|
2a75c2ae02
|
cluster/services/attic: use DynamicUser
|
2023-12-01 23:21:36 +01:00 |
|
|
03e802bcab
|
cluster/services/ipfs: give ipfs-cluster more time to start
|
2023-12-01 23:12:42 +01:00 |
|
|
993cb7f967
|
cluster/services/hercules-ci-multi-agent: disable AWS IMDS lookups
so this was the reason hci has been so fucking slow substituting things
fuck you, jeff
|
2023-12-01 18:28:34 +01:00 |
|
|
4b34be5916
|
packages/cachix: init with patch
|
2023-12-01 17:45:27 +01:00 |
|
|
24722bf586
|
cluster/services/hercules-ci-multi-agent: move agent processes to builder.slice
|
2023-12-01 01:05:55 +01:00 |
|
|
ff4e3af21e
|
cluster/services/patroni: move one worker from prophet to grail
|
2023-12-01 00:25:13 +01:00 |
|
|
9227c66448
|
cluster/services/storage: increase garage upload size limit
|
2023-11-11 20:01:02 +01:00 |
|
|
4c25e003b7
|
cluster/services/storage: monitor garage with blackbox
|
2023-11-09 21:42:13 +01:00 |
|
|
0ce00ad1dc
|
cluster/services/monitoring: move tempo to s3
|
2023-11-08 23:10:10 +01:00 |
|
|
bbfdd6440c
|
cluster/services/monitoring: enable env var resolution in loki config
|
2023-11-08 19:55:19 +01:00 |
|
|
ee8750f748
|
cluster/services/monitoring: prepare loki for s3
|
2023-11-07 22:22:24 +01:00 |
|
|
f88749fd95
|
cluster/services/monitoring: create buckets for loki and tempo
|
2023-11-06 20:53:20 +01:00 |
|
|
2d1d8c5370
|
cluster/services/storage: disable-expect100
|
2023-11-05 01:11:17 +01:00 |
|
|
a087445358
|
cluster/services/monitoring: move one blackbox agent from VEGAS to grail
|
2023-11-05 00:12:19 +01:00 |
|
|
d6fe67c14e
|
cluster/services/storage: use external s3 endpoint for remote storage
|
2023-11-04 23:36:19 +01:00 |
|
|
b332dc4a4e
|
cluster/services/storage: scrape metrics from garage
|
2023-11-04 20:12:11 +01:00 |
|
|
eefc380890
|
cluster/services/dns: trace coredns
|
2023-11-04 03:59:27 +01:00 |
|
|
83b9ed9c09
|
cluster/services/monitoring: fix tempo, add zipkin endpoint
|
2023-11-04 03:59:17 +01:00 |
|
|
3c7cb33820
|
cluster/services/monitoring: make tempo-grpc listen on localhost
|
2023-11-04 03:22:20 +01:00 |
|
|
da9c1cca67
|
cluster/services/storage: rotate storage auth for prophet
|
2023-11-04 02:09:22 +01:00 |
|
|
eb69940c8f
|
cluster/services/attic: rotate s3 credentials
|
2023-11-04 02:08:07 +01:00 |
|
|
2aed1f4df2
|
cluster/services/storage: add grail to garage cluster
|
2023-11-04 02:07:29 +01:00 |
|
|
84644cfbf6
|
cluster/services/monitoring: enable monitoring on grail
|
2023-11-04 01:24:34 +01:00 |
|
|
df1b0e1850
|
cluster/services/certificates: allow grail to use the internal wildcard cert
|
2023-11-04 01:18:50 +01:00 |
|
|
491666c17a
|
cluster/services/consul: add grail
|
2023-11-04 01:17:59 +01:00 |
|
|
20991ec5d8
|
cluster/services/acme-dns-client: add grail
|
2023-11-04 01:17:59 +01:00 |
|
|
55c0b848a6
|
cluster/services/nginx: add grail
|
2023-11-04 01:17:59 +01:00 |
|
|
6cb9c5a9f3
|
cluster/services/dns: add grail to clients
|
2023-11-04 01:17:59 +01:00 |
|
|
5200dab0eb
|
cluster/services/cachix-deploy-agent: add grail
|
2023-11-04 01:17:59 +01:00 |
|
|
2c01ab818a
|
cluster/services/idm: add grail to clients
|
2023-11-04 00:47:04 +01:00 |
|
|
125732e03a
|
cluster/services/wireguard: add grail to mesh
|
2023-11-04 00:47:04 +01:00 |
|
|
0752d1e1d8
|
