|
204d3f77eb
|
cluster/services/patroni: implement incandescence provider for databases and users
|
2024-08-14 16:12:10 +02:00 |
|
|
3b1e82b33f
|
cluster/services/locksmith: only run secret generation command once
|
2024-08-14 16:12:10 +02:00 |
|
|
c92f1c5ed8
|
cluster/services/locksmith: support skipping secret updates
|
2024-08-14 16:12:10 +02:00 |
|
|
d015c77ffa
|
cluster/services/incandescence: test in simulacrum
|
2024-08-14 16:00:35 +02:00 |
|
|
d1c0e9d7f9
|
cluster/services/incandescence: add base layout for ascensions
|
2024-08-14 14:54:35 +02:00 |
|
|
4f6ea4eb8c
|
cluster/services/incandescence: init
|
2024-08-14 14:54:35 +02:00 |
|
|
f097de64c7
|
cluster/services/consul: test in simulacrum
|
2024-08-13 22:15:20 +02:00 |
|
|
a10f8c18ee
|
cluster/services/wireguard: test in simulacrum
|
2024-08-13 20:43:39 +02:00 |
|
|
e2ebdd097e
|
cluster/simulacrum: recursive service deps
|
2024-08-13 20:43:39 +02:00 |
|
|
f37fed0ebb
|
cluster/simulacrum: implement nowhere, fix networking
|
2024-08-13 20:43:39 +02:00 |
|
|
4b76b6ed47
|
cluster/simulacrum: expose checks
|
2024-08-13 18:52:59 +02:00 |
|
|
62fbeb02c0
|
cluster/lib: implement config.lib.forService for better option filtering
|
2024-08-13 18:52:59 +02:00 |
|
|
f140de7a1a
|
cluster/simulacrum: set testConfig
|
2024-08-13 18:52:59 +02:00 |
|
|
fa0d6f046b
|
cluster/lib: introduce testConfig
|
2024-08-13 18:52:59 +02:00 |
|
|
40fd5c4be9
|
cluster/services/wireguard: make simulacrum compatible
|
2024-08-13 18:52:59 +02:00 |
|
|
da9b933bb8
|
cluster/simulacrum: init
|
2024-08-13 18:52:59 +02:00 |
|
|
b28898c3ae
|
cluster/lib: implement simulacrum options
|
2024-08-13 18:52:59 +02:00 |
|
|
532a569c66
|
cluster/lib: implement injectNixosConfigForServices to select individual services
|
2024-08-13 18:52:59 +02:00 |
|
|
df14a9a513
|
cluster/services/nginx: move acme config
|
2024-08-12 02:53:15 +02:00 |
|
|
d59abfb678
|
cluster/services/acme-client: move acme config, wait for authoritative DNS to work
|
2024-08-12 02:53:15 +02:00 |
|
|
a285c57d5b
|
cluster/services/ways: don't render empty upstream blocks
|
2024-08-12 02:53:15 +02:00 |
|
|
7ca4cead09
|
cluster/services/monitoring: make loki HA
|
2024-08-03 00:56:13 +02:00 |
|
|
201f07efc3
|
cluster/services/monitoring: use lockmith for loki
|
2024-08-03 00:37:06 +02:00 |
|
|
9f158f15a4
|
cluster/services/monitoring: run loki over ways
|
2024-08-03 00:12:15 +02:00 |
|
|
549cbdb6c8
|
cluster/services/ways: expose url
|
2024-08-03 00:11:46 +02:00 |
|
|
e81aad5619
|
cluster/services/ways: support internal services properly
|
2024-08-02 23:56:16 +02:00 |
|
|
5d26d45916
|
cluster/services/attic: make HA
|
2024-08-02 22:46:45 +02:00 |
|
|
1fe6324c37
|
cluster/services/patroni: run haproxy on grail
|
2024-08-02 22:46:27 +02:00 |
|
|
341be59cec
|
cluster/services/nginx: use proper resolvers
|
2024-08-02 22:46:05 +02:00 |
|
|
064f306f10
|
cluster/services/irc: pkgs.kanidm -> config.services.kanidm.package
|
2024-08-02 12:51:05 +02:00 |
|
|
5b429dd356
|
cluster/services/idm: pkgs.kanidm -> config.services.kanidm.package
|
2024-08-02 12:50:42 +02:00 |
|
|
29696add2f
|
cluster/services/hercules-ci-multi-agent: limit cores for Nix
|
2024-08-01 22:13:10 +02:00 |
|
|
c0038700e0
|
cluster/services/hercules-ci-multi-agent: limit concurrentTasks
