Commit Graph

43 Commits

Author SHA1 Message Date
cda2842f8f Switch to image containing stunnel
Rather than installing on container startup, using an image with
stunnel pre-installed. This avoids issues with DNS breaking
the container on startup.
2024-01-03 13:50:49 -08:00
369802cacc Bump Postgres memory to 500mb 2023-10-19 12:07:14 -07:00
72a108753b Bump lldap to latest release 2023-09-14 12:14:07 -07:00
edeb6cf444 lldap: access shared smtp secrets 2023-08-29 14:56:06 -07:00
2bd939e651 Remove deprecated hcl2 enabled 2023-08-29 13:02:04 -07:00
f5898b0283 Add workload ACL management for mysql and postgres access
Allows required jobs to access shared secrets and auto generates psks
for stunnel.

Currently supporting MySQL, Postgres, and LDAP.
2023-08-29 12:48:48 -07:00
f6dd3f4284 Clean up root module and move lldap to databases 2023-08-24 13:52:03 -07:00
440c0b0c4c Move redis commander 2023-08-24 11:37:13 -07:00
2844493fa1 Increase pgsql and lidarr memory to prevent crashes on library 2023-07-31 10:43:51 -07:00
c2632ee7c0 Mount pgdata to propper path 2023-07-26 23:24:09 -07:00
b5ab68e6f3 Fix postgres host volume 2023-07-26 15:29:52 -07:00
ac29343d96 Add postgres stunnel and service bootstrap 2023-07-25 10:59:33 -07:00
10a9689eef Bump up MySQL memory 2023-07-19 09:37:23 -07:00
0a7ad7a9dc Enable redis for authelia
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
88e91e5e5d Deploy authelia
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example

Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
2a1a7fb6b7 Clean mysql stunnel config 2023-07-06 17:25:13 -07:00
8b0495c6c8 Take mysql off wesher network 2023-06-20 09:44:21 -07:00
73e9977d41 Use variable secrets location for mysql 2023-05-09 15:57:09 -07:00
f11fad30a5 Use stunnel for mysql
Doesn't remove wesher or normal mysql service
2023-05-09 13:20:36 -07:00
8d63c50ffb Add Postgres database to cluster 2023-05-03 14:16:47 -07:00
4122d92f78 Make sure adminer is using nomad service discovery 2023-04-14 14:24:17 -07:00
87d97ac891 Fix redis server psks 2023-03-28 17:28:46 -07:00
08d0e93638 Clean up and remove some consul and vault stuff 2023-03-24 22:58:44 -07:00
98ea2a1ca0 A whole lot of incremental fixes for nomad variables and such
Also adds stunnel between redis and clients
2023-03-24 16:32:37 -07:00
d8307935f5 Refactor everything for nomad vars 2023-03-24 11:24:36 -07:00
65cb6afaf9 WIP: Moving vars and service discovery to Nomad
Starting with core
2023-03-24 08:55:23 -07:00
d501da4c90 Reduce redis memory
It's not used all that much right now
2023-03-12 10:23:26 -07:00
4f7c41a7a5 Add envoy metrics to redis 2023-03-02 11:07:07 -08:00
a70ad9d5a6 Export envoy metrics for mysql service 2023-03-02 11:00:45 -08:00
0d47a1f8c8 Tune PhotoPrism 2022-11-11 16:21:47 -08:00
bb400a3f1c Add blocky metrics to grafana 2022-11-11 16:21:17 -08:00
068dc73717 Add photoprism 2022-11-10 13:37:50 -08:00
e9f2fae609 Switch mysql to mariadb 2022-11-10 13:37:50 -08:00
45c597b040 Big refactor to split core and services for better ordering 2022-10-27 14:28:34 -07:00
66bd276626 Increase priority of stateful jobs 2022-09-26 16:40:25 -07:00
478f9c4c8f Update security todos and reference node IP for consul queries 2022-09-06 14:46:49 -07:00
ab1c9b41cd Move redis data to ephemeral disk 2022-09-06 11:31:15 -07:00
599dd02bdc Add mysql database storage to Grafana 2022-07-29 13:02:22 -07:00
7356b8d407 Make metrics more readable 2022-07-25 21:45:01 -07:00
aa6db53047 Fix mysql 2022-07-25 16:29:43 -07:00
a8fe9bfff8 Get mysql root from vault 2022-07-25 15:52:47 -07:00
b300c220b6 Tweak memory requirements for tasks 2022-07-25 15:52:47 -07:00
37c4ab4c25 Move databases to a single module 2022-06-23 09:48:01 -07:00