Commits · 13e7eb0b8b80bc44f7485c4efd6f59f19ede534d · PrivateStorage / PrivateStorageio

Aug 17, 2021
- Tryfix time zone · 13e7eb0b
  Florian Sesser authored 3 years ago
  
  13e7eb0b
Aug 12, 2021
- Merge branch 'gc-regularly' into 'develop' · 11cf8158
  Jean-Paul Calderone authored 3 years ago
  
  Clean up nix-store on the machines with limited disk space See merge request !149
  11cf8158
- Automatic GC: Delete generations older than 30 days · 8b0e8eef
  Florian Sesser authored 3 years ago
  
  8b0e8eef
- Merge branch 'aws-less-swap' into 'develop' · 9f0022d9
  Jean-Paul Calderone authored 3 years ago
  
  Less swap on disk constrained AWS hosts See merge request !150
  9f0022d9
Aug 11, 2021
- Less swap on disk constrained AWS hosts · de891bb9
  Florian Sesser authored 3 years ago
  
  de891bb9
- Clean up nix-store on the machines with limited disk space · 0f96e97f
  Florian Sesser authored 3 years ago
  
  0f96e97f
Aug 09, 2021
- Merge branch 'update-payment-server-to-0.1.1.1' into 'develop' · 60e19f7d
  Jean-Paul Calderone authored 3 years ago
  
  Update nixpkgs-ps to include PaymentServer 0.1.1.1 See merge request !147
  60e19f7d
- Update nixpkgs-ps to include PaymentServer 0.1.1.1 · 6b3d3539
  Florian Sesser authored 3 years ago
  
  ... fixing the Prometheus metric names a second time.
  6b3d3539
Aug 05, 2021
- Merge branch 'prometheus-niceties' into 'develop' · da49627d
  Florian Sesser authored 3 years ago
  
  Prometheus niceties See merge request !145
  da49627d
Aug 02, 2021
- Also relabel the payments host name to remove the port number · 15cd5637
  Florian Sesser authored 3 years ago
  
  We have to explicitely add the port number so the relabel config can strip it out again. Else, `instance' seems to get its value from somewhere else - somewhere our relabel config does not look at.
  15cd5637
- Grafana: Better dashboard titles · 6d533f0d
  Florian Sesser authored 3 years ago
  
  6d533f0d
- Use the NixOS `startAt` configuration option · 5f644324
  Jean-Paul Calderone authored 3 years ago and Florian Sesser committed 3 years ago
  
  This causes NixOS to generate the systemd timer unit for us and saves us having to explain a lot of subtle systemd features. It does pin execution to midnight on Monday but scaling to handle load spikes is Let's Encrypt's problem, I guess.
  5f644324
- Add a timer service to periodically trigger the cert renewal service · 893288fd
  Jean-Paul Calderone authored 3 years ago and Florian Sesser committed 3 years ago
  
  893288fd
Jul 29, 2021

Merge branch '222.automatically-renew-payment-certificate' into 'develop' · 66350e7b
Jean-Paul Calderone authored 3 years ago
```
Add a timer service to periodically trigger the cert renewal service

Closes privatestorageops#222

See merge request !143
```
66350e7b

Use the NixOS `startAt` configuration option · bcabf1fe

Jean-Paul Calderone authored 3 years ago

This causes NixOS to generate the systemd timer unit for us and saves us
having to explain a lot of subtle systemd features.

It does pin execution to midnight on Monday but scaling to handle load spikes
is Let's Encrypt's problem, I guess.

bcabf1fe

Jul 28, 2021
- Merge branch 'add-sshUsers-to-monitoring' into 'develop' · 30e98750
  Jean-Paul Calderone authored 3 years ago
  
  Add ssh.nix to monitoring systems See merge request !142
  30e98750
- Add a timer service to periodically trigger the cert renewal service · 63ab6ce0
  Jean-Paul Calderone authored 3 years ago
  
  63ab6ce0
- Add ssh.nix to monitoring as well · 1e50e395
  Florian Sesser authored 3 years ago
  
  1e50e395
Jul 20, 2021
- Merge branch 'monitoring-set-admin-pw' into 'develop' · 1b7252b5
  Jean-Paul Calderone authored 3 years ago
  