cluster/services/storage: don't explicitly set port in s3 endpoint url
|
2023-11-03 22:09:45 +01:00 |
|
|
971d53e9ea
|
cluster/services/attic: use external garage endpoint
|
2023-11-03 21:46:40 +01:00 |
|
|
fdf3980e3f
|
cluster/services/storage: use cluster link
|
2023-11-03 21:45:36 +01:00 |
|
|
e1c4f0e9ec
|
cluster/services/storage: use the actual health endpoint
|
2023-11-03 21:33:46 +01:00 |
|
|
6a2299e049
|
cluster/services/storage: fix garage gateway proxy config
|
2023-11-03 21:17:54 +01:00 |
|
|
4f49aad9dd
|
cluster/services/storage: split garage config for tests
|
2023-11-03 20:57:35 +01:00 |
|
|
8f8c2bc0ce
|
cluster/services/storage: garage health endpoint does not like HEAD
|
2023-11-03 20:47:34 +01:00 |
|
|
024dcc78b0
|
cluster/services/storage: expose garage
|
2023-11-03 20:40:34 +01:00 |
|
|
13d1dd572f
|
cluster/services/consul: add dns records
|
2023-11-03 01:58:32 +01:00 |
|
|
07544555c7
|
cluster/services/ipfs: simplify regex
|
2023-11-02 23:59:02 +01:00 |
|
|
b60a1cd5a2
|
cluster/services/dns: fix regex handling
|
2023-11-02 23:58:49 +01:00 |
|
|
2bdb62b255
|
cluster/services/ipfs: use regex rewrite type
|
2023-11-02 23:56:38 +01:00 |
|
|
b2c9676a49
|
cluster/services/websites: rewrite.target -> consulService
|
2023-11-02 23:55:33 +01:00 |
|
|
e3b6d66991
|
cluster/services/dns: fix typo
|
2023-11-02 23:55:10 +01:00 |
|
|
d65fb75f78
|
cluster/services/websites: add dns records
|
2023-11-02 23:50:27 +01:00 |
|
|
5284c0f6d5
|
cluster/services/irc: add dns records
|
2023-11-02 23:45:34 +01:00 |
|
|
58f60eef45
|
cluster/services/ipfs: add dns records
|
2023-11-02 23:43:58 +01:00 |
|
|
88754861db
|
cluster/services/dns: support alternative rewrite types in declarative dns
|
2023-11-02 23:42:59 +01:00 |
|
|
7ff75a72f5
|
cluster/services/dns: add dns records
|
2023-11-02 23:21:22 +01:00 |
|
|
b217be06d5
|
cluster/services/monitoring: add dns records
|
2023-11-02 23:15:09 +01:00 |
|
|
6102a4ccca
|
cluster/services/dns: implement basic declarative dns
|
2023-11-02 23:11:13 +01:00 |
|
|
b24e82be3f
|
cluster/services/storage: add grep to runGarage
|
2023-11-02 19:53:07 +01:00 |
|
|
db416ab9e2
|
cluster/services/storage: remove broken incantation
|
2023-11-02 19:50:10 +01:00 |
|
|
b2e30146d9
|
cluster/services/storage: remove checkmate from garage cluster
|
2023-11-02 19:13:34 +01:00 |
|
|
7c3ee49b82
|
cluster/services/storage: limit garage memory usage on low-memory nodes
|
2023-11-02 03:37:11 +01:00 |
|
|
10c5d853d7
|
cluster/services/storage: move prophet storage to S3
|
2023-11-02 03:22:28 +01:00 |
|
|
25f3b2da0a
|
cluster/services/storage: fix config for heresy
|
2023-11-02 03:21:57 +01:00 |
|
|
4d0d1d2254
|
cluster/services/attic: move to garage
|
2023-10-31 22:19:08 +01:00 |
|
|
9edfe4f2de
|
cluster/services/storage: allow configuring garage buckets and keys through cluster options
|
2023-10-31 18:41:40 +01:00 |
|
|
cec2fc0bc1
|
cluster/services/storage: serviceConfig.RequiresMountsFor -> unitConfig.RequiresMountsFor
|
2023-10-31 15:37:15 +01:00 |
|
|
f4779a8512
|
cluster/services/storage: declarative garage keys and buckets
|
2023-10-30 23:06:06 +01:00 |
|
|
7eb3eea599
|
cluster/services/storage: externalize garage layout implementation
|
2023-10-30 23:06:06 +01:00 |
|
|
1b3a990866
|
cluster/services/storage: add garage
|
2023-10-30 23:06:06 +01:00 |
|
|
