Commit graph

518 commits

Author SHA1 Message Date
Max
c5a8cfe852 cluster/services/patroni: take over existing databases and users 2024-08-15 01:07:18 +02:00
Max
340383f160 cluster/services/incandescence: destroy without waiting for change 2024-08-14 19:38:49 +02:00
Max
76f08600af cluster/services/incandescence: don't try to filter destruction if no objects declared 2024-08-14 19:20:22 +02:00
Max
ff0744f600 cluster/services/patroni: enable synchronous mode 2024-08-14 17:35:49 +02:00
Max
a61f97cccf cluster/services/patroni: wait for consul 2024-08-14 17:35:49 +02:00
Max
ca4564f25d cluster/services/patroni: test in simulacrum 2024-08-14 17:35:49 +02:00
Max
c57976a299 cluster/services/patroni: add simulacrum deps 2024-08-14 16:12:12 +02:00
Max
e87a1b23e9 cluster/services/locksmith: add simulacrum deps 2024-08-14 16:12:12 +02:00
Max
fe89d1d3c3 cluster/services/chant: add simulacrum deps 2024-08-14 16:12:10 +02:00
Max
204d3f77eb cluster/services/patroni: implement incandescence provider for databases and users 2024-08-14 16:12:10 +02:00
Max
3b1e82b33f cluster/services/locksmith: only run secret generation command once 2024-08-14 16:12:10 +02:00
Max
c92f1c5ed8 cluster/services/locksmith: support skipping secret updates 2024-08-14 16:12:10 +02:00
Max
d015c77ffa cluster/services/incandescence: test in simulacrum 2024-08-14 16:00:35 +02:00
Max
d1c0e9d7f9 cluster/services/incandescence: add base layout for ascensions 2024-08-14 14:54:35 +02:00
Max
4f6ea4eb8c cluster/services/incandescence: init 2024-08-14 14:54:35 +02:00
Max
f097de64c7 cluster/services/consul: test in simulacrum 2024-08-13 22:15:20 +02:00
Max
a10f8c18ee cluster/services/wireguard: test in simulacrum 2024-08-13 20:43:39 +02:00
Max
e2ebdd097e cluster/simulacrum: recursive service deps 2024-08-13 20:43:39 +02:00
Max
f37fed0ebb cluster/simulacrum: implement nowhere, fix networking 2024-08-13 20:43:39 +02:00
Max
4b76b6ed47 cluster/simulacrum: expose checks 2024-08-13 18:52:59 +02:00
Max
62fbeb02c0 cluster/lib: implement config.lib.forService for better option filtering 2024-08-13 18:52:59 +02:00
Max
f140de7a1a cluster/simulacrum: set testConfig 2024-08-13 18:52:59 +02:00
Max
fa0d6f046b cluster/lib: introduce testConfig 2024-08-13 18:52:59 +02:00
Max
40fd5c4be9 cluster/services/wireguard: make simulacrum compatible 2024-08-13 18:52:59 +02:00
Max
da9b933bb8 cluster/simulacrum: init 2024-08-13 18:52:59 +02:00
Max
b28898c3ae cluster/lib: implement simulacrum options 2024-08-13 18:52:59 +02:00
Max
532a569c66 cluster/lib: implement injectNixosConfigForServices to select individual services 2024-08-13 18:52:59 +02:00
Max
df14a9a513 cluster/services/nginx: move acme config 2024-08-12 02:53:15 +02:00
Max
d59abfb678 cluster/services/acme-client: move acme config, wait for authoritative DNS to work 2024-08-12 02:53:15 +02:00
Max
a285c57d5b cluster/services/ways: don't render empty upstream blocks 2024-08-12 02:53:15 +02:00
Max
7ca4cead09 cluster/services/monitoring: make loki HA 2024-08-03 00:56:13 +02:00
Max
201f07efc3 cluster/services/monitoring: use lockmith for loki 2024-08-03 00:37:06 +02:00
Max
9f158f15a4 cluster/services/monitoring: run loki over ways 2024-08-03 00:12:15 +02:00
Max
549cbdb6c8 cluster/services/ways: expose url 2024-08-03 00:11:46 +02:00
Max
e81aad5619 cluster/services/ways: support internal services properly 2024-08-02 23:56:16 +02:00
Max
5d26d45916 cluster/services/attic: make HA 2024-08-02 22:46:45 +02:00
Max
1fe6324c37 cluster/services/patroni: run haproxy on grail 2024-08-02 22:46:27 +02:00
Max
341be59cec cluster/services/nginx: use proper resolvers 2024-08-02 22:46:05 +02:00
Max
064f306f10 cluster/services/irc: pkgs.kanidm -> config.services.kanidm.package 2024-08-02 12:51:05 +02:00
Max
5b429dd356 cluster/services/idm: pkgs.kanidm -> config.services.kanidm.package 2024-08-02 12:50:42 +02:00
Max
29696add2f cluster/services/hercules-ci-multi-agent: limit cores for Nix 2024-08-01 22:13:10 +02:00
Max
c0038700e0 cluster/services/hercules-ci-multi-agent: limit concurrentTasks 2024-08-01 22:12:59 +02:00
Max
36a5dd6927 cluster/services/c-f32aebf5: drop 2024-07-25 12:51:55 +02:00
Max
af61824dc9 cluster/services/sso: integrate VEGAS/oauth2-proxy 2024-07-23 20:15:46 +02:00
Max
9b59388c3c cluster/services/wireguard: move storm from VEGAS/wireguard-server 2024-07-22 00:25:18 +02:00
Max
3289e05101 cluster/services/mail: move from VEGAS/mail 2024-07-22 00:25:18 +02:00
Max
6ccc263100 cluster/services/sso: move from VEGAS/sso 2024-07-22 00:25:18 +02:00
Max
e85c6bb2c8 cluster/services/bitwarden: move from VEGAS/bitwarden 2024-07-22 00:24:46 +02:00
Max
78f97dfcad cluster/services/gitlab: move from VEGAS/gitlab 2024-07-22 00:24:42 +02:00
