cst1/infrastructure
1
0
Fork 0
forked from DGNum/infrastructure
Code Pull requests Activity
896 commits 16 branches 0 tags 1.9 MiB
Commit graph

519 commits

Author SHA1 Message Date
Ryan Lahfa
344cc26d8e feat(meta/*): support generalized deployments 
Our colmena knows how to deal with families of system types, e.g. NixOS
systems or Liminix-based systems.

This is a step 1 towards supporting our APs in our infrastructure.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-12-07 15:26:13 +01:00
catvayor
a60b546277
feat(vault01/gretap): gretap for hackaton 2024-12-07 10:52:37 +01:00
sinavir
09b5963449
fix(ds-fr): Lock patch with hash 2024-12-06 10:58:57 +01:00
sinavir
d4dab1e7ae
fix(ds-fr): Update dgn patch 2024-12-06 10:31:29 +01:00
sinavir
41caf293b0
chore(ds-fr): Remove unused files 2024-12-06 09:50:23 +01:00
sinavir
aa154d1b1b
fix(web03/dj-apps): Use secret tokens 2024-11-25 16:06:08 +01:00
Tom Hubrecht
13abd5400b
fix(web03/dj-wikiens): Update dependencies 2024-11-23 11:33:56 +01:00
Tom Hubrecht
f6c933f374
fix(kanidm): Use last usable version: 1.3.3 2024-11-22 23:12:18 +01:00
Tom Hubrecht
fe52f0ebe2
feat(forgejo-runners): Use /data/slow/nix and not /data/slow/nix/nix 
The upstream module should be updated to reflect that, use rootPath
instead of storePath
 2024-11-22 14:04:35 +01:00
Tom Hubrecht
75b621e298
fix(ds-fr): Switch to nix-pkgs 2024-11-21 15:13:25 +01:00
sinavir
b00e47ec85
chore(netbox): Upgrade 2024-11-19 00:40:15 +01:00
Tom Hubrecht
a50637d55e
chore(stirling-pdf): New version 2024-11-19 00:13:49 +01:00
Tom Hubrecht
aa4f972085
fix(forgejo-runners): Let the shell handle colmena 2024-11-19 00:01:06 +01:00
Tom Hubrecht
ded867d274
feat(dj-interludes): Add a real secret 2024-11-18 13:02:54 +01:00
Tom Hubrecht
f61bd85d63
chore(forgejo): Disallow more domains 2024-11-17 19:01:26 +01:00
Tom Hubrecht
2ffd7732ba
feat(django-apps/interludes): Allow base webapps domain 2024-11-12 15:08:17 +01:00
Tom Hubrecht
d45b044b22
feat(django-apps/interludes): Switch to interludes.ens.fr 2024-11-12 14:55:04 +01:00
Tom Hubrecht
420fe99984
fix(django-apps/interludes): Don't run in debug mode 2024-11-12 10:52:49 +01:00
Tom Hubrecht
32f13adaad
feat(web03): Deploy interludes.webapps.dgnum.eu 2024-11-12 10:40:09 +01:00
Tom Hubrecht
89b22a34da
feat(forgejo): Add blocklist for registering e-mails 2024-11-10 16:24:51 +01:00
Tom Hubrecht
46657a7f74
fix(tvix-cache): Turn down the log vomit, and increase the limit of file handles 2024-11-09 19:11:10 +01:00
sinavir
9e5be2a279
fix(web01): www.lanuit.ens.fr redirection is not used anymore 2024-11-04 20:07:33 +01:00
Tom Hubrecht
0576d1ecf8
fix(web03): Use a different domain for webhooks endpoint 2024-10-31 10:58:07 +01:00
Tom Hubrecht
0e3463102c
feat(metis): Update and validate providers 2024-10-24 00:27:15 +02:00
Tom Hubrecht
a6aac2b0b4
feat(web03): Deploy www-bocal on bocal.webapps.dgnum.eu 2024-10-23 13:56:47 +02:00
Tom Hubrecht
2bb03126cf
