Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: set up x64-linux-dev-01 as a (tfgrid flists) development server, including a persistent s3 storage for flist hosting #131

Merged
merged 4 commits into from
Jul 2, 2024

Commits on Jun 26, 2024

  1. feat: add holo-users-interactive with "dev" user

    this user is meant ofr interactive sessions on servers with a non-root
    account for development purposes.
    
    adds an age key for secrets that are required for services during
    development.
    
    update home-manager module as well.
    steveej committed Jun 26, 2024
    Configuration menu
    Copy the full SHA
    c5b5e6c View commit details
    Browse the repository at this point in the history
  2. feat: minio S3 on x64-linux-dev-01 for flist storage, adapt scripts &…

    … pulumi
    
    * publicly reachable minio S3 with TLS reverse-proxy
    * secrets for pushing objects as "dev"
    * zos- scripts push to minio by default
    * adapt pulumi to pull the default flist from here
    steveej committed Jun 26, 2024
    Configuration menu
    Copy the full SHA
    61d2fc2 View commit details
    Browse the repository at this point in the history
  3. Configuration menu
    Copy the full SHA
    b5e8c12 View commit details
    Browse the repository at this point in the history
  4. feat: add dev-garage module for future reference

    intermediately i used garage as an S3 storage.
    it didn't fit the workflow well because garage doesn't currently support
    anonymous access to S3 objects.
    `rfs pack` stores the s3 credentials that it uses for pushing to the
    store into the resulting flist (by default with a stripped password).
    
    options for making this work are
    * adding anonymous download support to garage
    * creating a read-only credential and either modify rfs to store
      alternative credentials or post-process the flist (sqlite3 db).
    steveej committed Jun 26, 2024
    Configuration menu
    Copy the full SHA
    ebd5cf2 View commit details
    Browse the repository at this point in the history