|
2024-08-01 22:12:59 +02:00 |
|
|
36a5dd6927
|
cluster/services/c-f32aebf5: drop
|
2024-07-25 12:51:55 +02:00 |
|
|
af61824dc9
|
cluster/services/sso: integrate VEGAS/oauth2-proxy
|
2024-07-23 20:15:46 +02:00 |
|
|
9b59388c3c
|
cluster/services/wireguard: move storm from VEGAS/wireguard-server
|
2024-07-22 00:25:18 +02:00 |
|
|
3289e05101
|
cluster/services/mail: move from VEGAS/mail
|
2024-07-22 00:25:18 +02:00 |
|
|
6ccc263100
|
cluster/services/sso: move from VEGAS/sso
|
2024-07-22 00:25:18 +02:00 |
|
|
e85c6bb2c8
|
cluster/services/bitwarden: move from VEGAS/bitwarden
|
2024-07-22 00:24:46 +02:00 |
|
|
78f97dfcad
|
cluster/services/gitlab: move from VEGAS/gitlab
|
2024-07-22 00:24:42 +02:00 |
|
|
63002031d6
|
cluster/services/soda: move from VEGAS
|
2024-07-20 22:23:31 +02:00 |
|
|
c7f89489da
|
cluster/services/reflex: move from VEGAS/reflex
|
2024-07-20 22:22:25 +02:00 |
|
|
9ed7d26952
|
cluster/services/fbi: move from VEGAS/fbi
|
2024-07-20 22:22:14 +02:00 |
|
|
0e8abeb78b
|
cluster/services/consul: only require consul if enabled
|
2024-07-17 23:38:00 +02:00 |
|
|
03bfb51682
|
cluster/services/consul: use separate node group for consul-ready
|
2024-07-17 23:22:02 +02:00 |
|
|
c922615666
|
cluster/services/storage: better support for internal storage
|
2024-07-17 23:00:33 +02:00 |
|
|
33264bf43b
|
cluster/lib: switch to lazyAttrsOf
|
2024-07-17 23:00:25 +02:00 |
|
|
fa57c810c0
|
cluster: use consul-ready when waiting for consul
|
2024-07-17 22:41:06 +02:00 |
|
|
d2ab37f3b1
|
cluster/services/consul: implement consul-ready
|
2024-07-17 22:40:58 +02:00 |
|
|
5616f4887a
|
cluster/services/*: use consulAgent link
|
2024-07-17 22:06:41 +02:00 |
|
|
52008b6f0a
|
cluster/services/consul: set agent HTTP API port
|
2024-07-17 22:06:36 +02:00 |
|
|
0888ecce1a
|
cluster/services/forge: use separate domain for ssh access
|
2024-07-17 00:48:01 +02:00 |
|
|
d77b511442
|
cluster/services/forge: disable direct serve from s3
|
2024-07-17 00:41:32 +02:00 |
|
|
d720ba41a6
|
cluster/services/consul: set bootstrap_expect
|
2024-07-16 22:56:25 +02:00 |
|
|
f39a48c425
|
treewide: depot.reflection -> config.reflection
|
2024-07-16 14:29:48 +02:00 |
|
|
5dd4589459
|
cluster/services/attic: set attic package
|
2024-07-16 02:14:59 +02:00 |
|
|
7067120b9a
|
cluster/services/idm: set kanidm package
|
2024-07-16 02:02:53 +02:00 |
|
|
3e2b98ef6a
|
cluster/services/forge: add blackbox monitoring
|
2024-07-11 00:29:36 +02:00 |
|
|
04e6a96a06
|
cluster/services/storage: update garage blackbox url
|
2024-07-11 00:27:40 +02:00 |
|
|
cf93588840
|
cluster/services/locksmith: fix default values
|
2024-07-11 00:08:02 +02:00 |
|
|
e73a340ff0
|
cluster/services/attic: switch to locksmith secrets
|
2024-07-10 23:54:07 +02:00 |
|
|
a8041ec87f
|
cluster/services/locksmith: fix path handling in waiting for secrets
|
2024-07-10 23:50:31 +02:00 |
|
|
72e19de53a
|
cluster/services/forge: switch to locksmith secrets
|
2024-07-10 23:20:54 +02:00 |
|
|
55741bc8f6
|
cluster/services/locksmith: allow waiting for keys
|
2024-07-10 23:20:54 +02:00 |
|
|
d7f816ee39
|
cluster/services/storage: provision garage keys with locksmith
|
2024-07-10 23:20:54 +02:00 |
|
|
1d59d4e4f6
|
cluster/services/locksmith: implement provider options
|
2024-07-10 23:20:54 +02:00 |
|
|
e791be03a4