c877404caf
|
cluster/services/idm: fix infra-admins policy tmpfiles rules
|
2023-10-30 01:57:03 +01:00 |
|
|
4f31e37014
|
cluster/services/idm: wait for nscd before starting idm-nss-ready
|
2023-10-30 01:40:43 +01:00 |
|
|
f6813d933d
|
cluster/services/hercules-ci-multi-agent: remove some hardening options that break effects
|
2023-10-29 15:22:56 +01:00 |
|
|
7916856d92
|
cluster/services/ipfs: update config, host routing API endpoint
|
2023-10-27 19:22:39 +02:00 |
|
|
451da5558a
|
cluster/services/hercules-ci-multi-agent: set home directory
|
2023-10-26 02:14:31 +02:00 |
|
|
55d19314a9
|
cluster/services/hercules-ci-multi-agent: use hercules-ci-agent package from flake
|
2023-10-26 02:14:20 +02:00 |
|
|
2335305284
|
cluster/services/hercules-ci-multi-agent: use kranzes' refactored modules
|
2023-10-26 01:35:31 +02:00 |
|
|
cf807b7b61
|
cluster/services/dns: expose hyprspace namespace on coredns
|
2023-10-24 23:41:34 +02:00 |
|
|
542d7e95f8
|
cluster/services/consul: host remote API on vstub
|
2023-10-24 23:41:06 +02:00 |
|
|
402f25ccc5
|
cluster/services/idm: fix stdout buffering for idm-nss-ready
|
2023-10-22 13:50:22 +02:00 |
|
Gerg-L
|
31260502a8
|
massive improvements
|
2023-09-19 10:19:27 -04:00 |
|
|
163f111a81
|
cluster/services/meet: remove blackbox check
|
2023-09-04 16:39:54 +02:00 |
|
|
ae48e4807a
|
treewide: massive refactor
|
2023-09-03 01:11:49 +02:00 |
|
|
6a4b07f036
|
cluster/services/warehouse: workaround for ffmpeg config bug
|
2023-08-29 00:23:47 +02:00 |
|
|
9245b0909e
|
cluster/services/warehouse: move from VEGAS
|
2023-08-28 23:30:00 +02:00 |
|
|
f423f868c5
|
cluster/services/monitoring: grafana: use distributed service
|
2023-08-27 16:26:17 +02:00 |
|
|
f71774102e
|
cluster/services/patroni: use our postgresql
|
2023-08-23 21:48:04 +02:00 |
|
|
a79b829da5
|
cluster/services/ipfs: use strictMounts
|
2023-08-23 17:04:01 +02:00 |
|
|
e40a40dc93
|
cluster/services/monitoring: use default dataDir for Grafana
|
2023-08-23 01:01:12 +02:00 |
|
|
53d283c918
|
cluster/services/patroni: set external waldir
|
2023-08-23 00:59:53 +02:00 |
|
|
2705e5835a
|
cluster/services/ipfs: set RequiresMountsFor
|
2023-08-23 00:58:36 +02:00 |
|
|
3ca29def33
|
cluster/services/storage: mount external storage on prophet
|
2023-08-23 00:57:35 +02:00 |
|
|
365e4c69c9
|
cluster/services/storage: mount heresy via external-storage
|
2023-08-23 00:56:27 +02:00 |
|
|
8ddc79bf5b
|
cluster/services/monitoring: make grafana-ha more resilient to weird failures
|
2023-08-21 19:19:23 +02:00 |
|
|
3742dd45fb
|
cluster/services/forge: init
|
2023-07-24 00:52:14 +02:00 |
|
|
d84dc11af7
|
cluster/services/hercules-ci-multi-agent: provide cachix deploy token
|
2023-07-23 14:00:41 +02:00 |
|
|
664b92203d
|
cluster/services/cachix-deploy-agent: init
|
2023-07-23 14:00:41 +02:00 |
|
|
44143ff07f
|
cluster/services/storage: init
|
2023-07-09 15:39:54 +02:00 |
|
|
d751a0f16f
|
cluster/services/attic: increase max upload size to 4GB
|
2023-06-16 17:27:40 +02:00 |
|
|
2aeb766afb
|
VEGAS/nix: move to cluster/services/attic and adapt for migration
|
2023-06-16 17:20:57 +02:00 |
|
|
116d257fc4
|
cluster/services/attic: make dataDir writable
|
2023-06-14 02:10:29 +02:00 |
|
|
bf88c4720b
|
cluster/services/attic: init
|
2023-06-13 23:28:14 +02:00 |
|
|
a49766e75a
|
