Commit Graph

39 Commits

Author SHA1 Message Date
9ce1350b5f Use nomad token to look up policies 2022-08-30 15:15:29 -07:00
226eb6cb05 Have nomad talk to vault over loopback 2022-08-30 15:15:10 -07:00
3d3cc25951 Add new nfs volumes 2022-08-30 15:14:55 -07:00
0ea02c2034 Multiarch install tweaks for arm64 2022-08-30 15:14:39 -07:00
0ad777c76f Fix unsealing of single vault instance
Checking status of only one node meant that if that node was sealed
we would not try to unseal other nodes
2022-08-30 15:14:00 -07:00
929501b72c Enable consul autopilot 2022-08-30 15:12:52 -07:00
429854897f Update nomad, consul, vault versions 2022-08-30 15:12:35 -07:00
e96a7501dd Rename nomad anon policy file 2022-08-23 10:31:29 -07:00
eaa81ddc8a Remove set hostname because that's now done in bootstrap 2022-07-27 15:57:12 -07:00
c17a3c950a Add further todos for Nomad Vault 2022-07-27 13:40:21 -07:00
5e1b679cbb Fix consul value bootstrap and hide secrets in log 2022-07-27 11:11:03 -07:00
3a9ae20a6b Update playbook, move acls and comment for fixes
There are some items that I found are broken on first run and made some changes
2022-07-25 11:48:03 -07:00
5b88413604 Add consul bootstrap and move vault to an example 2022-07-21 20:16:10 -07:00
5583b2d38e Deploy Nomad, Consul, and Vault using apt repo 2022-07-21 19:04:44 -07:00
723b5fab78 Improve vault bootstrap and nomad connection 2022-06-28 12:10:18 -07:00
1dad4d22a1 Bootstrap vault secrets 2022-06-28 12:09:57 -07:00
ff4e473a89 Small improvement to consul kv role 2022-06-28 12:08:23 -07:00
609944df8e Install consul dns forwarding 2022-06-23 20:12:09 -07:00
ab58652932 Install consul from repo 2022-06-23 20:11:48 -07:00
67631eb1a0 Update Nomad 2022-06-23 09:51:21 -07:00
d022fe9bc4 Deploy backup jobs to all hosts and dynamically determine jobs per node 2022-06-23 09:49:57 -07:00
b6a9c80748 Add base hostname to consul in Playbook 2022-06-17 15:19:43 -07:00
2f65105592 WIP: Add democratic-csi storage plugin 2022-06-17 15:19:19 -07:00
40e3562195 Use new token variable name after bootstrap 2022-05-24 20:11:41 -07:00
f544a54631 Add autopilot 2022-05-24 20:11:18 -07:00
e57fcfcfdb Add docker install 2022-05-24 20:11:07 -07:00
423c8f23c5 Auto initialize vault 2022-05-24 20:10:47 -07:00
456485aa5e no log for some more sensitive info 2022-04-15 12:12:28 -07:00
a1217250dc Create a lot more host volumes
Some are NFS volumes and present on all devices
2022-04-04 22:20:19 -07:00
f8f7cf2dc2 Add Nomad ACL bootstrap 2022-03-23 16:08:18 -07:00
e3d894a8d5 Update bootstrap for acls 2022-03-21 20:13:13 -07:00
bd5a71c3da Maybe dynamic nomad? 2022-03-15 12:23:47 -07:00
4d4bf36d3c Add vault setup: Not secured 2022-03-15 12:23:47 -07:00
72a9b007e2 Change default bind address to loopback 2022-03-14 15:59:50 -07:00
99889f032d Update hosts improve bootstrap and move a few things around 2022-03-12 10:08:05 -08:00
418d913e5d Lots of Nomad updates to support metrics 2022-03-03 09:47:07 -08:00
57df7199f7 Update ansible to deploy nomad and consul to Pi host
This is broken because the Pi doesn't have the right version of ip-tables
2022-02-27 14:54:25 -08:00
aff7fd0186 Update host networks and proxy mapping 2022-02-17 14:03:42 -08:00
2ac0a3a15a Add some basic Nomad and k8s tests 2022-02-16 09:56:18 -08:00