aboutsummaryrefslogtreecommitdiff
path: root/rotate-ssh-keys.sh (unfollow)
Commit message (Expand)AuthorFilesLines
2019-06-10ci dbgEuAndreh1-1/+1
2019-06-10Fix missing stdout redirection '>' characterEuAndreh1-1/+1
2019-06-10Trust commited keyEuAndreh2-1/+4
2019-06-10Add filename to logs.txt output•••Taken from: https://stackoverflow.com/questions/5917413/concatenate-multiple-files-but-include-filename-as-section-headers EuAndreh1-1/+1
2019-06-10Put terraform output in email logs.txtEuAndreh1-3/+3
2019-06-10Commit public key instead of downloading itEuAndreh2-1/+64
2019-06-10Re enable $DESTROY_VOLUME toggleEuAndreh1-0/+0
2019-06-10Import GPG key before provisioningEuAndreh2-0/+1
2019-06-10Disable SC2016 warningsEuAndreh1-0/+2
2019-06-10Change order of stderr -> stdout redirection•••Thanks ShellCheck. EuAndreh1-2/+2
2019-06-10Encrypt attached logEuAndreh3-3/+6
2019-06-10Show in email subject if the run failedEuAndreh2-2/+16
2019-06-10Send logs via email after finishing provision.sh•••The email will be send for both sucessfull and failed runs. EuAndreh8-3/+54
2019-06-10Disable $DESTROY_VOLUME operational toggleEuAndreh1-0/+0
2019-06-10Remove --progress from borg create•••It shows filenames in CI output log. EuAndreh1-1/+0
2019-06-10Change SSH portEuAndreh1-0/+0
2019-06-10Use create_known_hosts_file function instead of duplicating behaviourEuAndreh1-3/+6
2019-06-10Fail CI run if backup failsEuAndreh2-4/+5
2019-06-10Don't run restore backup Ansible task when not required•••Instead of performing this task on the generated =restore-backup.sh= file, do it on provision.yaml. The boolean logic is less confusing and the interpolation is less tricky. EuAndreh2-8/+2
2019-06-10Create generated-known-hosts.txt twice•••Since it can change after being destroyed by Terraform, we can't create it before and use it later. EuAndreh1-0/+1
2019-06-10Allow shutdown process to failEuAndreh1-2/+2
2019-06-10Provision DNS entries using DigitalOcean instead of DNS registrar•••This way we can implement dynamic (provision-time) Floating IP, instead of a hardcoded pre-created Floating IP address. Related changes: - remove =terraform-godaddy= provider, use =digitalocean_record= instead; - create =generated-known-hosts= after provisioning instead of during =setup.sh=: use the =$(terraform output public_floating_ip)= value to make this file dynamic; - remote the =$PINNED_IP= and =$TF_VAR_floating_ip= variables; - add type and descriptions to variable declarations in Terraform recipe. EuAndreh6-64/+135
2019-06-09Change $TLDEuAndreh1-0/+0
2019-06-09Rotate DNS registrar keysEuAndreh1-0/+0
2019-06-09Revert "Create Terraform plan before shutting down running containers"•••This reverts commit c8963acd02a5095bafb46c79abd45eec45059707. EuAndreh1-6/+6
2019-06-09Don't use terraform-full derivationEuAndreh3-6/+3
2019-06-09Create Terraform plan before shutting down running containersEuAndreh1-8/+8
2019-06-09Quote $() call (ShellCheck offense)EuAndreh1-1/+1
2019-06-09Use same NIX_PATH locally and on the CIEuAndreh1-0/+0
2019-06-09Make terraform-provider-godaddy available for TerraformEuAndreh1-0/+3
2019-06-09Remove CI dbg codeEuAndreh1-2/+0
2019-06-09s/terraformGodaddy/terraformGodaddyBuild/EuAndreh1-1/+1
2019-06-09ci dbgEuAndreh1-0/+2
2019-06-09Expose build of terraform-godaddy under subtasks attribute setEuAndreh1-1/+1
2019-06-08ci dbg: Revert "Revert "Update modSha256 for terraform-godaddy""•••This reverts commit 4d04172f9027203e3656f74bd8cecdc0d9c45e69. EuAndreh1-1/+1
2019-06-08Revert "Update modSha256 for terraform-godaddy"•••This reverts commit 5ad5984f47860bdf3a85abeddef18d17c2095e69. EuAndreh1-1/+1
2019-06-08TODOs.orgEuAndreh1-0/+1
2019-06-08Add quote around nested quote expansion•••Thanks ShellCheck :) EuAndreh1-1/+1
2019-06-08Remove unused $PUBLIC_KEY_ONLY•••Thanks ShellCheck. EuAndreh1-1/+0
2019-06-08Format vps.tf (terraform linter offense)EuAndreh1-3/+3
2019-06-08Format default.nix (nixfmt linter offense)EuAndreh1-2/+3
2019-06-08Update modSha256 for terraform-godaddyEuAndreh1-1/+1
2019-06-08TODOs.orgEuAndreh1-0/+4
2019-06-08Use terraform-godaddy and Terraform 0.11•••The =terraform-godaddy= package supports only Terraform 0.11 as of now. It is not packaged by default by nixpkgs, and the =postInstall= hook is required because Terraform looks for providers usinthe the =terraform-provider-$name= template, which the package doesn't follow. I had to remove the loop on vps.tf since it requires Terraform 0.12. I'll either wait for =terraform-godaddy= to upgrade to 0.12 or try to do it myself if it bothers me enough. EuAndreh4-10/+32
2019-06-08Update terraform to 0.12EuAndreh1-1/+1
2019-06-08Provision DNS entries with Terraform! :tada:•••Before all the DNS entries had to be entered manually on the web UI. EuAndreh1-0/+22
2019-06-08TODOs.orgEuAndreh1-21/+21
2019-06-08Add credentials for manipulating DNS entries.EuAndreh1-0/+0
2019-06-08Generate UserKnownHostsFile dynamically instead of when rotating keys•••The previous solution would hardcode the server IP. This way we can change the server IP address that is hosting everything and keep the SSH keypair. Previously changing the IP address would require either calling the =./rotate-ssh-keys.sh= script or manually changing the IP address on the known-hosts.txt file. The IP address being duplicated itself was a code smell. Both SSH keypair and IP address can now be changed independently. EuAndreh5-4/+5
2019-06-08Use nextcloud.${TLD} instead of cloud.${TLD} as CNAME for Nextcloud installationEuAndreh2-1/+1
generated by cgit v1.2.3 (git 2.52.0) at 2026-05-09 20:13:17 +0000