summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add AWS SNS notification support for webhook (#15184)Ethem Cem Özkan2024-06-0221-21/+297
| | | | | | | | | | | | | | | | Support for AWS SNS notifications. SNS is a widespread service that is used to integrate with other AWS services(EG lambdas). This support would unlock use cases like triggering lambda functions, especially when AWX is deployed on EKS. Decisions: Data Structure - I preferred using the same structure as Webhook for message body data because it contains all job details. For now, I directly linked to Webhook to avoid duplication, but I am open to suggestions. AWS authentication - To support non-AWS native environments, I added configuration options for AWS secret key, ID, and session tokens. When entered, these values are supplied to the underlining boto3 SNS client. If not entered, it falls back to the default authentication chain to support the native AWS environment. Properly configured EKS pods are created with temporary credentials that the default authentication chain can pick automatically. --------- Signed-off-by: Ethem Cem Ozkan <ethemcem.ozkan@gmail.com>
* Modify the link to terraform_state inventory plugin (#15241)Akira Yokochi2024-06-022-3/+3
| | | fix link to terraform_state inventory plugin
* Add requirements commentChris Meyers2024-05-311-1/+1
|
* Add example grafana dashboardChris Meyers2024-05-312-2/+160
| | | | * Per-service log view
* Rework which loggers we sent to OTELChris Meyers2024-05-311-4/+11
| | | | * Send all propagate=False loggers to OTEL AND the awx logger
* Add recordingChris Meyers2024-05-315-7/+45
| | | | | | | | | | | * Always output awx logs to a file via otel * That log file can always be later replayed into a product that supports otlp at a later date. * Useful when you find a problem that you need a time series DB to help find and solve. * Useful if a community member or customer has a problem where a time series db would be helpful. You can take a "remote" users log and replay it locally for analysis.
* Move requirements out of dev and into mainlineChris Meyers2024-05-3118-5/+2960
| | | | * Add new package license files
* Centralized logging via otelChris Meyers2024-05-3111-0/+270
|
* Add check_instance_ready management command (#15238)Hao Liu2024-05-311-0/+12
| | | | - throw exception and return 1 if instance not ready - return 0 if ready
* Use settings fixture in testsChris Meyers2024-05-301-4/+2
| | | | | | * Otherwise, settings value changes bleeds over into other tests. * Remove django.conf settings import so that we do not accidentally forget to use the settings fixture.
* Make named url work with optional url prefixChris Meyers2024-05-292-8/+92
| | | | | * Handle named url sub-resources * i.e. /api/v2/inventories/my_inventory++Default/hosts/
* use optional api prefix in collection if set as environ vairable (#15205)Harshith u2024-05-291-6/+15
| | | | | * use optional api prefix if set as environ variable * Different default depending on collection type
* Fix galaxy publishing (#15233)Hao Liu2024-05-281-5/+8
| | | | - switch to galaxy search API for determining if the version we want to publish already exist - switch from github action variable to env var for easier copy and paste testing
* Include Kube credentials in the inventory source picker (#15223)Matthew Jones2024-05-282-3/+3
|
* Update test so that DAB change can merge (#15222)Alan Rominger2024-05-281-1/+1
|
* Mention in the docs that you can skip `make docker-compose-build` (#15149)Alexander Pykavy2024-05-221-1/+1
| | | Signed-off-by: Alexander Pykavy <aleksandrpykavyj@gmail.com>
* Wrap long line to fit help window (#14597) (#15169)irozet122024-05-222-1/+2
| | | | | Wrap long line to fit description window (#14597) Co-authored-by: Ирина Розет <irozet@astralinux.ru>
* awxkit: replace deprecated locale.format() with locale.format_string() to ↵Beni ~HB9HNT2024-05-221-1/+1
| | | | | | | fix human output on Python 3.12 (#15170) Replace deprecated locale.format with locale.format_string This will be removed in Python 3.12 and will break human output unless fixed.