feat(web03): Deploy django-wiki on wiki.webapps.dgnum.eu 2024-10-22 14:19:58 +02:00
Tom Hubrecht
4a102117a4
feat(storage01): Init victoria-metrics DB 2024-10-22 13:07:07 +02:00
Tom Hubrecht
969f59fbc4
feat(web03): Deploy the new annuaire 2024-10-21 20:03:20 +02:00
sinavir
e993d6de34 fix(stateless-uptime-kuma): Typo in domain name 2024-10-21 12:25:18 +02:00
sinavir
e0eb7bbf7c fix(stateless-uptime-kuma): Correct probes for ollama and s3-api 2024-10-21 12:16:00 +02:00
Tom Hubrecht
a93a64d747
feat(forgejo): Send email to admins when new users appear 2024-10-21 09:33:40 +02:00
Tom Hubrecht
51133e6e5f
feat(netbird): Update 2024-10-20 23:01:14 +02:00
Tom Hubrecht
f0b3d4b490
feat(kanidm): Use kanidm-provision to setup active members 2024-10-18 14:36:38 +02:00
sinavir
e7edf29e11 fix(ollama-proxy): Use ip instead of vpn domain name 
VPN dns is slow to start so nginx will fail
 2024-10-18 12:45:27 +02:00
sinavir
1a05ea3a9a feat(krz01): Move to lab-infra repo 2024-10-18 11:53:32 +02:00
soyouzpanda
113c83bb9c
feat: laptop change and smartphone add to authorized MACs 2024-10-18 11:12:14 +02:00
sinavir
3c445ab4c7 feat(networking): Add a bridge to connect VMs to the world 2024-10-17 17:56:09 +02:00
sinavir
492fe550d9 chore(krz01): Put all ollama/whisper stuff in separate modules 2024-10-17 15:47:10 +02:00
sinavir
a02da5f496 chore(proxmox-nixos): Update 2024-10-17 15:34:11 +02:00
Tom Hubrecht
db5859e472
feat(web03): Initial deployment of django-apps 2024-10-17 15:11:43 +02:00
Tom Hubrecht
b6cbf6e918
feat(infra): Deploy web03 2024-10-16 11:08:24 +02:00
Tom Hubrecht
06653220bb
fix(kanidm): Revert switch to simpleProxies 
As we proxy to an https endpoint, this was not supported
 2024-10-12 22:11:34 +02:00
Tom Hubrecht
2f06f22ac7 feat(nginx): Switch to simpleProxies for the majority of configs 2024-10-12 20:00:54 +02:00
Tom Hubrecht
af61ae6e61 feat(dgn-web): Add simpleProxies 
This proxies the required host to localhost:$port and enables SSL
 2024-10-12 20:00:54 +02:00
Julien Malka
f819acf9bc
feat(forgejo): 7 days sessions 2024-10-12 19:52:21 +02:00
Ryan Lahfa
f20353b727 fix(storage01): pass through the admin API of Garage 
not the web API!

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-10-10 17:52:22 +02:00
Ryan Lahfa
a4de5f4d31 feat(krz01): move ollama to compute01 via a reverse proxy 
krz01 has no public web IP.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-10-10 17:40:56 +02:00
Ryan Lahfa
363f8d3c67 fix(krz01): open 80/443 for ACME 
Oopsie!

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-10-10 17:20:28 +02:00
Ryan Lahfa
12b20e6acf feat(storage01): add monorepo-terraform-state.s3.dgnum.eu 
This is required to bootstrap the Terranix setup.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-10-10 17:13:11 +02:00
Ryan Lahfa
de6742aa0d feat(storage01): add s3-admin.dgnum.eu 
This is the administration endpoint of the S3, you can create new
buckets and more, from there.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
 2024-10-10 17:13:11 +02:00