46d15d6216
|
planka: enable project owners via oidc
|
2026-01-12 23:14:17 -03:00 |
|
|
|
9242efd8c6
|
keycloak: fix logs oauth2 cookie secret
|
2026-01-09 08:57:13 -03:00 |
|
|
|
abc6e45d17
|
logging: add opensearch dashboards ui
|
2026-01-09 08:54:07 -03:00 |
|
|
|
2141e1dfa0
|
keycloak: re-run mas secrets ensure
|
2026-01-08 05:43:33 -03:00 |
|
|
|
0a1cab87c3
|
comms: re-run signing key and synapse oidc
|
2026-01-08 05:40:28 -03:00 |
|
|
|
a84b51d640
|
sso: install kubectl in synapse oidc job
|
2026-01-08 03:57:35 -03:00 |
|
|
|
b9e16fc155
|
sso: run synapse oidc job with kubectl
|
2026-01-08 03:56:18 -03:00 |
|
|
|
4ffa39c5a4
|
comms: ensure core secrets and synapse oidc
|
2026-01-08 03:53:49 -03:00 |
|
|
|
93f36f8faf
|
sso: recheck mas encryption bytes
|
2026-01-08 03:44:54 -03:00 |
|
|
|
2d36ed954f
|
sso: validate mas encryption length
|
2026-01-08 03:43:06 -03:00 |
|
|
|
72b815b050
|
sso: strip mas secret newlines
|
2026-01-08 03:38:51 -03:00 |
|
|
|
03ca26dc57
|
sso: fix mas encryption secret
|
2026-01-08 03:35:40 -03:00 |
|
|
|
b0040a85cf
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:32:31 -03:00 |
|
|
|
6678fbce0b
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:25:55 -03:00 |
|
|
|
864bf866c2
|
keycloak: use create for MAS secrets
|
2026-01-08 02:23:40 -03:00 |
|
|
|
bf34e42bbe
|
keycloak: make MAS secret job idempotent
|
2026-01-08 02:21:37 -03:00 |
|
|
|
2f9a2c2796
|
keycloak: allow MAS secret apply read access
|
2026-01-08 02:19:21 -03:00 |
|
|
|
f1faa303ce
|
keycloak: rerun MAS secrets bootstrap
|
2026-01-08 02:17:04 -03:00 |
|
|
|
22f63a06fa
|
keycloak: retry MAS secret bootstrap
|
2026-01-08 02:12:40 -03:00 |
|
|
|
4f2eb38514
|
comms: ensure MAS secrets via keycloak admin job
|
2026-01-08 02:09:23 -03:00 |
|
|
|
18cf731b12
|
fix(portal): pin kubectl image digest
|
2026-01-04 03:40:13 -03:00 |
|
|
|
1e2564ba7f
|
test(portal): sync e2e client secret
|
2026-01-04 03:35:26 -03:00 |
|
|
|
6fa8dce0e3
|
test: ensure smtp probe user has email
|
2026-01-04 01:08:17 -03:00 |
|
|
|
f1d0304b73
|
test: send execute-actions-email to existing mailbox
|
2026-01-04 01:06:05 -03:00 |
|
|
|
3f15d1c05a
|
test: fix keycloak execute-actions-email probe
|
2026-01-04 00:59:24 -03:00 |
|
|
|
3f541fc249
|
keycloak: allow e2e client execute-actions-email
|
2026-01-04 00:58:02 -03:00 |
|
|
|
6ec27c75b0
|
tests: add Keycloak email probe
|
2026-01-04 00:53:13 -03:00 |
|
|
|
d646e9206c
|
keycloak: rerun realm settings job
|
2026-01-03 18:27:29 -03:00 |
|