* Fix promote from release event (#15215)Hao Liu2024-05-221-1/+1
|
* Fix up ansible-test sanity checks due to ansible 2.17 release (#15208)24.4.0Seth Foster2024-05-215-6/+7
| | | | | | | | | | | | * Fix up ansible sanity checks * Fix awx-collection test failure * Add ignore for ansible-test 2.17 --------- Signed-off-by: Seth Foster <fosterbseth@gmail.com> Co-authored-by: Hao Liu <44379968+TheRealHaoLiu@users.noreply.github.com>
* Update a few dev requirements (#15203)Alan Rominger2024-05-2117-221/+222
| | | | | | | * Update a few dev requirements * Fix test failures due to upgrade * Update patterns for mocker usage
* Allow wsrelay to fail without FATAL (#15191)Hao Liu2024-05-213-87/+60
| | | We have not identify the root cause of wsrelay failure but attempt to make wsrelay restart itself resulted in postgres and redis connection leak. We were not able to fully identify where the redis connection leak comes from so reverting back to failing and removing startsecs 30 will prevent wsrelay to FATAL
* Added docs for new RBAC changes (#15150)TVo2024-05-1812-317/+519
| | | | | | | | | | | | | | | * Added docs for new RBAC changes * Added UI changes with screens and API endpoints with sample commands. * Update docs/docsite/rst/userguide/rbac.rst Co-authored-by: Vidya Nambiar <43621546+vidyanambiar@users.noreply.github.com> * Incorporated review feedback from @vidyanambiar. --------- Co-authored-by: Vidya Nambiar <43621546+vidyanambiar@users.noreply.github.com>
* Fix success_url_allowed_hosts set instantiation (#15196)Michael Anstis2024-05-162-2/+2
| | | Co-authored-by: Michael Anstis <manstis@redhat.com>
* Fix terraform backend credential issue (#15141)Bikouo Aubin2024-05-151-2/+2
| | | fix issue introduced by PR15055
* Add skip authorization option to collection application module (#15190)Sean Sullivan2024-05-151-0/+3
|
* Bump jinja2 from 3.1.3 to 3.1.4 in /docs/docsite (#15168)dependabot[bot]2024-05-141-1/+1
| | | | | | | | | | | | | | | | Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/3.1.3...3.1.4) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Fix podman failure in development environment (#15188)Hao Liu2024-05-141-7/+0
| | | | | | | | ``` ERRO[0000] path "/var/lib/awx/.config" exists and it is not owned by the current user ``` start to happen with podman 5 it seems that the config files are no longer needed removing it fixes the problem
* Support Django logout redirects (#15148)Michael Anstis2024-05-132-0/+4
| | | | | | * Allowed hosts for logout redirects can now be set via the LOGOUT_ALLOWED_HOSTS setting Authored-by: Michael Anstis <manstis@redhat.com> Co-authored-by: Hao Liu <44379968+TheRealHaoLiu@users.noreply.github.com>
* Skip 3 expensive calls for jobs saving in 'waiting' status on UnifiedJob ↵Elijah DeLee2024-05-131-5/+7
| | | | | | | | | (#15174) skip update parent logic for 'waiting' on UnifiedJob by not looking up "status_before" from previous instance we save 2 to 3 expensive calls (the self lookup of old state, the lookup of parent, and the update to parent if allow_simultaneous == False or status == 'waiting')
* Clean up settings file (#15135)jessicamack2024-05-101-6/+0
| | | remove unneeded settings
* Expose websockets on api prefix v2James2024-05-014-0/+13
|
* Do some aesthetic adjustments to role presentation fields (#15153)24.3.1Alan Rominger2024-04-2910-88/+85
| | | | | | | * Do some asthetic adjustments to role presentation fields * Correctly test managed setup * Minor migration adjustments
* Delete deprecated Cypress UI e2e_test.yml (#15155)Hao Liu2024-04-291-75/+0
| | | | | Delete e2e_test.yml Remove because it's no longer being maintained
* awx modules wait on event processing finished (#15152)Seth Foster2024-04-261-1/+4
| | | | | | | | | | | | | This change makes "wait: true" for jobs and syncs look at the event_processing_finished instead of finished field. Right now there is a race condition where a module might try to delete an inventory, but the events for an inventory sync have not yet finished. We have a RelatedJobsPreventDeleteMixin that checks for this condition. bulk jobs don't have event_processing_finished so we just use finished field in that case.