|
cluster/services/chant: wait for services to finish
|
2024-07-10 17:36:46 +02:00 |
|
|
e3ed1611c8
|
cluster/services/locksmith: init
|
2024-07-10 17:22:58 +02:00 |
|
|
607fb9a28c
|
cluster/services/chant: init
|
2024-07-10 15:51:05 +02:00 |
|
|
a66af5d0e4
|
cluster/services/forge: update deprecated settings
|
2024-07-09 20:40:55 +02:00 |
|
|
b3644b8630
|
cluster/services/monitoring: provision dashboards correctly
|
2024-07-08 22:00:00 +02:00 |
|
|
e642871738
|
cluster/services/monitoring: add new dashboards
|
2024-07-08 21:56:28 +02:00 |
|
|
49e720f56a
|
cluster/services/monitoring: update dashboards
|
2024-07-08 21:55:25 +02:00 |
|
|
b87b3d000d
|
cluster/services/patroni: use cluster secrets
|
2024-07-08 20:22:38 +02:00 |
|
|
f8f6e27e6f
|
cluster/services/matrix: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
f17786fccb
|
cluster/services/ipfs: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
30c80b6942
|
cluster/services/attic: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
579eed6b51
|
cluster/services/irc: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
7b95308f0d
|
cluster/services/idm: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
deaa423c86
|
cluster/services/hercules-ci-multi-agent: refactor, use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
96c34332ca
|
cluster/services/wireguard: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
804e7b0363
|
cluster/services/cachix-deploy-agent: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
0c4e603e86
|
cluster/services/forge: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
04031ef198
|
cluster/services/search: use cluster secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
482a594aa1
|
cluster/lib: set restartTriggers for changing secrets
|
2024-07-08 19:48:28 +02:00 |
|
|
22ae42673f
|
cluster/catalog: add actions for secrets
|
2024-07-08 16:32:08 +02:00 |
|
|
dcc1e1ce83
|
cluster/catalog: refactor
|
2024-07-08 16:32:08 +02:00 |
|
|
5727bdb37e
|
cluster/lib: inject secrets into agenix modules
|
2024-07-08 16:32:08 +02:00 |
|
|
8adc26c5c3
|
cluster/lib: add secrets options
|
2024-07-08 16:00:59 +02:00 |
|
|
0a390ad0d7
|
cluster/services/object-storage: drop
|
2024-07-07 23:42:29 +02:00 |
|
|
8a53e376bd
|
cluster/services/content-delivery: expose bucket at cdn subdomain
|
2024-07-07 23:41:37 +02:00 |
|
|
4cacd03afb
|
cluster/services/ways: support buckets
|
2024-07-07 23:38:56 +02:00 |
|
|
b8ff5d7d03
|
cluster/catalog: init
|
2024-07-06 00:02:08 +02:00 |
|
|
278803e474
|
cluster/services/matrix: lib.cartesianProductOfSets -> lib.cartesianProduct
|
2024-07-04 22:17:35 +02:00 |
|
|
faff22a9a1
|
cluster/services/ipfs: fix add_header placement
|
2024-07-04 22:15:30 +02:00 |
|
|
4f3abd5a8e
|
cluster/services/content-delivery: enable bucket website access for content-delivery
|
2024-07-04 22:08:02 +02:00 |
|
|
4be09304ae
|
cluster/services/hercules-ci-multi-agent: enable bucket website access for nix-store
|
2024-07-04 22:07:09 +02:00 |
|
|
60b18c9ccb
|
cluster/services/storage: support bucket website mode
|
2024-07-04 22:06:25 +02:00 |
|
|
c81aec9b9a
|
cluster/services/storage: switch garage to ways
|
2024-07-04 20:51:50 +02:00 |
|
|
b8067c6a33
|
cluster/services/ways: serialize acme cert updates
|
2024-07-04 20:51:50 +02:00 |
|