Max
63002031d6 cluster/services/soda: move from VEGAS 2024-07-20 22:23:31 +02:00
Max
c7f89489da cluster/services/reflex: move from VEGAS/reflex 2024-07-20 22:22:25 +02:00
Max
9ed7d26952 cluster/services/fbi: move from VEGAS/fbi 2024-07-20 22:22:14 +02:00
Max
0e8abeb78b cluster/services/consul: only require consul if enabled 2024-07-17 23:38:00 +02:00
Max
03bfb51682 cluster/services/consul: use separate node group for consul-ready 2024-07-17 23:22:02 +02:00
Max
c922615666 cluster/services/storage: better support for internal storage 2024-07-17 23:00:33 +02:00
Max
33264bf43b cluster/lib: switch to lazyAttrsOf 2024-07-17 23:00:25 +02:00
Max
fa57c810c0 cluster: use consul-ready when waiting for consul 2024-07-17 22:41:06 +02:00
Max
d2ab37f3b1 cluster/services/consul: implement consul-ready 2024-07-17 22:40:58 +02:00
Max
5616f4887a cluster/services/*: use consulAgent link 2024-07-17 22:06:41 +02:00
Max
52008b6f0a cluster/services/consul: set agent HTTP API port 2024-07-17 22:06:36 +02:00
Max
0888ecce1a cluster/services/forge: use separate domain for ssh access 2024-07-17 00:48:01 +02:00
Max
d77b511442 cluster/services/forge: disable direct serve from s3 2024-07-17 00:41:32 +02:00
Max
d720ba41a6 cluster/services/consul: set bootstrap_expect 2024-07-16 22:56:25 +02:00
Max
f39a48c425 treewide: depot.reflection -> config.reflection 2024-07-16 14:29:48 +02:00
Max
5dd4589459 cluster/services/attic: set attic package 2024-07-16 02:14:59 +02:00
Max
7067120b9a cluster/services/idm: set kanidm package 2024-07-16 02:02:53 +02:00
Max
3e2b98ef6a cluster/services/forge: add blackbox monitoring 2024-07-11 00:29:36 +02:00
Max
04e6a96a06 cluster/services/storage: update garage blackbox url 2024-07-11 00:27:40 +02:00
Max
cf93588840 cluster/services/locksmith: fix default values 2024-07-11 00:08:02 +02:00
Max
e73a340ff0 cluster/services/attic: switch to locksmith secrets 2024-07-10 23:54:07 +02:00
Max
a8041ec87f cluster/services/locksmith: fix path handling in waiting for secrets 2024-07-10 23:50:31 +02:00
Max
72e19de53a cluster/services/forge: switch to locksmith secrets 2024-07-10 23:20:54 +02:00
Max
55741bc8f6 cluster/services/locksmith: allow waiting for keys 2024-07-10 23:20:54 +02:00
Max
d7f816ee39 cluster/services/storage: provision garage keys with locksmith 2024-07-10 23:20:54 +02:00
Max
1d59d4e4f6 cluster/services/locksmith: implement provider options 2024-07-10 23:20:54 +02:00
Max
e791be03a4 cluster/services/chant: wait for services to finish 2024-07-10 17:36:46 +02:00
Max
e3ed1611c8 cluster/services/locksmith: init 2024-07-10 17:22:58 +02:00
Max
607fb9a28c cluster/services/chant: init 2024-07-10 15:51:05 +02:00
Max
a66af5d0e4 cluster/services/forge: update deprecated settings 2024-07-09 20:40:55 +02:00
Max
b3644b8630 cluster/services/monitoring: provision dashboards correctly 2024-07-08 22:00:00 +02:00
Max
e642871738 cluster/services/monitoring: add new dashboards 2024-07-08 21:56:28 +02:00
Max
49e720f56a cluster/services/monitoring: update dashboards 2024-07-08 21:55:25 +02:00
Max
b87b3d000d cluster/services/patroni: use cluster secrets 2024-07-08 20:22:38 +02:00
Max
f8f6e27e6f cluster/services/matrix: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
f17786fccb cluster/services/ipfs: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
30c80b6942 cluster/services/attic: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
579eed6b51 cluster/services/irc: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
7b95308f0d cluster/services/idm: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
deaa423c86 cluster/services/hercules-ci-multi-agent: refactor, use cluster secrets 2024-07-08 19:48:28 +02:00
Max
96c34332ca cluster/services/wireguard: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
804e7b0363 cluster/services/cachix-deploy-agent: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
0c4e603e86 cluster/services/forge: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
04031ef198 cluster/services/search: use cluster secrets 2024-07-08 19:48:28 +02:00
Max
482a594aa1 cluster/lib: set restartTriggers for changing secrets 2024-07-08 19:48:28 +02:00
Max
22ae42673f cluster/catalog: add actions for secrets 2024-07-08 16:32:08 +02:00
Max
dcc1e1ce83 cluster/catalog: refactor 2024-07-08 16:32:08 +02:00
Max
5727bdb37e cluster/lib: inject secrets into agenix modules 2024-07-08 16:32:08 +02:00
Max
8adc26c5c3 cluster/lib: add secrets options 2024-07-08 16:00:59 +02:00
Max
0a390ad0d7 cluster/services/object-storage: drop 2024-07-07 23:42:29 +02:00
Max
8a53e376bd cluster/services/content-delivery: expose bucket at cdn subdomain 2024-07-07 23:41:37 +02:00