RETIRED, Lightweight composition layer for Puppet TripleO

Go to file

Oliver Walsh eed662fbcf Restrict nova migration ssh tunnel This change enhances the security of the migration ssh tunnel: - The ssh authorized_keys file is only writeable by root. - Creates a new user for migration instead of using root/nova. - Disables SSH forwarding for this user. - Optionally restricts the networks that this user can connect from. - Uses an ssh wrapper command to whitelist the commands that this user can run over ssh. Requires the openstack-nova-migration package from https://review.rdoproject.org/r/6327 bp tripleo-cold-migration Change-Id: Idb56acd1e1ecb5a5fd4d942969be428cc9cbe293 (cherry picked from commit `f8ca94a5b7`) (cherry picked from commit `fd20b306b0`)		2017-06-06 21:40:41 +01:00
lib	Add virtual_packages support to norpm provider	2017-02-28 23:00:24 +00:00
manifests	Restrict nova migration ssh tunnel	2017-06-06 21:40:41 +01:00
releasenotes/notes	Restrict nova migration ssh tunnel	2017-06-06 21:40:41 +01:00
spec	Restrict nova migration ssh tunnel	2017-06-06 21:40:41 +01:00
templates	Add Docker Registry profile	2017-03-03 13:24:11 +00:00
.gitignore	Update gitignore not to exclude fixture hieradata	2017-05-19 14:07:40 -04:00
.gitreview	Update .gitreview for stable/newton	2016-09-29 12:59:16 -04:00
.sync.yml	Initial msync run for all Puppet OpenStack modules	2015-08-18 14:30:54 +02:00
Gemfile	Use stable/newton for puppet-openstack_spec_helper.	2016-11-11 14:33:58 +00:00
LICENSE	Add basic structure for a Puppet module	2015-02-02 11:39:21 -05:00
Puppetfile_extras	SSHD Service extensions	2017-05-31 13:21:42 +00:00
README.md	README: basic words for now.	2015-02-02 11:46:31 -05:00
Rakefile	Switch puppet-tripleo to use puppet-openstack_spec_helper	2016-09-22 21:26:23 -04:00
bindep.txt	Add bindep support	2017-03-13 21:56:31 +00:00
metadata.json	Prepare 5.6.0 release (newton)	2017-04-27 10:38:10 -04:00

README.md

puppet-tripleo

Lightweight composition layer for Puppet TripleO.