cluster/services/idm: allow infra admins to read systemd journal
|
2023-06-12 23:44:46 +02:00 |
|
|
9ec0faeea2
|
cluster/services/idm: implement helpers for IDM NSS
|
2023-06-12 23:44:22 +02:00 |
|
|
38d40c2abe
|
cluster/services/nextcloud: nextcloud25 -> nextcloud26
|
2023-06-12 20:56:42 +02:00 |
|
|
bd771be6ee
|
cluster/services/monitoring: fix tempo querier frontend address
|
2023-06-12 20:56:42 +02:00 |
|
|
af6259a8e4
|
cluster/services/idm: enable LDAP
|
2023-06-12 20:56:42 +02:00 |
|
|
640eb9df23
|
cluster/services/irc: switch to kanidm for verification
|
2023-06-12 20:56:42 +02:00 |
|
|
a9801c3308
|
cluster/services/idm: add policy for soda
|
2023-06-12 20:56:42 +02:00 |
|
|
6dcdf7aeaa
|
cluster/services/idm: include soda
|
2023-06-12 20:56:42 +02:00 |
|
|
3f7667aa2a
|
cluster/services/idm: enable unixd
|
2023-06-12 20:56:42 +02:00 |
|
|
44d874c5c6
|
cluster/services/idm: init
|
2023-06-12 20:56:42 +02:00 |
|
|
a6d0b92a54
|
cluster/services/certificates: give kanidm access to internal cert
|
2023-06-09 19:01:44 +02:00 |
|
|
bd94d0d868
|
cluster/services/monitoring: auto-restart grafana
|
2023-06-09 18:14:33 +02:00 |
|
|
5f097c6b6b
|
cluster/services/dns: OIDC_OAUTH_SERVER_METADATA_URL -> OIDC_OAUTH_METADATA_URL
|
2023-06-06 17:11:54 +02:00 |
|
|
7c557e98f7
|
prophet/meet: use colibriRestApi
|
2023-06-06 17:11:54 +02:00 |
|
|
34097c81f1
|
cluster/services/soda: init with check
|
2023-06-05 23:22:24 +02:00 |
|
|
642399088c
|
cluster/services/monitoring: add blackbox sshConnect module
|
2023-06-05 23:17:56 +02:00 |
|
|
81e9274c77
|
cluster/services/ipfs: add blackbox check for gateway
|
2023-06-05 22:34:20 +02:00 |
|
|
d0ebfa278a
|
cluster/services/matrix: migrate from VEGAS/matrix, add blackbox check
|
2023-06-05 22:00:03 +02:00 |
|
|
9075ef05cd
|
cluster/services/meet: migrate from prophet/meet, add blackbox check
|
2023-06-05 21:02:53 +02:00 |
|
|
bc35407987
|
cluster/services/monitoring: fix grafana frontend check
|
2023-06-05 21:02:53 +02:00 |
|
|
4610811a48
|
cluster/services/consul: fix remote api frontend check
|
2023-06-05 21:02:53 +02:00 |
|
|
d5492689c4
|
cluster/services/ipfs: fix gateway frontend check
|
2023-06-05 21:02:53 +02:00 |
|
|
d6caf48aed
|
cluster/services/object-storage: migrate from VEGAS/object-storage, add blackbox check
|
2023-06-05 01:26:43 +02:00 |
|
|
c4e437578c
|
cluster/services/nextcloud: migrate from VEGAS/nextcloud, add blackbox check
|
2023-06-05 01:21:21 +02:00 |
|
|
ae62e395a5
|
cluster/services/monitoring: add blackbox nextcloudStatus module
|
2023-06-05 01:14:45 +02:00 |
|
|
b4b3899c5b
|
cluster/services/search: migrate from VEGAS/searxng, add blackbox check
|
2023-06-05 00:58:43 +02:00 |
|
|
72f8a047e9
|
cluster/services/irc: fix monitoring target
|
2023-06-05 00:17:46 +02:00 |
|
|
1389d46d5c
|
cluster/services/irc: monitor with blackbox
|
2023-06-05 00:02:37 +02:00 |
|
|
d274edbb2d
|
cluster/services/monitoring: add blackbox ircConnect module
|
2023-06-04 23:56:54 +02:00 |
|
|
ad0a3f8cc2
|
cluster/services/websites: refactor and register blackbox check
|
2023-06-04 23:29:13 +02:00 |
|
|
7f9742089b
|
cluster/services/monitoring: make blackbox targets configurable through cluster config
|
2023-06-04 23:06:53 +02:00 |
|
|
4202954095
|
cluster/services/monitoring: add blackbox tcpConnect module
|