* Pin openssl 3.0.7 (#15147)Seth Foster2024-04-261-0/+3
| | | | | | | followup to PR #15142 This commit pins openssl in the awx image, not just the builder image.
* Upgrade DRF (#15144)Alan Rominger2024-04-253-3/+8
| | | | | * Upgrade DRF * Fix failures caused by DRF upgrade
* Temporarily downgrade openssl (#15142)Seth Foster2024-04-251-0/+1
| | | | | | | | | | | | | | | | | openssl 3.2.0 has incompatiblity issues with the libpq version we are using, and causes some C runtime errors: "double free or corruption (out)" see awx issue #15136 also this issue github.com/conan-io/conan-center-index/pull/22615 once the libpq libraries on centos stream9 are updated with the patch, we can unpin openssl Signed-off-by: Seth Foster <fosterbseth@gmail.com>
* Stop pre-caching every resource in the system upon importJeff Bradberry2024-04-242-11/+34
| | | | | | | If we don't have something in the cache when we call get_by_natural_key, do an actual filtered query for it and cache the results. We'll get more overall API calls this way, but they'll be smaller and will happen while we are importing, not upfront.
* Add help message for expiration tokens (#15076) (#15077)irozet122024-04-241-0/+3
| | | Co-authored-by: Ирина Розет <irozet@astralinux.ru>
* Adding CSRF Validation for schemas (#15027)Bruno Sanchez2024-04-242-1/+25
| | | | | | | | | | | * Adding CSRF Validation for schemas * Changing retrieve of scheme to avoid importing new library * check if CSRF_TRUSTED_ORIGINS exists before accessing it --------- Signed-off-by: Bruno Sanchez <brsanche@redhat.com>
* Add ability to set SameSite policy for userLoggedIn cookie (#15100)Michael Tipton2024-04-243-2/+9
| | | | | * Add ability to set SameSite policy for userLoggedIn cookie * reformat line for linter
* Fix and test data migration error from DAB RBAC (#15138)Alan Rominger2024-04-242-1/+29
| | | | | | | | | * Fix and test data migration error from DAB RBAC * Fix up migration test * Fix custom method bug * Fix another fat fingered bug
* Adjust test for stricter DAB user view permission enforcement (#15130)Alan Rominger2024-04-231-2/+17
|
* Backports previously approved corrections. (#15121)24.3.0TVo2024-04-225-8/+13
| | | | | * Backports previously approved corrections. * Deleted a blank line in inventories line 100
* Fix instance peering pagination (#15108)Seth Foster2024-04-181-49/+25
| | | | | | | | | | | | | | | | | | | | | Currently the association box displays a list of available instances/addresses that can be peered to. The pagination issue arises as follows: - fetch 5 instances (based on page_size) - filter these instances down based on some criteria (like is_internal: false) - show results Filtering down the results inside of the fetch method results in pagnation errors (may return fewer than 5, for example) instead, do the filtering by API queries. That way the pagination count will be correct. Signed-off-by: Seth Foster <fosterbseth@gmail.com>
* Use $(shell ...) to filter the redis docker volumesJeff Bradberry2024-04-171-1/+1
| | | | | Makefiles use $() for variable templating, so trying to use it directly as a shell subcommand doesn't work.
* Omit using -X when not needed, and don't default to demonstrating -k Jan-Piet Mens2024-04-171-9/+8
| | | It's the year 2024: using -k as default in https URL schemes should be deprecated. (I have left one mention of it possibly being required if no CA available). Furtheremore, neither -XGET or -XPOST are required, as curl(1) well knows when to use which method.
* chore: remove repetitive words (#15101)STEVEN ADAMS2024-04-175-5/+5
| | | Signed-off-by: hugehope <cmm7@sina.cn>
* Fix wsrelay connection leak (#15113)Hao Liu2024-04-162-49/+72
| | | | | | - when re-establishing connection to db close old connection - re-initialize WebSocketRelayManager when restarting asyncio.run - log and ignore error in cleanup_offline_host (this might come back to bite us) - cleanup connection when WebSocketRelayManager crash
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-12 07:16:32 +0100