5337fabe17
Setting up all nginx websites on the host
2024-04-16 20:37:47 -07:00
31795ea6d9
Site configs
2024-04-16 20:27:54 -07:00
4fd20a9136
Simple test playbook to confirm things are working as expected
2024-04-15 20:17:54 -07:00
1c6fe055f7
Adding a way of getting the ssh key out for now
2024-04-15 18:34:41 -07:00
cd42d0c281
nginx setup with anisble
2024-04-15 17:58:23 -07:00
fbad8e3a64
Using openssh format for ssh key pub
2024-04-14 18:16:46 -07:00
e2fdfd3c6f
Adding ssh key to the host on creation
2024-04-14 18:08:09 -07:00
812a4b686f
Base configuration for a small host to hold all the website file stuff
2024-04-14 17:33:05 -07:00
0a9aad30fb
Cluster configuration with working TLS for 1 domain but not two
2024-03-24 13:41:55 -07:00
61439ca1a1
Removing cluster since project is super backlogged right now
2024-03-24 13:41:21 -07:00
60667f1ef0
Common tls configuration setup however I cant load the new domain with it
2024-02-27 23:38:41 -08:00
ba05bb6e2c
Incorporating parameterized lb ip
2024-02-27 23:05:46 -08:00
76a47b55a1
parameterizing load balancer public ip
2024-02-27 23:04:59 -08:00
39982e516d
Sample secondary configuration for another website
2024-02-27 21:14:12 -08:00
a948901e0f
Sample files
2024-02-21 23:19:28 -08:00
61e2a8d2aa
Working sample project with full tls and nginx container
2024-02-21 23:13:40 -08:00
5409586c18
Slowly building proper cluster
2024-02-21 22:57:08 -08:00
c395709c65
Updating k8s version and adding var value for lab_domain
2024-02-19 16:51:49 -08:00
2cd95902a5
removing old dns iam things while new testing domain populates ns servers on vultr
2024-02-19 16:51:19 -08:00
f896e9a3ff
project template
2024-02-18 19:26:27 -08:00
b71182d910
Creating user for DNS updates from K8s cluster
2024-02-04 21:09:15 -08:00
3e149c43ef
Tracking 6443 for kubectl
2024-01-17 21:06:25 -08:00
cb065d22f2
Firewall and provider version bump
2024-01-16 19:49:52 -08:00
31cee5a125
Base configuration for building an empty cluster with one node
2024-01-16 19:07:55 -08:00
8a66a04337
Base configuration for settingup vke
2024-01-16 16:05:38 -08:00
f0e815e9cb
Ignoring sensitive tfvars file
2023-11-28 21:21:55 -08:00
bf00b3482d
Basic skeleton for new gitea server ( not provisioned yet )
2023-11-27 22:28:06 -08:00
4f3d1a090e
Simple outline for services I want to support going foward
2023-11-27 18:16:31 -08:00
4840955361
Simple docs for future git server
2023-11-27 17:53:31 -08:00
175ae5f1e5
Explicity setting max percent value on nginx
2023-10-30 22:28:38 -07:00
49be08d169
Adding mx records for temper@temper.tv email
2023-10-27 17:58:23 -07:00
1fe7ccc898
Moving dns records to mail server configuration
2023-10-21 00:00:46 -07:00
19e42bf778
adding dns entries that would be required for miab server
2023-10-20 23:54:42 -07:00
a681d29457
Fixing reverse dns infra now setup and working to receive emails
2023-10-20 18:08:55 -07:00
488722aaff
Creating mail.shockrah.xyz dns records
2023-10-20 16:54:33 -07:00
8aee1483fc
Fixing group_id issue and missing quotes
2023-10-20 15:09:23 -07:00
e8dec5a6d8
Start of docs for mail server code
2023-10-20 15:04:14 -07:00
69b8ad8a50
Sec configuration with ssh keys
2023-10-20 15:03:05 -07:00
6f8d8abd15
Fargate readme
2023-10-16 21:00:16 -07:00
ba38a0d9c9
Adding back resume.shockrah.xyz to LB endpoints
2023-10-07 15:01:28 -07:00
7a388534f1
Cleaning up roles
2023-10-06 22:30:24 -07:00
4a210404bb
Adding temper.tv cert
2023-10-06 00:09:24 -07:00
82f34d03cd
Fixing certs that get attached to the LB
2023-10-06 00:08:14 -07:00
a83debde34
Validation and cert created for tmper
2023-10-05 23:41:18 -07:00
d02b5de48c
Splitting certs into lone files
2023-10-05 23:16:49 -07:00
df2406720f
Improving dependency chaingin slightly however more will stablize the race condition problem here in this folder
2023-10-05 23:12:39 -07:00
b6aebf06b1
Bringing in tmeper records to track
2023-10-05 23:08:27 -07:00
da379f20cb
Moving remaining s3 configuration to its own folder
2023-10-05 22:43:35 -07:00
9bd6cbd3e3
Fixing makefile
2023-10-05 22:28:54 -07:00
b0e5bd50da
Moving out route53 and load balancer resources
2023-10-05 22:20:06 -07:00
3029fbb3f6
Moving fargate things to their own folder
2023-10-04 01:15:32 -07:00
caf09a63cb
More variable clean up for security groups
...