2023-06-04 22:48:58 +02:00 |
|
|
8f1ec4c40a
|
cluster/services/monitoring: rekey secrets
|
2023-06-04 22:48:58 +02:00 |
|
|
5bd83ec5c1
|
cluster/services/monitoring: make grafana highly available
|
2023-06-04 22:48:58 +02:00 |
|
|
1aebeef6a2
|
cluster/services/monitoring: make tempo datasource externally accessible
|
2023-06-03 01:04:37 +02:00 |
|
|
a55fc7bb44
|
cluster/services/ipfs: configure public gateway address on node
|
2023-06-02 23:39:41 +02:00 |
|
|
3e0684ffb5
|
cluster/services/ipfs: make gateway consul service public
|
2023-06-02 23:26:44 +02:00 |
|
|
56d0d07d26
|
cluster/services/ipfs: add consul service for gateway
|
2023-06-02 22:53:54 +02:00 |
|
|
70f67f6e71
|
cluster/services/irc: no DNS indirection
|
2023-06-02 21:58:00 +02:00 |
|
|
d308f80ab5
|
cluster/services/websites: no DNS indirection
|
2023-06-02 21:05:14 +02:00 |
|
|
d264751a9f
|
cluster/services/ipfs: metrics via grafana-agent
|
2023-06-02 18:50:02 +02:00 |
|
|
a714c37cec
|
cluster/services/ipfs: split remote api, rework gateway
|
2023-06-02 18:34:15 +02:00 |
|
|
4fb9373f1f
|
cluster/services/ipfs: split io tweaks
|
2023-06-02 17:51:00 +02:00 |
|
|
f41265ed00
|
cluster/services/ipfs: switch to cluster otlp trace endpoint
|
2023-06-02 17:38:12 +02:00 |
|
|
d0ec0c4f82
|
cluster/services/monitoring: make tempo otlp receivers externally accessible
|
2023-06-02 17:35:53 +02:00 |
|
|
98b2537482
|
cluster/services/patroni: enable metrics
|
2023-06-01 23:18:22 +02:00 |
|
|
6fb3a543b8
|
cluster/services/consul: enable metrics
|
2023-06-01 22:36:57 +02:00 |
|
|
4dbfb3b6ab
|
cluster/services/monitoring: provision dashboards
|
2023-06-01 00:41:00 +02:00 |
|
|
a4888920df
|
cluster/services/monitoring: add some dashboards
|
2023-06-01 00:41:00 +02:00 |
|
|
6624e2b7c7
|
cluster/services/monitoring: refactor
|
2023-05-27 14:18:02 +02:00 |
|
|
9b5e44461e
|
cluster/services/monitoring: add blackbox_exporter
|
2023-05-27 13:44:31 +02:00 |
|
|
68ca309c93
|
cluster/services/monitoring: use grafana-agent integrated node_exporter
|
2023-05-26 17:36:23 +02:00 |
|
|
6cff7460f6
|
cluster/services/monitoring: configure remote write url
|
2023-05-26 17:03:33 +02:00 |
|
|
6ecd210130
|
cluster/services/monitoring: make Prometheus accessible in host mesh
|
2023-05-26 16:26:24 +02:00 |
|
|
c4d2a13912
|
cluster/services/monitoring: remove Jitsi monitoring
|
2023-05-26 16:15:20 +02:00 |
|
|
1945265362
|
cluster/services/monitoring: use grafana-agent for central logging
|
2023-05-26 15:02:28 +02:00 |
|
|
f24d794215
|
cluster/services/ipfs: OTel sampling: 0.01 -> 0.50
|
2023-05-13 23:29:53 +02:00 |
|
|
05bfdae17c
|
cluster/services/monitoring: switch grafana to postgres
|
2023-05-13 16:42:40 +02:00 |
|
|
09f40ffde5
|
VEGAS/monitoring: move to cluster
|
2023-05-13 16:42:40 +02:00 |
|
|
8d8ea8edaa
|
cluster/services/monitoring: enable systemd collector on node_exporter
|
2023-05-08 21:25:35 +02:00 |
|
|
c5541eadb1
|
cluster/services/ipfs: allow access to DNS servers
|
2023-04-12 23:25:55 +02:00 |
|
|
7d4b7470c8
|
treewide: re-encode secrets for prophet
|
2023-04-12 20:36:53 +02:00 |
|
|
21e9cf9c53
|
cluster/services/certificates: install certs on prophet
|
2023-04-12 19:37:32 +02:00 |
|
|
2adcd30e42
|
cluster/services/consul: enable agent on prophet
|
2023-04-12 19:36:26 +02:00 |
|
|
2146597a06
|
