Commit graph

139 commits

Author SHA1 Message Date
magic_rb 80cf15d04a
More matrix to kubernetes work
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-18 00:24:57 +01:00
magic_rb 6a60fae8ac
ingress-tootpick: switch to dinit
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-10 19:09:41 +01:00
magic_rb 8e70fec4ab
terranix/k3s/matrix: use port names instead of port numbers
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-03 21:39:13 +01:00
magic_rb c5480f8efa
Expose PostgreSQL in Matrix service
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-03 21:35:02 +01:00
magic_rb 9400591cdc
Add initial kubernetes manifests for Matrix
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-03 21:33:04 +01:00
magic_rb 92d9eabad2
Set istio revision to prod, avoids updates breaking the service mesh
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-11-02 15:43:17 +01:00
magic_rb cc5e31be17
hcl2.enabled got removed
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-10-31 15:34:06 +01:00
magic_rb 17f1210a9a
jellyfin: update
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-10-06 21:10:59 +02:00
magic_rb e02bfd5d16
Redirect gitea.redalder.org to git.redalder.org
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 21:42:20 +02:00
magic_rb 0061de839c
Properly route through Forgejo's SSH port
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 20:44:44 +02:00
magic_rb 86108e7a8e
Allow access to Forgejo's SSH port
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 19:51:43 +02:00
magic_rb 35222b4676
Fix OpenBao integration with k3s
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:56:30 +02:00
magic_rb d89034edb9
Fix Gitea not reading secrets properly
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:55:59 +02:00
magic_rb 7047adf03e
Enable Kubernetes auth method in Vault
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-11 12:25:22 +02:00
magic_rb a05beda2c4
Pass SSH into Gitea through Istio
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-11 12:24:57 +02:00
magic_rb eed771ad4d
uk3s updates
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-16 21:49:22 +02:00
magic_rb 10da34a3ca
Update terranix config for uk3s-nix and terranix changes
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-16 20:41:59 +02:00
magic_rb f4efd7ce59
Delete generated kubernetes manifests
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-16 20:40:00 +02:00
magic_rb a7454842d1
Correct istio version
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-15 19:32:08 +02:00
magic_rb c91981acce
Clean up routes in ingress-toothpick and move website to the k3s cluster
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-13 22:33:49 +02:00
magic_rb 820e79d1b1
Use plain images for metallb
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-13 22:26:08 +02:00
magic_rb 301b655a6e
Update generated terranix helm charts
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-13 21:56:18 +02:00
magic_rb 87400566be
Move Gitea over to the kubernetes "cluster"
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-12 22:04:52 +02:00
magic_rb 5695d98dbf
Allow all methods through k3s proxy
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-06-10 22:37:35 +02:00
magic_rb 762f781ac5
A lot of kubernetes improvements
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-06-08 22:46:20 +02:00
magic_rb 98f69b92f8
Fix nix copy locking in terranix
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-06-02 23:59:38 +02:00
magic_rb 500e353cf0
Add k8s gateway-api CRDs
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-27 22:13:48 +02:00
magic_rb bc824c6849
kubernetes: fully working redalder.org website
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-27 22:12:12 +02:00
magic_rb dab6cb7594
Buildbot fully working with Gitea
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-27 22:10:15 +02:00
magic_rb abd1b13d76
Add nix copy exclusive lock in buildNixNGSystem in terranix
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-27 19:07:26 +02:00
magic_rb f2d9ffa664
Fix NixNG systems not getting recopied to target hosts with Terraform
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-23 13:03:11 +02:00
magic_rb ee654f2d06
Add buildbot
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-21 19:38:47 +02:00
magic_rb 372b4dadbe
More k8s enablement.
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-14 00:19:00 +02:00
magic_rb 0ccf0cb0c6
Redo terranix helm imports
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-13 19:38:44 +02:00
magic_rb 41a4b0e160
Correctly create k8s namespaces
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-07 14:02:29 +02:00
magic_rb 69b84c09af
Bump uk3s.nix
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-07 14:02:17 +02:00
magic_rb 03b54bd52b
Use helm2nix2terraform to create nix files from helm charts
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-07 13:24:08 +02:00
magic_rb 4a29b6d8d3
Move terranix config into terranix/main
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-07 10:45:07 +02:00
magic_rb b4be203edf
Improve nixng host copying and drop sha and ref completely
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-06 16:40:33 +02:00
magic_rb d44b4d1d16
Defer container eval to Terraform plan time
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-04-06 16:15:47 +02:00
magic_rb 70916fc587
Utilize actual host volume for Hydra
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-30 20:36:36 +01:00
magic_rb 20d257c9ce
Switch Hydra to direct bind mount store
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-30 20:27:27 +01:00
magic_rb 67df3e94fb
Remove signald from mautrix-signal container
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-23 08:38:22 +01:00
magic_rb a8a8437a6b
Increase client upload limit for Gitea
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-11 12:17:06 +01:00
magic_rb 9fed40a9b2
Add kubernetes uterranix infrastructure
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-09 16:46:20 +01:00
magic_rb 3cb90c7252
Change how the terranix lib functions, terraformModule is now importable
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-09 16:34:52 +01:00
magic_rb aff0158ef7
Reformat the whole flake using alejandra
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-03-02 22:17:03 +01:00
magic_rb d6f0f10c6e
Open minecraft to wan
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-02-11 16:26:41 +01:00
magic_rb 311afc3087
Add enigmatica6 to terraform
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-02-11 16:07:05 +01:00
magic_rb 3636117da1
Set region correctly for ingress-letsencrypt volume
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-02-11 13:20:42 +01:00