19e42bf778
adding dns entries that would be required for miab server
2023-10-20 23:54:42 -07:00
a681d29457
Fixing reverse dns infra now setup and working to receive emails
2023-10-20 18:08:55 -07:00
488722aaff
Creating mail.shockrah.xyz dns records
2023-10-20 16:54:33 -07:00
8aee1483fc
Fixing group_id issue and missing quotes
2023-10-20 15:09:23 -07:00
e8dec5a6d8
Start of docs for mail server code
2023-10-20 15:04:14 -07:00
69b8ad8a50
Sec configuration with ssh keys
2023-10-20 15:03:05 -07:00
6f8d8abd15
Fargate readme
2023-10-16 21:00:16 -07:00
ba38a0d9c9
Adding back resume.shockrah.xyz to LB endpoints
2023-10-07 15:01:28 -07:00
7a388534f1
Cleaning up roles
2023-10-06 22:30:24 -07:00
8298dbb4f7
Addig temper.tv conf to docker image'
2023-10-06 00:16:29 -07:00
4a210404bb
Adding temper.tv cert
2023-10-06 00:09:24 -07:00
82f34d03cd
Fixing certs that get attached to the LB
2023-10-06 00:08:14 -07:00
a83debde34
Validation and cert created for tmper
2023-10-05 23:41:18 -07:00
d02b5de48c
Splitting certs into lone files
2023-10-05 23:16:49 -07:00
df2406720f
Improving dependency chaingin slightly however more will stablize the race condition problem here in this folder
2023-10-05 23:12:39 -07:00
b6aebf06b1
Bringing in tmeper records to track
2023-10-05 23:08:27 -07:00
da379f20cb
Moving remaining s3 configuration to its own folder
2023-10-05 22:43:35 -07:00
9bd6cbd3e3
Fixing makefile
2023-10-05 22:28:54 -07:00
b0e5bd50da
Moving out route53 and load balancer resources
2023-10-05 22:20:06 -07:00
3029fbb3f6
Moving fargate things to their own folder
2023-10-04 01:15:32 -07:00
caf09a63cb
More variable clean up for security groups
...
Removing traces from previous networking cleanout
2023-10-03 19:38:27 -07:00
e51ebc7251
Moving security groups out to their own folder as they are basically global to everything
2023-10-03 19:36:59 -07:00
609f9b3e7b
Moving networking code out into its own module
2023-10-03 19:07:06 -07:00
10ed1f1a98
Adding note regarding master record with special record
2023-09-30 16:26:17 -07:00
295f933d8a
Terraform code cleanup and final reduction of containers from 2 -> 1
...
Now able to serve multiple websites with 1 nginx container under an LB
Cost savings not massive but still noticable at this point considering
How low the cost is with this kind of setup
2023-09-10 16:25:21 -07:00
b5e53acf0a
Adding health check endpoint to nginx container
2023-09-10 16:23:54 -07:00
efdd75b831
Fresh readme
2023-09-10 15:51:35 -07:00
830352a851
MVP nginx configuration for single container support
2023-09-10 15:36:47 -07:00
50c6bfeac0
switching to borderline vanilla nginx docker image
2023-09-10 15:21:27 -07:00
6b75b2534e
Simplifying build and run scripts for general & pipeline usage
2023-09-10 15:20:50 -07:00
9cd2fe11db
Updating readme
2023-09-10 15:16:17 -07:00
9ca3969a53
Ensuring public read access to all required public buckets
...
* Required to allow task containers to read from here without crazy auth on
nginx's part
2023-09-10 15:10:22 -07:00
d9e0e8c70b
Making public files for websites buckets public readable
2023-08-09 21:51:21 -07:00
4987559b15
Adding readme for playbooks
2023-05-07 23:53:41 -07:00
87a549bc1f
* Load balancer components are now built dynamically for each domain
...
+ Increased health_check intervals
+ HTTPS default action is now a blank 400 page
+ Generating listener rules for beta proxy based on bucket names/domains
Using domain filters for this basically
* Dynamically attaching listener certificates
2023-03-10 21:37:35 -08:00
ffe5ffe831
Cleaning up Docker resources
...
Adding ez build script
2023-03-10 21:35:55 -08:00
f4e06fa24a
New docker image supporting proxying S3
2023-03-10 21:34:58 -08:00
42e55f7313
Task definition now uses the correct image and env vars
...
Services are now mapped to their respective task definitions
2023-03-10 21:34:06 -08:00
28f8436768
Using new s3 access & secret key for s3 reader role
2023-03-10 21:33:24 -08:00
dfdc62f80c
Consolidating locals into one place
...
Also adding -input=false to Makefile
2023-03-10 21:32:56 -08:00
17d3f66073
Simplifying nginx vars
2023-03-06 18:35:07 -08:00
550cb2eb70
Removing unused infra structure, lowering cost with this commit
2023-03-06 15:51:43 -08:00
8f375def3b
Updating bucket names to include blog and resume
2023-02-28 21:04:26 -08:00
0f96719383
Dockerfile for proxying s3 resources with nginx
2023-02-28 20:20:21 -08:00
91bb927cf5
Fixing nginx conf to return 404 on things it cant find rather than index.html
2023-02-14 18:53:11 -08:00
321734a453
Adding redirect for 80 which was causing issues on folder path calls to nginx
2023-02-14 18:52:23 -08:00
f973c67bb4
Fixing indentation from vim
2023-02-11 21:19:08 -08:00
5903ba2a5e
Updating nginx config to now include resume.shockrah.xyz in the fun :)
...
Also nginx.conf now has some gzip configuration parameters set, courtesy of:
https://www.techrepublic.com/article/how-to-configure-gzip-compression-with-nginx/
2023-02-11 21:14:49 -08:00
11ffc23871
Cleaning up DNS Records and updating certs to account for root domains
...
For now we're just going to worry about the main blog and resume.shockrah.xyz
In the reverse-proxy image
* Resume pipelines will not work in this state and will need way of updating
their part of the image for ECS to pull updates*
2023-02-11 20:56:52 -08:00
904b730362
blog.shockrah.xyz working at an infrastructure level now
...
Also updated the image so that it has the right baseURL
which gets configured during the service build ( Hugo )
2023-02-10 22:07:26 -08:00