| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Split scripts into CI and VPS box | EuAndreh | 2019-05-28 | 1 | -1/+1 |
| | | |||||
| * | Add cd to /home/vps/ in profile | EuAndreh | 2019-05-27 | 1 | -0/+1 |
| | | | | | | Just a nice to have when SSH'ing interactively, doesn't have and effect on non-interactive SSH commands. | ||||
| * | Use ssh pipe and cat instead of hacky temporary file descriptor | EuAndreh | 2019-05-27 | 1 | -3/+1 |
| | | | | | Taken from http://compgroups.net/comp.unix.shell/-scp-dev-fd-63-not-a-regular-file/3063561 | ||||
| * | Add bash_aliases.sh and scp it when deploying a new box | EuAndreh | 2019-05-27 | 1 | -0/+1 |
| | | |||||
| * | Use more robust Bash cd approach | EuAndreh | 2019-05-26 | 1 | -1/+1 |
| | | |||||
| * | Prepare builds.sr.ht CI environment before running build tasks | EuAndreh | 2019-05-26 | 1 | -3/+0 |
| | | | | | Make content of .envrc available to subsequent build jobs. | ||||
| * | Disable shellcheck 2139 offense | EuAndreh | 2019-05-26 | 1 | -0/+1 |
| | | |||||
| * | Remove extra newline at "Done.\n" messages | EuAndreh | 2019-05-26 | 1 | -3/+3 |
| | | |||||
| * | Automate provisioning and deployment of VPS | EuAndreh | 2019-05-26 | 1 | -7/+27 |
| | | | | | | | | | | | | | | | | | | | | | | | | | In order to perform that I had to remove Terraform's =.tfstate= files from the repository. Terraform does support "backends" for storing the state files, but I settled for storing it on a separate repo (vps-state). For now it solves the state management problem: - it has history of states; - all state files are GPG encrypted; - there's no coordination however, but only the CI should perform a deploy in order to avoid race conditions. I had to add GPG and SSH keys to sr.ht to achieve that: - SSH public key to my profile to authorize it to push to vps-state repo; - SSH private key to the secret builds.sr.ht environment to enable push to the repository from the pipeline; - GPG public key to git-crypt to make it possible for the pipeline to unlock the encrypted content; - GPG private key to the secret builds.sr.ht environment to enable decrypting git-crypt content from the pipeline. In order to avoid divergent environment from local and CI, the ./provision.sh script is ran through nix-shell. | ||||
| * | Pull Docker images before running docker-compose up | EuAndreh | 2019-05-25 | 1 | -0/+1 |
| | | |||||
| * | Fix docker-compose.yaml rename references | EuAndreh | 2019-05-25 | 1 | -3/+3 |
| | | |||||
| * | Restart docker-compose after deployment | EuAndreh | 2019-05-25 | 1 | -0/+5 |
| | | |||||
| * | Remove provisioning from Terraform | EuAndreh | 2019-05-25 | 1 | -0/+17 |
 |
index : toph | |
| Setup and configuration for VPS and other personal server | External SSH Git service user |
| aboutsummaryrefslogtreecommitdiff |