depot/cluster/services/storage/default.nix

{ config, depot, lib, ... }:

let
  meshIpForNode = name: config.vars.mesh.${name}.meshIp;
in

{
  imports = [
    ./options.nix
  ];

  services.storage = {
    nodes = {
      external = [ "prophet" ];
      heresy = [ "VEGAS" ];
      garage = [ "grail" "prophet" "VEGAS" ];
      garageConfig = [ "grail" "prophet" "VEGAS" ];
      garageInternal = [ "VEGAS" ];
      garageExternal = [ "grail" "prophet" ];
    };
    nixos = {
      external = [ ./external.nix ];
      heresy = [ ./heresy.nix ];
      garage = [
        ./garage.nix
        ./garage-options.nix
        ./garage-layout.nix
      ];
      garageConfig = [
        ./garage-gateway.nix
        ./garage-metrics.nix
        {
          services.garage = {
            inherit (config.garage) buckets keys;
          };
        }
      ];
      garageInternal = [ ./garage-internal.nix ];
      garageExternal = [ ./garage-external.nix ];
    };
  };

  links.garageS3 = {
    hostname = "garage.${depot.lib.meta.domain}";
    port = 443;
    protocol = "https";
    url = with config.links.garageS3; lib.mkForce "${protocol}://${hostname}";
  };

  hostLinks = lib.genAttrs config.services.storage.nodes.garage (name: {
    garageRpc = {
      ipv4 = meshIpForNode name;
    };
    garageS3 = {
      protocol = "http";
      ipv4 = meshIpForNode name;
    };
  });

  monitoring.blackbox.targets.garage = {
    address = "https://garage.${depot.lib.meta.domain}/health";
    module = "https2xx";
  };

  garage = {
    keys.storage-prophet = {};
    buckets.storage-prophet = {
      allow.storage-prophet = [ "read" "write" ];
    };
  };

  dns.records.garage.consulService = "garage";
}
cluster/services/storage: use cluster link 2023-11-03 22:45:36 +02:00			`{ config, depot, lib, ... }:`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00
			`let`
			`meshIpForNode = name: config.vars.mesh.${name}.meshIp;`
			`in`

cluster/services/storage: init 2023-07-05 21:53:04 +03:00			`{`
cluster/services/storage: allow configuring garage buckets and keys through cluster options 2023-10-31 19:41:40 +02:00			`imports = [`
			`./options.nix`
			`];`

cluster/services/storage: init 2023-07-05 21:53:04 +03:00			`services.storage = {`
cluster/services/storage: mount external storage on prophet 2023-08-23 01:57:35 +03:00			`nodes = {`
			`external = [ "prophet" ];`
			`heresy = [ "VEGAS" ];`
cluster/services/storage: add grail to garage cluster 2023-11-04 02:38:35 +02:00			`garage = [ "grail" "prophet" "VEGAS" ];`
			`garageConfig = [ "grail" "prophet" "VEGAS" ];`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00			`garageInternal = [ "VEGAS" ];`
cluster/services/storage: add grail to garage cluster 2023-11-04 02:38:35 +02:00			`garageExternal = [ "grail" "prophet" ];`
cluster/services/storage: mount external storage on prophet 2023-08-23 01:57:35 +03:00			`};`
			`nixos = {`
			`external = [ ./external.nix ];`
			`heresy = [ ./heresy.nix ];`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00			`garage = [`
			`./garage.nix`
cluster/services/storage: externalize garage layout implementation 2023-09-03 22:21:31 +03:00			`./garage-options.nix`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00			`./garage-layout.nix`
cluster/services/storage: split garage config for tests 2023-11-03 21:57:35 +02:00			`];`
			`garageConfig = [`
cluster/services/storage: expose garage 2023-11-03 21:40:34 +02:00			`./garage-gateway.nix`
cluster/services/storage: scrape metrics from garage 2023-11-04 20:46:30 +02:00			`./garage-metrics.nix`
cluster/services/storage: allow configuring garage buckets and keys through cluster options 2023-10-31 19:41:40 +02:00			`{`
			`services.garage = {`
			`inherit (config.garage) buckets keys;`
			`};`
			`}`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00			`];`
			`garageInternal = [ ./garage-internal.nix ];`
			`garageExternal = [ ./garage-external.nix ];`
cluster/services/storage: mount external storage on prophet 2023-08-23 01:57:35 +03:00			`};`
cluster/services/storage: init 2023-07-05 21:53:04 +03:00			`};`
cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00
cluster/services/storage: use cluster link 2023-11-03 22:45:36 +02:00			`links.garageS3 = {`
			`hostname = "garage.${depot.lib.meta.domain}";`
			`port = 443;`
			`protocol = "https";`
cluster/services/storage: don't explicitly set port in s3 endpoint url 2023-11-03 23:09:27 +02:00			`url = with config.links.garageS3; lib.mkForce "${protocol}://${hostname}";`
cluster/services/storage: use cluster link 2023-11-03 22:45:36 +02:00			`};`

cluster/services/storage: add garage 2023-08-28 03:32:08 +03:00			`hostLinks = lib.genAttrs config.services.storage.nodes.garage (name: {`
			`garageRpc = {`
			`ipv4 = meshIpForNode name;`
			`};`
			`garageS3 = {`
			`protocol = "http";`
			`ipv4 = meshIpForNode name;`
			`};`
			`});`
cluster/services/storage: move prophet storage to S3 2023-11-02 04:22:28 +02:00
cluster/services/storage: monitor garage with blackbox 2023-11-09 22:42:13 +02:00			`monitoring.blackbox.targets.garage = {`
			`address = "https://garage.${depot.lib.meta.domain}/health";`
			`module = "https2xx";`
			`};`

cluster/services/storage: move prophet storage to S3 2023-11-02 04:22:28 +02:00			`garage = {`
			`keys.storage-prophet = {};`
			`buckets.storage-prophet = {`
			`allow.storage-prophet = [ "read" "write" ];`
			`};`
			`};`
cluster/services/storage: expose garage 2023-11-03 21:40:34 +02:00
			`dns.records.garage.consulService = "garage";`
cluster/services/storage: init 2023-07-05 21:53:04 +03:00			`}`