openstack/openstack-ansible-haproxy_server - openstack-ansible-haproxy_server - OpenDev: Free Software Needs Free Tools

With sphinx release of 5.0.0, they changed default for language variable
to 'en' from None. With that current None valuable is not valid and should
not be used.
Change-Id: Ibea41d4f472fa7b375d9d04e94ad621696f565b1

Change-Id: Iae5c21ee0d604fb015593337815840981ab10ef9

If haproxy_backend_ca set to true, default to using system CA
so you dont have to specify the exact CA to use.
Change-Id: I536c32a0b152a2b754787e07574472ecfaebd7e7

This update matches changes in the openstack-ansible repo to
enable checks against both internal and external addresses.
Depends-On: https://review.opendev.org/782374
Change-Id: Iedbe887a3d75c240dffcc7998f25d1ee5a09c1e5

you can add prometheus metric exposed directly via haproxy if your
version is recent enough.
https://www.haproxy.com/blog/haproxy-exposes-a-prometheus-metrics-endpoint/
Change-Id: I10e7220071290301a85409a1f74fcbad2743d19d

Change-Id: I5d9d407dc031b86d592a0e56e9a6e4dc04873ad6

There's no real need in asking user to manually provide http-01 port and
address when we already have corresponding variables we rely on.
Change-Id: Id0d2a73c863d9bbb8b6280ce42f918127baea354

Addition of a `haproxy_backend_only` flag to the service template
for instances in which a frontend service uses ACLs to propgate
requests to multiple backend services, and not all backend services
require a corresponding frontend. This should prevent the
proliferation of spurious frontend services.
Change-Id: I8c419be82cffd289ffcc5086afac923d6eb1a78a

Change-Id: I2a5a353f006d5dfa9acc10d998fd57e69a25fab8

The sync from https://review.opendev.org/733244 updated to
openstackdocstheme 2.2.1 and reno 3.1.0 versions.
Set openstackdocs_pdf_link to link to PDF file. Note that
the link to the published document only works on docs.openstack.org
where the PDF file is placed in the top-level html directory. The
site-preview places the PDF in a pdf directory.
openstackdocstheme renames some variables, so follow the renames
before the next release removes them. A couple of variables are also
not needed anymore, remove them.
See also
http://lists.openstack.org/pipermail/openstack-discuss/2020-May/014971.html
Change-Id: I208d5939ba7d881588947d51396085dcf6284431

New version of openstackdocstheme (Victoria+) respects pygments_style.
Since this repo is using now Victoria (master) requirements but has
not branched for Ussuri yet, it uses the new version.
Change pygments_style to 'native' since old theme version always used
'native' and the theme now respects the setting and using 'sphinx' can
lead to some strange rendering.
Change-Id: I3643bb9d00bb4109ec133e072b889a72f5a3248e

Change-Id: Ie4a035efb07234241d22b2dda6b5d6da3f2bd15d

Change-Id: I4e1bc2933cce739244470d8f679157329f0644a5

Change-Id: I92bdf1863adad6ee20dc1c21b3e678d127b8c707

Change-Id: Icf3f0513709b599f7955b07d8d93a958c33dea70

This repo is now testing only with Python
3, so let's make
a few cleanups:
- Remove python 2.7 stanza from setup.py
- Remove obsolete sections from setup.cfg
- Cleanup doc/source/conf.py to remove noww
 obsolete content.
Change-Id: Ie2d4e75ba3f81445fe9bcaf46e39d5f4110b350e

Change-Id: Ifc659b64c5b9fa6b4fbea9d6d2928af752e33d87

Adding options to be able to override the default behaviour of
haproxy binding to external_lb_vip_address and internal_lb_vip_address.
The default behaviour stays the same after this change.
Change-Id: I76044aea498d73e97087719279ba0a37a9eb28e9

The existing extra_lb_vip_addresses parameter will add extra haproxy
VIPs without TLS. This patch adds a new extra_lb_tls_vip_addresses
parameter for adding VIPs with TLS enabled.
Change-Id: Ib6f38200775d31633d57a680fae475dbf7abc6c9

