commit a031dc7ec3f2d8c4fc9891b01020a6f8fcf37260
Author: Nicolas Chauvet <kwizart(a)gmail.com>
Date: Thu Apr 4 15:55:03 2019 +0200
Update sigul for payload
roles/sigul/bridge/templates/bridge.conf.j2 | 3 +++
roles/sigul/server/tasks/main.yml | 8 +++++++-
roles/sigul/server/templates/server.conf.j2 | 6 +++---
3 files changed, 13 insertions(+), 4 deletions(-)
---
diff --git a/roles/sigul/bridge/templates/bridge.conf.j2
b/roles/sigul/bridge/templates/bridge.conf.j2
index 3c13e2e..fc0226b 100644
--- a/roles/sigul/bridge/templates/bridge.conf.j2
+++ b/roles/sigul/bridge/templates/bridge.conf.j2
@@ -4,6 +4,8 @@
# Nickname of the bridge's certificate in the NSS database specified below
bridge-cert-nickname: sign-bridge1 - RPM Fusion Project
+# Maximum accepted total size of all RPM payloads stored on disk for one request
+max-rpms-payload-size: 70737418240
# Port on which the bridge expects client connections
client-listen-port: 44334
# Port on which the bridge expects server connections
@@ -19,6 +21,7 @@ fas-password: {{ fedoraDummyUserPassword }}
[koji]
koji-instances: primary
koji-config-primary: /etc/koji-primary.conf
+koji-config: /etc/koji-primary.conf
[daemon]
# The user to run as
diff --git a/roles/sigul/server/tasks/main.yml b/roles/sigul/server/tasks/main.yml
index df7d722..9d5269b 100644
--- a/roles/sigul/server/tasks/main.yml
+++ b/roles/sigul/server/tasks/main.yml
@@ -21,12 +21,13 @@
- rpm-sign
- bzip2
- p11-kit
- - engine_pkcs11
+ - openssl-pkcs11
- gnutls-utils
- ykpers
- yubico-piv-tool
- pcsc-lite
- opensc
+ - tar
tags:
- packages
@@ -71,3 +72,8 @@
- rpmfusion-upload-ca.cert
tags:
- config
+
+- name: mask tmpfs tmp
+ systemd: masked=yes name=tmp.mount
+ tags:
+ - config
diff --git a/roles/sigul/server/templates/server.conf.j2
b/roles/sigul/server/templates/server.conf.j2
index d712a87..800e430 100644
--- a/roles/sigul/server/templates/server.conf.j2
+++ b/roles/sigul/server/templates/server.conf.j2
@@ -9,14 +9,14 @@ server-cert-nickname: sign-vault1 - RPM Fusion Project
# Port on which the bridge expects server connections
bridge-port: 44333
# Maximum accepted size of payload stored on disk
-max-file-payload-size: 2073741824
+max-file-payload-size: 5147483648
# Maximum accepted size of payload stored in server's memory
max-memory-payload-size: 1048576
# Whether to relax the CN vs username check
-lenient-username-check: yes
+#lenient-username-check: yes
# Which CN's are allowed to use different usernames, comma seperated
-proxy-usernames:
+#proxy-usernames:
[database]
Show replies by date