aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* cd into ./vps/ before running CI commandsEuAndreh2019-06-051-3/+6
|
* Revert "Use =nix build= instead of =nix-build="EuAndreh2019-06-051-1/+1
| | | | | | | This reverts commit c835e5ed00690d5dc05f4073ad2f7d52e56fe502. The =nix build= command isn't CI friendly: it prints many empty lines instead of the build progress.
* Fix subtasks.dockerComposeLint derivationEuAndreh2019-06-051-0/+2
|
* Fix ShellCheck offensesEuAndreh2019-06-053-2/+6
|
* Clean leftovers from rotate-ssh-keys.shEuAndreh2019-06-051-18/+2
|
* Format vps.tf (linter offense)EuAndreh2019-06-051-1/+1
|
* Use Ansible instead of Bash for provisioningEuAndreh2019-06-0529-64/+301
| | | | | | | | | | | | | | | | | | The deployment is not quite working, and I'm unable to test right now: DigitalOcean is returning 503 for my requests. As of this commit, I can run =ansible-playbook provider.yml= more than once and it will actually be idempotent. Notes: - SSH fingerprint are now taken from the public key file instead of manually supplying it in the terraform template using the =digitalocean_ssh_key= resource; - use Ansible instead of ad-hoc Bash scripts for provisioning the Droplets created by Terraform; - use the =filename.env.extension= to create the concrete files in CI; - use the =user_data= to add the know SSH key pair to the newly created Droplet; - add =rotate-ssh-keys.sh= utils;
* Use =nix build= instead of =nix-build=EuAndreh2019-06-041-1/+1
|
* Fix "dotfiles" name left overEuAndreh2019-06-041-1/+1
|
* Build shell buildInputs in test derivationEuAndreh2019-06-041-7/+16
| | | | | This way we make sure the =shell= derivation always builds, instead of seeing these kinds of failure during CI runs when it's trying to deploy.
* Add utils.nix and remove common derivations from default.nixEuAndreh2019-06-042-79/+120
|
* TODOs.orgEuAndreh2019-06-041-0/+1
|
* Inline definition of rootSrcEuAndreh2019-06-041-2/+1
|
* TODOs.orgEuAndreh2019-06-041-0/+4
|
* TODOs.orgEuAndreh2019-06-021-0/+2
|
* TODOs.orgEuAndreh2019-06-011-0/+1
|
* TODOs.orgEuAndreh2019-05-301-5/+52
|
* Fix vps.tf formatting (linter offense)EuAndreh2019-05-281-1/+1
|
* Use Floating IP on DropletEuAndreh2019-05-283-1/+13
|
* Split $VPS_COMMIT_SHA variable declaration for exportingEuAndreh2019-05-281-1/+2
| | | | ShellCheck offense.
* Use correct Droplet size slugEuAndreh2019-05-281-1/+1
| | | | Taken from https://developers.digitalocean.com/documentation/v2/#list-all-sizes
* Rotate SSH key and use correct VPS_COMMIT_SHA on provisioningEuAndreh2019-05-282-5/+6
|
* Rotate SSH key secretEuAndreh2019-05-281-1/+1
|
* Disable StrictHostKeyChecking for CI SSH configurationEuAndreh2019-05-281-0/+2
|
* TODOs.orgEuAndreh2019-05-281-1/+5
| | | | Extend on how to use =vps-state= to store Terraform state.
* Configure git for vps-state repo in ./scripts/ci/setup.shEuAndreh2019-05-283-4/+6
|
* Use SSH to fetch vps-state so we can push to it laterEuAndreh2019-05-281-1/+1
|
* TODOs.orgEuAndreh2019-05-281-0/+11
| | | | Expand on the decision of using =vps-state= to store Terraform files.
* Add git config metadata to enable commiting in CIEuAndreh2019-05-281-0/+2
|
* Fix mixed usage of $PLAN_FILE variableEuAndreh2019-05-281-4/+5
| | | | Split $PLAN_FILE into $PLAN_FILE_NAME and $PLAN_FILE_PATH.
* Store plan file in vps-state tooEuAndreh2019-05-281-4/+18
|
* Fix shell.nix path in nix-shell custom shebangEuAndreh2019-05-282-2/+2
|
* Fix script references in .build.ymlEuAndreh2019-05-281-6/+3
|
* Split scripts into CI and VPS boxEuAndreh2019-05-285-2/+4
|
* Remove git rev-parse from .envrcEuAndreh2019-05-283-2/+2
|
* Rotate secretsEuAndreh2019-05-281-0/+0
|
* Remove set -x from ci-setup.shEuAndreh2019-05-281-1/+1
|
* Suppress output of docker-compose configEuAndreh2019-05-281-1/+1
| | | | | This derivation sources =.envrc= and it's output can potentially leak secret environment variables from it.
* Fix docker-compose config stepEuAndreh2019-05-281-1/+2
| | | | | | | Add gitMinimal package to baseTasks to allow any derivation to =source .envrc= freely. dockerComposeLint sources it to properly lint the file that will be ran.
* Fix Nextcloud image nameEuAndreh2019-05-281-1/+1
|
* Split Bash variable declaration from assignment (shellcheck offense)EuAndreh2019-05-281-0/+0
|
* Add =set -x= to ci-setup.shEuAndreh2019-05-281-1/+1
|
* Add backup routing before possibly tearing down machineEuAndreh2019-05-286-11/+21
| | | | | | | | | | Create a new backup entry before running =terraform apply=, which may (or may not) destroy the current machine. This shouldn't be an issue for the backup itself, since all of the data should be stored in a separate Block Storage Volume, but we can take advantage of the sevices already needing to be taken down in order to perform a full backup of the data.
* Add secrets/borg_remote{.pub} SSH keypairEuAndreh2019-05-282-0/+0
|
* Rename ./secrets/id_rsa{.pub} -> ./secrets/vps_box{.pub}EuAndreh2019-05-285-3/+3
|
* TODOs.orgEuAndreh2019-05-271-0/+2
|
* TODOs.orgEuAndreh2019-05-271-0/+1
| | | | Add =Nice to have= task on docker-compose version
* TODOs.orgEuAndreh2019-05-271-0/+9
| | | | Add notes on creating backups, and questions on the best strategies available.
* Add variables to properly tag a backupEuAndreh2019-05-271-0/+0
|
* Add --color to ls aliasEuAndreh2019-05-271-1/+1
|
generated by cgit v1.3 (git 2.53.0) at 2026-06-21 22:01:52 +0000