  Monitoring: Set admin PW See merge request !123
  1b7252b5
- note about public parts · d47a8798
  Jean-Paul Calderone authored 3 years ago
  
  d47a8798
- write some more words about secrets · a402ca80
  Jean-Paul Calderone authored 3 years ago
  
  a402ca80
- Statically configure a password for localdev Grafana admin · cf734f31
  Jean-Paul Calderone authored 3 years ago
  
  cf734f31
Jul 19, 2021
- Merge branch '77.deployment-key-whitespace' into 'develop' · 0c2ed62e
  Jean-Paul Calderone authored 3 years ago
  
  Fix deployment key whitespace Closes #77 See merge request !138
  0c2ed62e
- Fix the ssh key decoding problem · 986c3eb9
  Jean-Paul Calderone authored 3 years ago
  
  986c3eb9
- move all of the grid deploy stuff into the shell script · 5290d08b
  Jean-Paul Calderone authored 3 years ago
  
  This makes it easier to test outside of GitLab and it also means we don't depend on whatever wacko shell settings we inherit from GitLab.
  5290d08b
- Merge branch '76.deploy-key-decoding' into 'develop' · f7904606
  Jean-Paul Calderone authored 3 years ago
  
  Use a new variable which actually holds a path Closes #76 See merge request !136
  f7904606
- Use a new variable which actually holds a path · 397d667c
  Jean-Paul Calderone authored 3 years ago
  
  397d667c
- Merge branch '75.deploy-key-permissions' into 'develop' · b98dcb77
  Jean-Paul Calderone authored 3 years ago
  
  Remove group and other permissions from the deploy key Closes #75 See merge request !134
  b98dcb77
- Remove group and other permissions from the deploy key · 8dd00d39
  Jean-Paul Calderone authored 3 years ago
  
  8dd00d39
- Merge branch '74.update-deployment-exit-status' into 'develop' · a816c534
  Jean-Paul Calderone authored 3 years ago
  
  Propagate morph success/failure out of update-deployment Closes #74 See merge request !132
  a816c534
- Propagate morph success/failure out of update-deployment · 7b398fd1
  Jean-Paul Calderone authored 3 years ago
  
  7b398fd1
- Merge branch '71.ssh-known_hosts-files' into 'develop' · 0fa5dcc0
  Jean-Paul Calderone authored 3 years ago
  
  Burn in some SSH host key knowledge Closes #71 See merge request !130
  0fa5dcc0
- Merge remote-tracking branch 'origin/develop' into 71.ssh-known_hosts-files · 210b1dc2
  Jean-Paul Calderone authored 3 years ago
  
  210b1dc2
- Merge branch '72.bounded-NIX_PATH' into 'develop' · d1d42ecb
  Jean-Paul Calderone authored 3 years ago
  
  Bounded NIX_PATH Closes #72 See merge request !131
  d1d42ecb
- Point NIX_PATH at a source tree containing our desired version of nixpkgs · 9b2cd793
  Jean-Paul Calderone authored 3 years ago
  
  We can't point it at a Nix expression that evaluates to our desired version of nixpkgs because certain consumers want it to be a filesystem path instead.
  9b2cd793
- Use nixpkgs-2105 from out checkout instead of passing a path around · d9852965
  Jean-Paul Calderone authored 3 years ago
  
  This is what we wanted and much more directly. It also avoids the gradual lengthening of the path by always setting the path to nixpkgs-2105 instead of some derivative of whatever the path was last time.
  d9852965
- Burn in some SSH host key knowledge · 52765e29
  Jean-Paul Calderone authored 3 years ago
  
  This avoids a prompt at deploy time and the possibility of an MitM attack against TOFU.
  52765e29
- Merge branch '70.update-grid-servers-fixes' into 'develop' · 3be0f782
  Jean-Paul Calderone authored 3 years ago
  
  Various manually-tested fixes for the updater Closes #70 See merge request !128
  3be0f782
- Various manually-tested fixes for the updater · 41434241
  Jean-Paul Calderone authored 3 years ago
  
  41434241
- Merge branch '69.ci_environment_name' into 'develop' · 261aa808
  Jean-Paul Calderone authored 3 years ago
  
  Use the GitLab-defined `CI_ENVIRONMENT_NAME` Closes #69 See merge request !126
  261aa808