iamthefij
/
orchestration-tests
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
205 Commits 11 Branches 0 Tags 2 MiB
Commit Graph

54 Commits

Author SHA1 Message Date
IamTheFij 7493fb27ec Big refactor to split core and services for better ordering 2022-10-27 14:28:34 -07:00
IamTheFij 3e89a101bf Improve first run cluster setup 2022-09-27 21:28:02 -07:00
IamTheFij bfa8633fcf Remove some hosts 2022-09-27 21:27:34 -07:00
IamTheFij 7d25cd3098 Add local loopback as dns in resolv.conf 2022-09-26 16:52:59 -07:00
IamTheFij ff49e039da Enable preemption on nomad scheduler 2022-09-16 16:45:26 -07:00
IamTheFij 845ea4d391 Make Nomad media-read volume point to rw nfs 2022-09-16 16:44:40 -07:00
IamTheFij b9ea8eb0a2 Remove bootstrapping values from setup playbook 
This will be done in another playbook
 2022-09-16 16:43:45 -07:00
IamTheFij fbacdb2699 Bootstrap with 3 servers 2022-09-16 16:42:54 -07:00
IamTheFij 50bdb61575 Wait until Nomad is running before bootstrapping ACLs 2022-09-07 11:11:10 -07:00
IamTheFij bd1280b970 Clean up comments in setup cluster playbook 2022-09-07 11:09:33 -07:00
IamTheFij ecbd9626e8 Explicitly set envoy version 
The default v1.23.0 does not work on arm64
 2022-09-07 11:06:26 -07:00
IamTheFij a9bbc3705a Update vault and nomad versions 2022-09-07 11:05:54 -07:00
IamTheFij cfc0a45440 Update security todos and reference node IP for consul queries 2022-09-06 14:46:49 -07:00
IamTheFij c2c3d1abc7 Update nfs volumes to try and fix permissions 2022-09-04 14:27:27 -07:00
IamTheFij 444782a0a6 Use default arch maps where possible 2022-08-30 16:15:12 -07:00
IamTheFij 9c07141dd1 Use nomad token to look up policies 2022-08-30 15:15:29 -07:00
IamTheFij 1c57d9f7f6 Have nomad talk to vault over loopback 2022-08-30 15:15:10 -07:00
IamTheFij 0ef488b06a Add new nfs volumes 2022-08-30 15:14:55 -07:00
IamTheFij 6fe1d472d0 Multiarch install tweaks for arm64 2022-08-30 15:14:39 -07:00
IamTheFij c073f78ed2 Fix unsealing of single vault instance 
Checking status of only one node meant that if that node was sealed
we would not try to unseal other nodes
 2022-08-30 15:14:00 -07:00
IamTheFij 5214d8275a Enable consul autopilot 2022-08-30 15:12:52 -07:00
IamTheFij 89598ffb7c Update nomad, consul, vault versions 2022-08-30 15:12:35 -07:00
IamTheFij 9aad3d1594 Rename nomad anon policy file 2022-08-23 10:31:29 -07:00
IamTheFij 4213b322c1 Remove set hostname because that's now done in bootstrap 2022-07-27 15:57:12 -07:00
IamTheFij e39fbc41a7 Add further todos for Nomad Vault 2022-07-27 13:40:21 -07:00
IamTheFij 85fccea867 Fix consul value bootstrap and hide secrets in log 2022-07-27 11:11:03 -07:00
IamTheFij 888b1236f1 Update playbook, move acls and comment for fixes 
There are some items that I found are broken on first run and made some changes
 2022-07-25 11:48:03 -07:00
IamTheFij 842e656342 Add consul bootstrap and move vault to an example 2022-07-21 20:16:10 -07:00
IamTheFij 16813e8cb7 Deploy Nomad, Consul, and Vault using apt repo 2022-07-21 19:04:44 -07:00
IamTheFij c0215bf153 Improve vault bootstrap and nomad connection 2022-06-28 12:10:18 -07:00
IamTheFij bf1ac31cdf Bootstrap vault secrets 2022-06-28 12:09:57 -07:00
IamTheFij 41343a6d2c Small improvement to consul kv role 2022-06-28 12:08:23 -07:00
IamTheFij d40d585358 Install consul dns forwarding 2022-06-23 20:12:09 -07:00
IamTheFij 0bfdddf3ee Install consul from repo 2022-06-23 20:11:48 -07:00
IamTheFij e5b61d5307 Update Nomad 2022-06-23 09:51:21 -07:00
IamTheFij d7fa57864f Deploy backup jobs to all hosts and dynamically determine jobs per node 2022-06-23 09:49:57 -07:00
IamTheFij ce18650e1f Add base hostname to consul in Playbook 2022-06-17 15:19:43 -07:00
IamTheFij 16b9440e12 WIP: Add democratic-csi storage plugin 2022-06-17 15:19:19 -07:00
IamTheFij 6cd7bae240 Use new token variable name after bootstrap 2022-05-24 20:11:41 -07:00
IamTheFij de4c96b104 Add autopilot 2022-05-24 20:11:18 -07:00
IamTheFij f50cb98d30 Add docker install 2022-05-24 20:11:07 -07:00
IamTheFij 1995434140 Auto initialize vault 2022-05-24 20:10:47 -07:00
IamTheFij 630a85a2f2 no log for some more sensitive info 2022-04-15 12:12:28 -07:00
IamTheFij 96ca3270fa Create a lot more host volumes 
Some are NFS volumes and present on all devices
 2022-04-04 22:20:19 -07:00
IamTheFij f1c7e57682 Add Nomad ACL bootstrap 2022-03-23 16:08:18 -07:00
IamTheFij 970a9f740e Update bootstrap for acls 2022-03-21 20:13:13 -07:00
IamTheFij c67ca9822c Maybe dynamic nomad? 2022-03-15 12:23:47 -07:00
IamTheFij 968b7ddb72 Add vault setup: Not secured 2022-03-15 12:23:47 -07:00
IamTheFij 30bb579811 Change default bind address to loopback 2022-03-14 15:59:50 -07:00
IamTheFij b2c03f1e60 Update hosts improve bootstrap and move a few things around 2022-03-12 10:08:05 -08:00