cluster/services/patroni: enable dcs failsafe mode
|
2023-03-31 18:19:18 +02:00 |
|
|
e8d350b9a3
|
cluster/services/hercules-ci-multi-agent: remove custom agent package
|
2023-03-31 16:03:03 +02:00 |
|
|
29c37f7a54
|
cluster/services/patroni: use integrated consul service registration
|
2023-03-24 17:52:48 +01:00 |
|
|
1b22ad2c01
|
cluster/services/hercules-ci-multi-agent: configure HCI effects secrets for private-void
|
2023-03-23 19:43:44 +01:00 |
|
|
9d4026b2e3
|
cluster/services/dns: add checkmate and thunderskin to clients
|
2023-03-22 23:27:35 +01:00 |
|
|
ae07af5a80
|
cluster/services/dns: client: use more DNS servers
|
2023-03-22 23:23:14 +01:00 |
|
|
7985d891a0
|
cluster/services/dns: improve resiliency
|
2023-03-22 23:00:29 +01:00 |
|
|
694bd7d712
|
cluster/services/wireguard: use hostLinks
|
2023-03-22 21:26:02 +01:00 |
|
|
72636cfffb
|
cluster/services/wireguard: remove extraPeers
|
2023-03-22 21:14:46 +01:00 |
|
|
23b4929f5d
|
cluster/services/patroni: run worker on thunderskin
|
2023-03-22 18:07:16 +01:00 |
|
|
4a6e329391
|
cluster/services/acme-client: configure on thunderskin
|
2023-03-22 00:05:07 +01:00 |
|
|
a0fa03ab05
|
cluster/services/wireguard: fix mesh config for thunderskin
|
2023-03-21 23:56:19 +01:00 |
|
|
eaa164d6ab
|
cluster/services/certificates: install internal wildcard cert on thunderskin
|
2023-03-21 23:55:22 +01:00 |
|
|
faf9fca341
|
cluster/services/consul: run server agent on thunderskin
|
2023-03-21 23:51:35 +01:00 |
|
|
769dcdac3f
|
cluster/services/monitoring: monitor thunderskin
|
2023-03-21 23:51:02 +01:00 |
|
|
3c6e5fae77
|
cluster/services/nginx: host on thunderskin
|
2023-03-21 23:49:49 +01:00 |
|
|
5872083e56
|
cluster/services/websites: host on thunderskin
|
2023-03-21 23:44:38 +01:00 |
|
|
8be3c9084c
|
hosts/thunderskin: init
|
2023-03-20 20:03:20 +01:00 |
|
|
1c27955577
|
cluster: use new hosts style
|
2023-03-11 19:48:30 +01:00 |
|
|
be919cb2b3
|
treewide: pipe /modules through flake-parts
|
2023-03-11 19:48:30 +01:00 |
|
|
9b71bd9a59
|
cluster/services/consul: add recursors
|
2023-03-06 21:52:29 +01:00 |
|
|
ff09634883
|
cluster/services/dns: resolve via consul
|
2023-03-06 21:52:17 +01:00 |
|
|
cfe4513627
|
cluster/services/dns: enable alias records
|
2023-03-06 21:10:22 +01:00 |
|
|
a62db21de2
|
cluster/services/dns: enable Lua records
|
2023-03-06 18:28:55 +01:00 |
|
|
789566e224
|
cluster/services/patroni: improve health checks
|
2023-03-06 18:05:04 +01:00 |
|
|
5b0560752a
|
cluster/services/consul: provide internal remote API access
|
2023-03-06 17:58:29 +01:00 |
|
|
b56e484bd6
|
cluster/services/certificates: init, add internal wildcard cert
|
2023-03-06 16:52:52 +01:00 |
|
|
2348b8f0f3
|
cluster/services/patroni: add a service health check for postgres itself
|
2023-03-06 16:45:49 +01:00 |
|
|
4d6c88ce97
|
modules/consul-service-registry: allow binding multiple services to one systemd unit
|
2023-03-06 16:42:14 +01:00 |
|
|
027d681ede
|
cluster/services/dns: run authoritative nameserver on checkmate
|
2023-03-06 16:21:40 +01:00 |
|
|
2b6b6964b7
|
cluster/services/dns: handle consul addr requests correctly
|
2023-03-06 00:49:44 +01:00 |
|
|
63b9957926
|
cluster/services/websites: register with consul
|
2023-03-06 00:48:49 +01:00 |
|
|
baf8fe481e
|
cluster/services/patroni: register with consul
