]> git.openstreetmap.org Git - chef.git/blobdiff - roles/ironbelly.rb
projects / chef.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Only include nodes with an FQDN in git ACL
[chef.git] / roles / ironbelly.rb
diff --git a/roles/ironbelly.rb b/roles/ironbelly.rb
index 4eb5fbc45c39752557ff368f926bfce68e4a4747..ab306c6a2e5bb7d709dc076ece8b4fa983f176de 100644 (file)
--- a/roles/ironbelly.rb
+++ b/roles/ironbelly.rb
@@ -23,7 +23,7 @@ default_attributes(
     }
   },
   :git => {
-    :allowed_nodes => "*:*",
+    :allowed_nodes => "fqdn:*",
     :user => "chefrepo",
     :group => "chefrepo",
     :backup => "chef-git"
@@ -107,8 +107,7 @@ default_attributes(
         :gid => "www-data",
         :transfer_logging => false,
         :hosts_allow => [
-          "128.40.168.0/24",      # ucl external (wates)
-          "128.40.45.192/27",     # ucl external (wolfson)
+          "193.60.236.0/24",      # ucl external
           "146.179.159.160/27",   # ic internal
           "193.63.75.96/27",      # ic external
           "2001:630:12:500::/64", # ic external
@@ -136,6 +135,7 @@ run_list(
   "role[planet]",
   "role[planetdump]",
   "role[logstash]",
+  "role[letsencrypt]",
   "recipe[rsyncd]",
   "recipe[openvpn]",
   "recipe[git::server]",
Chef configuration management public repo for configuring & maintaining the OpenStreetMap servers.