Commit Graph

38 Commits

Author SHA1 Message Date
f5898b0283 Add workload ACL management for mysql and postgres access
Allows required jobs to access shared secrets and auto generates psks
for stunnel.

Currently supporting MySQL, Postgres, and LDAP.
2023-08-29 12:48:48 -07:00
f6dd3f4284 Clean up root module and move lldap to databases 2023-08-24 13:52:03 -07:00
440c0b0c4c Move redis commander 2023-08-24 11:37:13 -07:00
2844493fa1 Increase pgsql and lidarr memory to prevent crashes on library 2023-07-31 10:43:51 -07:00
c2632ee7c0 Mount pgdata to propper path 2023-07-26 23:24:09 -07:00
b5ab68e6f3 Fix postgres host volume 2023-07-26 15:29:52 -07:00
ac29343d96 Add postgres stunnel and service bootstrap 2023-07-25 10:59:33 -07:00
10a9689eef Bump up MySQL memory 2023-07-19 09:37:23 -07:00
0a7ad7a9dc Enable redis for authelia
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
88e91e5e5d Deploy authelia
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example

Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
2a1a7fb6b7 Clean mysql stunnel config 2023-07-06 17:25:13 -07:00
8b0495c6c8 Take mysql off wesher network 2023-06-20 09:44:21 -07:00
73e9977d41 Use variable secrets location for mysql 2023-05-09 15:57:09 -07:00
f11fad30a5 Use stunnel for mysql
Doesn't remove wesher or normal mysql service
2023-05-09 13:20:36 -07:00
8d63c50ffb Add Postgres database to cluster 2023-05-03 14:16:47 -07:00
4122d92f78 Make sure adminer is using nomad service discovery 2023-04-14 14:24:17 -07:00
87d97ac891 Fix redis server psks 2023-03-28 17:28:46 -07:00
08d0e93638 Clean up and remove some consul and vault stuff 2023-03-24 22:58:44 -07:00
98ea2a1ca0 A whole lot of incremental fixes for nomad variables and such
Also adds stunnel between redis and clients
2023-03-24 16:32:37 -07:00
d8307935f5 Refactor everything for nomad vars 2023-03-24 11:24:36 -07:00
65cb6afaf9 WIP: Moving vars and service discovery to Nomad
Starting with core
2023-03-24 08:55:23 -07:00
d501da4c90 Reduce redis memory
It's not used all that much right now
2023-03-12 10:23:26 -07:00
4f7c41a7a5 Add envoy metrics to redis 2023-03-02 11:07:07 -08:00
a70ad9d5a6 Export envoy metrics for mysql service 2023-03-02 11:00:45 -08:00
0d47a1f8c8 Tune PhotoPrism 2022-11-11 16:21:47 -08:00
bb400a3f1c Add blocky metrics to grafana 2022-11-11 16:21:17 -08:00
068dc73717 Add photoprism 2022-11-10 13:37:50 -08:00
e9f2fae609 Switch mysql to mariadb 2022-11-10 13:37:50 -08:00
45c597b040 Big refactor to split core and services for better ordering 2022-10-27 14:28:34 -07:00
66bd276626 Increase priority of stateful jobs 2022-09-26 16:40:25 -07:00
478f9c4c8f Update security todos and reference node IP for consul queries 2022-09-06 14:46:49 -07:00
ab1c9b41cd Move redis data to ephemeral disk 2022-09-06 11:31:15 -07:00
599dd02bdc Add mysql database storage to Grafana 2022-07-29 13:02:22 -07:00
7356b8d407 Make metrics more readable 2022-07-25 21:45:01 -07:00
aa6db53047 Fix mysql 2022-07-25 16:29:43 -07:00
a8fe9bfff8 Get mysql root from vault 2022-07-25 15:52:47 -07:00
b300c220b6 Tweak memory requirements for tasks 2022-07-25 15:52:47 -07:00
37c4ab4c25 Move databases to a single module 2022-06-23 09:48:01 -07:00