James Cole jamcole
jamcole
/ .sops.yaml
Created
February 25, 2020 21:58
SOPS POC - Run before and after 'kustomize' commands... Secret files are named *.secret.*, files are renamed to *.encrypted.*
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Config file for Mozilla SOPS: https://github.com/mozilla/sops | |
| # | |
| # find files to decrypt with `find . -name '*.encrypted.*' | |
| # find files to encrypt with `find . -name '*.secret.*' | |
| # | |
| # creation rules are evaluated sequentially, the first match wins | |
| creation_rules: | |
| # all files that match pattern *.secret.* or *.encrypted.* | |
| - path_regex: \.(secret|encrypted)\. | |
| pgp: '166586CD6F1A906D0786BE50C26EFAE7B312A5D8' |
jamcole
/ OpenShiftCredentials.groovy
Created
February 25, 2020 21:17
OpenShift Token Credentials Creator Jenkins Library
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import jenkins.model.* | |
| import com.cloudbees.hudson.plugins.folder.*; | |
| import com.cloudbees.hudson.plugins.folder.properties.*; | |
| import com.cloudbees.hudson.plugins.folder.properties.FolderCredentialsProvider.FolderCredentialsProperty; | |
| import com.cloudbees.plugins.credentials.impl.*; | |
| import com.cloudbees.plugins.credentials.*; | |
| import com.cloudbees.plugins.credentials.domains.*; | |
| import com.openshift.jenkins.plugins.OpenShiftTokenCredentials; | |
| import hudson.util.Secret; |
jamcole
/ setup-router.yml
Created
February 25, 2020 18:20
OCP 3.11 Playbook to enable extended logging, disable tls 1.0, and enable modern ciphers
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - name: Configure OpenShift Router | |
| hosts: bastion | |
| gather_facts: no | |
| any_errors_fatal: yes | |
| roles: | |
| - oc_host | |
| - ocp_login_master | |
| tasks: | |
| # Configure router | |
| - name: Pause router rollout |
NewerOlder