|
2023-03-06 00:28:15 +01:00 |
|
|
363c54b0f6
|
cluster/services/irc: register with consul
|
2023-03-06 00:12:00 +01:00 |
|
|
3be1bc9336
|
cluster/services/dns: register with consul
|
2023-03-05 23:50:50 +01:00 |
|
|
8be69d13ad
|
cluster/services/dns: forward consul domain
|
2023-03-05 22:16:06 +01:00 |
|
|
b362ef59cf
|
cluster/services/consul: use proper subdomain
|
2023-03-05 22:14:05 +01:00 |
|
|
347cb9dfe7
|
cluster/services/consul: rename datacenter
|
2023-03-05 22:00:43 +01:00 |
|
|
2a5094c284
|
cluster/services/dns: put coredns in front of powerdns
|
2023-03-05 22:00:18 +01:00 |
|
|
59795e6fb1
|
cluster/services/dns: generify coredns config
|
2023-03-05 21:21:10 +01:00 |
|
|
39134f74c3
|
cluster/services/patroni: switch to consul, remove etcd
|
2023-03-05 20:51:20 +01:00 |
|
|
9a1fa4e418
|
cluster/services/consul: init
|
2023-03-05 20:39:15 +01:00 |
|
|
b854cfdde4
|
cluster/services/acme-client: add checkmate to hosts
|
2023-03-01 22:45:23 +01:00 |
|
|
ea12ce8b31
|
cluster/services/nginx: add checkmate to hosts
|
2023-03-01 22:40:16 +01:00 |
|
|
5830db1c19
|
cluster/services/websites: add checkmate to hosts
|
2023-03-01 22:37:51 +01:00 |
|
|
d3e71fc2cf
|
cluster/services/monitoring: add checkmate to monitoring clients
|
2023-03-01 22:37:16 +01:00 |
|
|
006ef68577
|
cluster/services/patroni: give etcd some more time to start
|
2023-03-01 21:52:06 +01:00 |
|
|
cbd4f79a45
|
cluster/services/patroni: add checkmate to etcd nodes
|
2023-03-01 21:52:06 +01:00 |
|
|
f6311ec7c4
|
cluster/services/wireguard: add checkmate to host mesh
|
2023-03-01 21:52:06 +01:00 |
|
|
30e92d89c8
|
cluster/services/dns: give powerdns-admin some more time to start
|
2023-01-30 23:07:10 +01:00 |
|
|
6d6664ce0b
|
cluster/services/hercules-ci-multi-agent: cleanup
|
2023-01-08 22:34:52 +01:00 |
|
|
90abb5792e
|
cluster/services/hercules-ci-multi-agent: use our patched hercules-ci-agent
|
2023-01-08 22:34:52 +01:00 |
|
|
930c533782
|
packages/powerdns-admin: patch to support new authlib, use server_metadata_url instead of manual configuration
|
2023-01-01 14:36:02 +01:00 |
|
|
eb7bf281d7
|
cluster/services/hercules-ci-multi-agent: fix secrets
|
2022-11-23 17:32:31 +01:00 |
|
|
677f49563b
|
cluster/services/hercules-ci-multi-agent: add some more agents
- nixpak: prophet
- max: VEGAS, prophet
|
2022-11-23 17:12:30 +01:00 |
|
|
1423a45b3a
|
cluster/services/hercules-ci-multi-agent: init
obsoletes modules/hercules-ci-agent
Hercules CI orgs:
- private-void
- nixpak
|
2022-11-23 16:24:04 +01:00 |
|
|
3c8bbf3bde
|
cluster/services/ipfs: filter private addresses
|
2022-11-17 15:55:28 +01:00 |
|
|
bafd0a0c83
|
cluster/services/ipfs: better routing
|
2022-11-15 23:39:46 +01:00 |
|
|
70970765ac
|
cluster/services/ipfs: fix Peering.Peers format
|
2022-11-14 00:49:38 +01:00 |
|
|
f0aeeb78a1
|
cluster/services/ipfs: peer with other nodes
|
2022-11-14 00:01:09 +01:00 |
|
|
5443c97e03
|
cluster/services/ipfs: enable QUIC
|
2022-11-13 23:44:12 +01:00 |
|
|
c48af5a7a6
|
cluster/services/ipfs: use PL bootstrap nodes
|
2022-11-13 00:58:49 +01:00 |
|
|
524a2560be
|
cluster/services/ipfs: stop using pnet
|
2022-11-13 00:35:00 +01:00 |
|
|
784be19d88
|
Revert "cluster/services/nginx: switch to OpenSSL 1.1 to mitigate a to-be-disclosed vulnerability"
This reverts commit 41448f0c23 .
