History

Florian Klink 318eddbb3a fix(ops/glesys): add more magic skip_flags, use endpoints.s3 There's been some breaking changes recently. Change-Id: Idbd22f0d21421a76493a5c0e32c791ee7f9812bc Reviewed-on: https://cl.tvl.fyi/c/depot/+/11021 Autosubmit: flokli <flokli@flokli.de> Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>		2024-02-24 09:47:52 +00:00
..
.gitignore	feat(ops/glesys): Add gitignore for Terraform files	2021-12-24 18:54:44 +00:00
default.nix	refactor(ops/glesys): Use tools.checks.validateTerraform	2022-06-07 09:32:13 +00:00
dns-nixery-dev.tf	chore(ops/glesys): point nixery.dev to nixery-01.tvl.fyi	2023-09-22 17:52:23 +00:00
dns-tvix-dev.tf	feat(ops/glesys): add bolt.tvix.dev	2024-02-23 18:44:18 +00:00
dns-tvl-fyi.tf	feat(ops/glesys): add DNS record for nixery-01 host	2023-09-22 17:52:23 +00:00
dns-tvl-su.tf	feat(ops/glesys): add bolt.tvix.dev	2024-02-23 18:44:18 +00:00
main.tf	fix(ops/glesys): add more magic skip_flags, use endpoints.s3	2024-02-24 09:47:52 +00:00
README.md	feat(ops/secrets): Import secrets for tf-glesys	2021-12-27 15:53:57 +00:00

README.md

Terraform for GleSYS

This contains the Terraform configuration for deploying TVL's infrastructure at GleSYS. This includes object storage (e.g. for backups and Terraform state) and DNS.

Secrets are needed for applying this. The encrypted file //ops/secrets/tf-glesys.age contains export calls which should be sourced, for example via direnv, by users with the appropriate credentials.

An example direnv configuration used by tazjin is this:

# //ops/secrets/.envrc
source_up
eval $(age --decrypt -i ~/.ssh/id_ed25519 $(git rev-parse --show-toplevel)/ops/secrets/tf-glesys.age)
watch_file $(git rev-parse --show-toplevel)/secrets/tf-glesys.age