History

Vincent Ambo 816f76494c feat(ops/glesys): delegate signup.tvl.fyi to whitby in DNS Change-Id: I7ca1e970228239e87581fd4d65c50334932d85a5 Reviewed-on: https://cl.tvl.fyi/c/depot/+/9265 Autosubmit: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI Reviewed-by: flokli <flokli@flokli.de>		2023-09-05 14:44:35 +00:00
..
.gitignore	feat(ops/glesys): Add gitignore for Terraform files	2021-12-24 18:54:44 +00:00
default.nix	refactor(ops/glesys): Use tools.checks.validateTerraform	2022-06-07 09:32:13 +00:00
dns-nixery-dev.tf	feat(ops/glesys): Import DNS records for tvl.fyi	2021-12-27 16:42:53 +00:00
dns-tvix-dev.tf	feat(ops/glesys): add CNAME for docs.tvix.dev	2023-03-14 21:59:40 +00:00
dns-tvl-fyi.tf	feat(ops/glesys): add `net.tvl.fyi` CNAME for sanduny	2023-06-20 12:21:10 +00:00
dns-tvl-su.tf	feat(ops/glesys): set up DNS record for inbox.tvl.su	2022-12-25 10:27:29 +00:00
main.tf	feat(ops/glesys): delegate signup.tvl.fyi to whitby in DNS	2023-09-05 14:44:35 +00:00
README.md	feat(ops/secrets): Import secrets for tf-glesys	2021-12-27 15:53:57 +00:00

README.md

Terraform for GleSYS

This contains the Terraform configuration for deploying TVL's infrastructure at GleSYS. This includes object storage (e.g. for backups and Terraform state) and DNS.

Secrets are needed for applying this. The encrypted file //ops/secrets/tf-glesys.age contains export calls which should be sourced, for example via direnv, by users with the appropriate credentials.

An example direnv configuration used by tazjin is this:

# //ops/secrets/.envrc
source_up
eval $(age --decrypt -i ~/.ssh/id_ed25519 $(git rev-parse --show-toplevel)/ops/secrets/tf-glesys.age)
watch_file $(git rev-parse --show-toplevel)/secrets/tf-glesys.age