Commit graph

83 commits

Author SHA1 Message Date
Max
8be3c9084c hosts/thunderskin: init 2023-03-20 20:03:20 +01:00
Max
1c27955577 cluster: use new hosts style 2023-03-11 19:48:30 +01:00
Max
be919cb2b3 treewide: pipe /modules through flake-parts 2023-03-11 19:48:30 +01:00
Max
9b71bd9a59 cluster/services/consul: add recursors 2023-03-06 21:52:29 +01:00
Max
ff09634883 cluster/services/dns: resolve via consul 2023-03-06 21:52:17 +01:00
Max
cfe4513627 cluster/services/dns: enable alias records 2023-03-06 21:10:22 +01:00
Max
a62db21de2 cluster/services/dns: enable Lua records 2023-03-06 18:28:55 +01:00
Max
789566e224 cluster/services/patroni: improve health checks 2023-03-06 18:05:04 +01:00
Max
5b0560752a cluster/services/consul: provide internal remote API access 2023-03-06 17:58:29 +01:00
Max
b56e484bd6 cluster/services/certificates: init, add internal wildcard cert 2023-03-06 16:52:52 +01:00
Max
2348b8f0f3 cluster/services/patroni: add a service health check for postgres itself 2023-03-06 16:45:49 +01:00
Max
4d6c88ce97 modules/consul-service-registry: allow binding multiple services to one systemd unit 2023-03-06 16:42:14 +01:00
Max
027d681ede cluster/services/dns: run authoritative nameserver on checkmate 2023-03-06 16:21:40 +01:00
Max
2b6b6964b7 cluster/services/dns: handle consul addr requests correctly 2023-03-06 00:49:44 +01:00
Max
63b9957926 cluster/services/websites: register with consul 2023-03-06 00:48:49 +01:00
Max
baf8fe481e cluster/services/patroni: register with consul 2023-03-06 00:28:15 +01:00
Max
363c54b0f6 cluster/services/irc: register with consul 2023-03-06 00:12:00 +01:00
Max
3be1bc9336 cluster/services/dns: register with consul 2023-03-05 23:50:50 +01:00
Max
8be69d13ad cluster/services/dns: forward consul domain 2023-03-05 22:16:06 +01:00
Max
b362ef59cf cluster/services/consul: use proper subdomain 2023-03-05 22:14:05 +01:00
Max
347cb9dfe7 cluster/services/consul: rename datacenter 2023-03-05 22:00:43 +01:00
Max
2a5094c284 cluster/services/dns: put coredns in front of powerdns 2023-03-05 22:00:18 +01:00
Max
59795e6fb1 cluster/services/dns: generify coredns config 2023-03-05 21:21:10 +01:00
Max
39134f74c3 cluster/services/patroni: switch to consul, remove etcd 2023-03-05 20:51:20 +01:00
Max
9a1fa4e418 cluster/services/consul: init 2023-03-05 20:39:15 +01:00
Max
b854cfdde4 cluster/services/acme-client: add checkmate to hosts 2023-03-01 22:45:23 +01:00
Max
ea12ce8b31 cluster/services/nginx: add checkmate to hosts 2023-03-01 22:40:16 +01:00
Max
5830db1c19 cluster/services/websites: add checkmate to hosts 2023-03-01 22:37:51 +01:00
Max
d3e71fc2cf cluster/services/monitoring: add checkmate to monitoring clients 2023-03-01 22:37:16 +01:00
Max
006ef68577 cluster/services/patroni: give etcd some more time to start 2023-03-01 21:52:06 +01:00
Max
cbd4f79a45 cluster/services/patroni: add checkmate to etcd nodes 2023-03-01 21:52:06 +01:00
Max
f6311ec7c4 cluster/services/wireguard: add checkmate to host mesh 2023-03-01 21:52:06 +01:00
Max
30e92d89c8 cluster/services/dns: give powerdns-admin some more time to start 2023-01-30 23:07:10 +01:00
Max
6d6664ce0b cluster/services/hercules-ci-multi-agent: cleanup 2023-01-08 22:34:52 +01:00
Max
90abb5792e cluster/services/hercules-ci-multi-agent: use our patched hercules-ci-agent 2023-01-08 22:34:52 +01:00
Max
930c533782 packages/powerdns-admin: patch to support new authlib, use server_metadata_url instead of manual configuration 2023-01-01 14:36:02 +01:00
Max
eb7bf281d7 cluster/services/hercules-ci-multi-agent: fix secrets 2022-11-23 17:32:31 +01:00
Max
677f49563b cluster/services/hercules-ci-multi-agent: add some more agents
- nixpak: prophet
- max: VEGAS, prophet
2022-11-23 17:12:30 +01:00
Max
1423a45b3a cluster/services/hercules-ci-multi-agent: init
obsoletes modules/hercules-ci-agent

Hercules CI orgs:
- private-void
- nixpak
2022-11-23 16:24:04 +01:00
Max
3c8bbf3bde cluster/services/ipfs: filter private addresses 2022-11-17 15:55:28 +01:00
Max
bafd0a0c83 cluster/services/ipfs: better routing 2022-11-15 23:39:46 +01:00
Max
70970765ac cluster/services/ipfs: fix Peering.Peers format 2022-11-14 00:49:38 +01:00
Max
f0aeeb78a1 cluster/services/ipfs: peer with other nodes 2022-11-14 00:01:09 +01:00
Max
5443c97e03 cluster/services/ipfs: enable QUIC 2022-11-13 23:44:12 +01:00
Max
c48af5a7a6 cluster/services/ipfs: use PL bootstrap nodes 2022-11-13 00:58:49 +01:00
Max
524a2560be cluster/services/ipfs: stop using pnet 2022-11-13 00:35:00 +01:00
Max
784be19d88 Revert "cluster/services/nginx: switch to OpenSSL 1.1 to mitigate a to-be-disclosed vulnerability"
This reverts commit 41448f0c23.
Fixed upstream: https://github.com/NixOS/nixpkgs/pull/199001
2022-11-02 20:50:05 +01:00
Max
41448f0c23 cluster/services/nginx: switch to OpenSSL 1.1 to mitigate a to-be-disclosed vulnerability 2022-10-31 18:42:09 +01:00
Max
d560d76028 cluster/services/nginx: init from host-specific modules 2022-10-31 18:14:39 +01:00
Max
64cdf850b9 cluster/services/ipfs: use custom IPFS service module 2022-10-22 16:28:02 +02:00