unkin/puppet-prod
2
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases Wiki Activity
1,128 Commits 14 Branches 0 Tags 3.1 MiB
e02b4a51ea
Commit Graph

22 Commits

Author SHA1 Message Date
Ben Vincent
e02b4a51ea fix: change runner to access git via haproxy 
saving artifacts are breaking in some actions as the runner will switch
between different git hosts. using haproxy will ensure the same backend
is always hit via stick-tables and cookies

- ensure runners use haproxy to reach git
 2026-01-03 19:43:14 +11:00
Ben Vincent
f8caa71f34 fix: increase artifact upload size for git (#431) 
- rpmbuilder artifacts can be very large
- increase 1Gb limit to 5GB

Reviewed-on: #431
 2025-12-30 22:52:43 +11:00
Ben Vincent
e724326d43 feat: allow access to runner certs (#407) 
- allow access to runner certs, used for mtls auth to incus

Reviewed-on: #407
 2025-10-17 22:46:45 +11:00
Ben Vincent
d8b354558d feat: add incus auto-client certificate trust (#406) 
- add fact to export vault public cert from agents
- add fact to export list of trusted incus client certs
- add method for incus clients to export their client cert to be trusted

Reviewed-on: #406
 2025-10-17 22:46:26 +11:00
Ben Vincent
0e64c9855a feat: add vmcluster module (#363) 
- manage vmstorage package, service and environment file
- manage vmselect package, service and environment file
- manage vminsert package, service and environment file
- manage vmagent package, service and environment file
- manage options for vmstorage, vmselect, vminsert, vmagent role

Reviewed-on: #363
 2025-07-26 18:17:20 +10:00
Ben Vincent
0063f68bc6 feat: enable external access to gitea (#344) 
- add git.unkin.net to certbot
- export haproxy resources for gitea
- add be_gitea to haproxy, import the certbot cert
- update the ROOT_URL for gitea instances

Reviewed-on: #344
 2025-07-06 13:47:56 +10:00
Ben Vincent
372d99893a core: fix ROOT_URL (#343) 
- root_url is used for docker authentication
- access to git.unkin.net is not yet ready

Reviewed-on: https://git.query.consul/unkin/puppet-prod/pulls/343
 2025-07-06 13:20:27 +10:00
Ben Vincent
2317d0af59 feat: expose gitea metrics (#340) 
- add a gitea-metrics service to consul
- tag as metrics for victoria metrics
- check the /metrics endpoint (bypass nginx)

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/340
 2025-07-06 12:01:57 +10:00
Ben Vincent
cf0ff85b70 fix: manage git user (#339) 
- prevent different gid/uid for git users when deploying cluster
- only add sudo conf when sudo_rules is a list

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/339
 2025-07-06 11:27:35 +10:00
Ben Vincent
359ce101f1 feat: add indexer for git (#338) 
- reuse the database for the indexer

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/338
 2025-07-05 17:12:38 +10:00
Ben Vincent
b6c959d368 feat: use redis for cache/queue (#337) 
- use gitea redis cluster for queue/cache
- use redis+sentinel url (pass required for redis and sentinel)

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/337
 2025-07-05 16:42:01 +10:00
Ben Vincent
b976f2063a feat: deploy redis for git (#336) 
- deploy redis/sentinel ha cluster for git
- update redis to 7 (required for almalinux 9)
- enable requirepass/masterauth

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/336
 2025-07-05 15:51:28 +10:00
Ben Vincent
93049707e7 benvin/gitea_cluster (#335) 
Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/335
 2025-07-05 14:49:56 +10:00
Ben Vincent
bfda2b628b feat: enable ip forwarding for gitea runners (#253) 
- required to enable docker containers reach git service

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/253
 2025-04-21 18:40:17 +10:00
Ben Vincent
52fff0ccea feat: enable root_dir for docker 
- move docker root_dir to /data/docker for runners
 2024-11-30 23:11:24 +11:00
Ben Vincent
93b9629c5c feat: enable larger uploads to gitea 
- change client body max size to 1GB
 2024-09-08 01:43:22 +10:00
Ben Vincent
0210d849c7 feat: add gitea runner role 
- ensure docker is configured
- create runner user/group
- deploy config.yaml from hiera hash
- install runner from url
- register the runner with the gitea instance
- manage the act_runner service
 2024-09-07 17:59:02 +10:00
Ben Vincent
6b0e0daecb chore: add ssh principals 
- add ssh principals for consul service addresses
 2024-06-11 20:20:12 +10:00
Ben Vincent
4bd3310ea8 feat: refacter gitea profile 
- move more data to hiera
- change how the custom_configuration is made
 2024-06-01 17:16:37 +10:00
Ben Vincent
6c2328e8ba feat: bump git client_max_body_size 
- change from 100m to 250m
 2024-06-01 13:31:35 +10:00
Ben Vincent
e7ddbfa035 feat: increase client_max_body_size for git 
- update hieradata with client_max_body_size for git role
 2024-06-01 12:51:06 +10:00
Ben Vincent
fab4ea5998 feat: add gitea classes 
- add basic gitea class
 2024-05-28 23:14:36 +10:00