bb291b1f01
Move databases to their own tf files and improve first start
2024-02-13 12:05:55 -08:00
056eac976c
lldap: Make it work on first bootstrap
...
Can't use the job id for creating the variables and permissions because we end up
with circular dependencies. The job won't return until it's successful in Nomad and it won't
start in nomad without access to varibles
2024-02-13 12:05:21 -08:00
0a2eace3dd
Fix lldap secrets
2024-01-23 12:07:42 -08:00
bc87688f1a
Move ldap secrets
2024-01-16 14:14:39 -08:00
bcad131aa7
Use job id for lldap acls
2024-01-04 10:53:23 -08:00
cda2842f8f
Switch to image containing stunnel
...
Rather than installing on container startup, using an image with
stunnel pre-installed. This avoids issues with DNS breaking
the container on startup.
2024-01-03 13:50:49 -08:00
369802cacc
Bump Postgres memory to 500mb
2023-10-19 12:07:14 -07:00
72a108753b
Bump lldap to latest release
2023-09-14 12:14:07 -07:00
edeb6cf444
lldap: access shared smtp secrets
2023-08-29 14:56:06 -07:00
2bd939e651
Remove deprecated hcl2 enabled
2023-08-29 13:02:04 -07:00
f5898b0283
Add workload ACL management for mysql and postgres access
...
Allows required jobs to access shared secrets and auto generates psks
for stunnel.
Currently supporting MySQL, Postgres, and LDAP.
2023-08-29 12:48:48 -07:00
f6dd3f4284
Clean up root module and move lldap to databases
2023-08-24 13:52:03 -07:00
440c0b0c4c
Move redis commander
2023-08-24 11:37:13 -07:00
2844493fa1
Increase pgsql and lidarr memory to prevent crashes on library
2023-07-31 10:43:51 -07:00
c2632ee7c0
Mount pgdata to propper path
2023-07-26 23:24:09 -07:00
b5ab68e6f3
Fix postgres host volume
2023-07-26 15:29:52 -07:00
ac29343d96
Add postgres stunnel and service bootstrap
2023-07-25 10:59:33 -07:00
10a9689eef
Bump up MySQL memory
2023-07-19 09:37:23 -07:00
0a7ad7a9dc
Enable redis for authelia
...
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
88e91e5e5d
Deploy authelia
...
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example
Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
2a1a7fb6b7
Clean mysql stunnel config
2023-07-06 17:25:13 -07:00
8b0495c6c8
Take mysql off wesher network
2023-06-20 09:44:21 -07:00
73e9977d41
Use variable secrets location for mysql
2023-05-09 15:57:09 -07:00
f11fad30a5
Use stunnel for mysql
...
Doesn't remove wesher or normal mysql service
2023-05-09 13:20:36 -07:00
8d63c50ffb
Add Postgres database to cluster
2023-05-03 14:16:47 -07:00
4122d92f78
Make sure adminer is using nomad service discovery
2023-04-14 14:24:17 -07:00
87d97ac891
Fix redis server psks
2023-03-28 17:28:46 -07:00
08d0e93638
Clean up and remove some consul and vault stuff
2023-03-24 22:58:44 -07:00
98ea2a1ca0
A whole lot of incremental fixes for nomad variables and such
...
Also adds stunnel between redis and clients
2023-03-24 16:32:37 -07:00
d8307935f5
Refactor everything for nomad vars
2023-03-24 11:24:36 -07:00
65cb6afaf9
WIP: Moving vars and service discovery to Nomad
...
Starting with core
2023-03-24 08:55:23 -07:00
d501da4c90
Reduce redis memory
...
It's not used all that much right now
2023-03-12 10:23:26 -07:00
4f7c41a7a5
Add envoy metrics to redis
2023-03-02 11:07:07 -08:00
a70ad9d5a6
Export envoy metrics for mysql service
2023-03-02 11:00:45 -08:00
0d47a1f8c8
Tune PhotoPrism
2022-11-11 16:21:47 -08:00
bb400a3f1c
Add blocky metrics to grafana
2022-11-11 16:21:17 -08:00
068dc73717
Add photoprism
2022-11-10 13:37:50 -08:00
e9f2fae609
Switch mysql to mariadb
2022-11-10 13:37:50 -08:00
45c597b040
Big refactor to split core and services for better ordering
2022-10-27 14:28:34 -07:00
66bd276626
Increase priority of stateful jobs
2022-09-26 16:40:25 -07:00
478f9c4c8f
Update security todos and reference node IP for consul queries
2022-09-06 14:46:49 -07:00
ab1c9b41cd
Move redis data to ephemeral disk
2022-09-06 11:31:15 -07:00
599dd02bdc
Add mysql database storage to Grafana
2022-07-29 13:02:22 -07:00
7356b8d407
Make metrics more readable
2022-07-25 21:45:01 -07:00
aa6db53047
Fix mysql
2022-07-25 16:29:43 -07:00
a8fe9bfff8
Get mysql root from vault
2022-07-25 15:52:47 -07:00
b300c220b6
Tweak memory requirements for tasks
2022-07-25 15:52:47 -07:00
37c4ab4c25
Move databases to a single module
2022-06-23 09:48:01 -07:00