Fixed upstream: https://github.com/NixOS/nixpkgs/pull/199001
|
2022-11-02 20:50:05 +01:00 |
|
|
41448f0c23
|
cluster/services/nginx: switch to OpenSSL 1.1 to mitigate a to-be-disclosed vulnerability
|
2022-10-31 18:42:09 +01:00 |
|
|
d560d76028
|
cluster/services/nginx: init from host-specific modules
|
2022-10-31 18:14:39 +01:00 |
|
|
64cdf850b9
|
cluster/services/ipfs: use custom IPFS service module
|
2022-10-22 16:28:02 +02:00 |
|
|
0af4177b2a
|
cluster/services/irc: specify ircOpers globally
|
2022-10-22 14:13:59 +02:00 |
|
|
1def40063d
|
cluster/services/irc: refactor with hostLinks
|
2022-10-22 14:12:37 +02:00 |
|
|
fc2944edf2
|
cluster/services/ipfs: expose pinning service API cluster endpoint
|
2022-10-22 02:29:56 +02:00 |
|
|
b56ba5f7eb
|
cluster/services/ipfs: add ipfs-cluster
|
2022-10-22 01:19:14 +02:00 |
|
|
41aad67a83
|
cluster/services/ipfs: init from modules/ipfs
|
2022-10-19 20:33:36 +02:00 |
|
|
a80381fac1
|
cluster/services/patroni: auto-restart etcd
|
2022-10-18 23:06:34 +02:00 |
|
|
142a640154
|
treewide: apply deadnix fixes
|
2022-10-17 14:54:48 +02:00 |
|
|
dbbf2330fd
|
treewide: apply statix fixes
|
2022-10-17 14:47:11 +02:00 |
|
|
4c1fca0a20
|
cluster/services/irc: coerce keyfile properly
|
2022-09-23 22:06:45 +02:00 |
|
|
456f7e230e
|
cluster/services/irc: add persistent #general
|
2022-09-18 23:39:37 +02:00 |
|
|
fc845158d8
|
cluster/services/irc: add oper configuration
|
2022-09-18 23:37:50 +02:00 |
|
|
1ffd88cfe3
|
cluster/services/irc: add PAM configuration
|
2022-09-18 23:05:03 +02:00 |
|
|
92c9f5d680
|
cluster/services/irc: init
|
2022-09-18 22:13:06 +02:00 |
|
|
8962c1072e
|
cleanup
|
2022-09-01 23:05:39 +02:00 |
|
|
59671eb356
|
cluster/services/websites: host Excalidraw
|
2022-08-28 23:15:14 +02:00 |
|
|
f881ff7ba6
|
cluster/services/patroni: make HAProxy provide postgresql.service via alias
|
2022-08-10 01:18:03 +02:00 |
|
|
175d3c8b13
|
cluster/services/websites: init
|
2022-08-09 20:10:25 +02:00 |
|
|
52459c42c1
|
cluster/services/acme-client: init
|
2022-08-07 21:06:17 +02:00 |
|
|
cfd82880e4
|
cluster/services/dns: load API key directly
|
2022-08-07 20:59:16 +02:00 |
|
|
0eed86421b
|
cluster/services/dns: add resolver client config
|
2022-08-07 20:01:48 +02:00 |
|
|
5356ba97c6
|
cluster/services/dns: init
|
2022-08-07 20:01:48 +02:00 |
|
|
6b998f4ec2
|
cluster/services/patroni: allow any user to connect
|
2022-08-07 19:57:35 +02:00 |
|
|
a14ba1235a
|
cluster/services/patroni: init
|
2022-08-04 23:57:54 +02:00 |
|