Change-Id: I2f2d9db7b4f4dcee7bb35af710cfe24eaf2ef8d5

This patch adds a `pdf-docs` tox target that will build
PDF versions of our docs. As per the Train community goal:
 https://governance.openstack.org/tc/goals/selected/train/pdf-doc-generation.html
Add sphinxcontrib-svg2pdfconverter to doc/requirements.txt
to convert our SVGs.
Change-Id: I5d6f04dfc81897029200ac67c574af07c28d564f
Story: 2006105

Change-Id: I33e06926970d543f3f2df190c3346f8a7b51765e

Change-Id: I04d66fd8668497786718d785e8bccaf6abddffc9

Change-Id: Ib69ff1bdcfba7118dafd45ed2998be412c513659

Change-Id: Ie5de95c56696437e17d0d1c7b76c21a27900955c

sphinxmark is no longer compatible with the latest release of Sphinx
which is causing all of our documentation jobs to fail. This patch
removes it as our current usage of openstacktheme for documentation
already provides watermarks for current branch and notices for which
branch the documentation covers.
Change-Id: I06fec95c12a239a6d143a8bf7d6e072d4eeb6d2d

- installs certbot-auto
- generates and validates ssl cert
- installs cert in haproxy settings
- renew cert with cron
Change-Id: Iea59ec2893a988b184ca8bc70e1d273ac071551e

Change-Id: I015d45907e755de4c506b03b22e8f8ff4cd48528

Change-Id: I3f524f5ba0c9f71b81bbc6a0a78a7e2fb2190506

Change-Id: I2da15fcd03f9e1ba4cc7ba56fe9aac56bad135cd

Change-Id: Ib030c72471778232e0fad1699049afba197a2623

For compliance with the Project Testing Interface as described in:
https://governance.openstack.org/tc/reference/project-testing-interface.html
For more detials information, please refer to:
http://lists.openstack.org/pipermail/openstack-dev/2017-December/125710.html
Change-Id: I66d05fbddf6bea8e5e390f109c4e7792b14b87a9

Currently backend connections are always unencrypted. This adds optional
parameters to configure backend connections with SSL. This is useful for
extra services wich require SSL or to have backend connections to
OpenStack services encrypted in the future.
Change-Id: I6a032962ae987bb1cbc4982fb6ddbd06f8e53936

We may want to load balance to existing services that we aren't managing
via ansible. Currently the hosts have to exist in the inventory in order
to add a VIP for these hosts, this patch adds the ability to set the
hostnames and addresses of the hosts manually when they aren't in the
ansible inventory.
Additionally, this patch adds a test for both the group method and the
host_lists method.
Change-Id: Ida66f401d8320d9bf14eac9b8014124631978808

This patch implements an initial set of jobs intended to match
the current job execution method. It does not intend to improve
how the jobs are executed - only to replicate what is currently
in openstack-infra/openstack-zuul-jobs and provide the platform
to iterate on.
Change-Id: I199286c59a3f139fe2d3b2a1670ab566e4316b9d

Keepalived overrides in OSA are now standard overrides, and
the documentation should follow the code, mentioning the
standard override mechanisms instead of the file which was
used before.
Change-Id: Ic0d17aac6aa5887ba6672557abd150cb50b1115f
Closes-Bug: #1722273 

To use openstackdocstheme 1.11.0 properly, this patch fixes
some settings according to follow[0].
[0]https://docs.openstack.org/openstackdocstheme/latest/
Change-Id: I1b26b63f9242940a613c1c5e97effe11b6eb6fd9

TrivialFix
Change-Id: I0cedec6f9a558cb6379527e8b28175ac96ef31b2

Change-Id: I3897419deca2494a9adfc1e5c49485509b64dc1a
Partial-bug: #1652948 

Change-Id: I291e1a1fed09b7a322023699a89cc3cdb1aeade8

Currently when clicking on the small bug in the roles'
docs, we land on openstack-manuals launchpad.
This should solve it.
Change-Id: If83e6368470a2cee4a3ebf81067b9bc54f57af98

Added an option to configure acl in haproxy_server role by modifying
service.conf.j2 file. It makes developer easy to specify multiple
acl rules to front end that maps to a single backend server.
Change-Id: I528d9f276b4e1f680dd35d77999836f5a87c7c87