Removing traces from previous networking cleanout
2023-10-03 19:38:27 -07:00
e51ebc7251
Moving security groups out to their own folder as they are basically global to everything
2023-10-03 19:36:59 -07:00
609f9b3e7b
Moving networking code out into its own module
2023-10-03 19:07:06 -07:00
10ed1f1a98
Adding note regarding master record with special record
2023-09-30 16:26:17 -07:00
295f933d8a
Terraform code cleanup and final reduction of containers from 2 -> 1
...
Now able to serve multiple websites with 1 nginx container under an LB
Cost savings not massive but still noticable at this point considering
How low the cost is with this kind of setup
2023-09-10 16:25:21 -07:00
9ca3969a53
Ensuring public read access to all required public buckets
...
* Required to allow task containers to read from here without crazy auth on
nginx's part
2023-09-10 15:10:22 -07:00
d9e0e8c70b
Making public files for websites buckets public readable
2023-08-09 21:51:21 -07:00
87a549bc1f
* Load balancer components are now built dynamically for each domain
...
+ Increased health_check intervals
+ HTTPS default action is now a blank 400 page
+ Generating listener rules for beta proxy based on bucket names/domains
Using domain filters for this basically
* Dynamically attaching listener certificates
2023-03-10 21:37:35 -08:00
42e55f7313
Task definition now uses the correct image and env vars
...
Services are now mapped to their respective task definitions
2023-03-10 21:34:06 -08:00
28f8436768
Using new s3 access & secret key for s3 reader role
2023-03-10 21:33:24 -08:00
dfdc62f80c
Consolidating locals into one place
...
Also adding -input=false to Makefile
2023-03-10 21:32:56 -08:00
17d3f66073
Simplifying nginx vars
2023-03-06 18:35:07 -08:00
550cb2eb70
Removing unused infra structure, lowering cost with this commit
2023-03-06 15:51:43 -08:00
8f375def3b
Updating bucket names to include blog and resume
2023-02-28 21:04:26 -08:00
321734a453
Adding redirect for 80 which was causing issues on folder path calls to nginx
2023-02-14 18:52:23 -08:00
11ffc23871
Cleaning up DNS Records and updating certs to account for root domains
...
For now we're just going to worry about the main blog and resume.shockrah.xyz
In the reverse-proxy image
* Resume pipelines will not work in this state and will need way of updating
their part of the image for ECS to pull updates*
2023-02-11 20:56:52 -08:00
904b730362
blog.shockrah.xyz working at an infrastructure level now
...
Also updated the image so that it has the right baseURL
which gets configured during the service build ( Hugo )
2023-02-10 22:07:26 -08:00
53267daf99
Avoiding hard coded values and improving cluster name
2023-02-10 21:30:20 -08:00
1170e879f0
Consolidating roles for ecr and logging
2023-02-10 21:28:49 -08:00
5e978b5766
Creating s3 bucket for static content
2023-01-21 16:58:11 -08:00
57965a2a5a
Replacing target group with proper shockrah.xyz group
2023-01-10 00:28:27 -08:00
01e6d7f990
Attaching project-athen.xyz cert onto alpha LB SSL listener
2023-01-09 21:13:19 -08:00
8481a5f123
Creating base certificates for shockrah and project-athens.xyz
2023-01-09 21:12:19 -08:00
99bc6be5c9
Removing sample infra
2023-01-09 18:21:26 -08:00
f48eb9610b
Wildcard for sample project
2023-01-09 17:03:40 -08:00
bc096af870
Routing & TLS issues fixed with ACM
2023-01-02 19:10:08 -08:00
bdeb59e46d
Health problems finally solved with LB and fargate
2023-01-02 19:08:25 -08:00
edbb647c18
Adding DNS entry for alpha load balancer cert
2023-01-02 18:37:16 -08:00
f96f6569cf
Cert with load balancer listener
2023-01-02 18:36:48 -08:00
97205a216c
Cleaning up route53 entries
2022-12-27 22:03:46 -08:00
e2c4db294a
Renaming project-athens.xyz route53 config
2022-12-27 21:08:19 -08:00
dcd3da5e47
Removing custom health check for now
2022-12-27 21:06:20 -08:00
00edcc64af
Formatting and comments
2022-12-27 21:02:56 -08:00
52a9a94b32
Importing shockrah.xyz A records into terraform
2022-12-27 21:01:46 -08:00
f58fa4ae69
Adding shockrah.xyz public dns records
2022-12-27 20:45:32 -08:00
4e46f34440
Imported route53 zone + records
2022-12-27 17:33:23 -08:00
ae61177661
Alpha configuration which still wont register
2022-12-16 22:51:05 -08:00
c4e169efee
Tagging subnets
2022-12-16 22:50:45 -08:00
f47ce5e4ff
Adding fallback for port 80 on base ecs
2022-12-16 22:50:15 -08:00
6b0f985cd9
Adding generic health check for sample service
2022-12-16 22:49:55 -08:00
fafaae4ba7
Logging and role configuration speerated
2022-12-16 22:05:21 -08:00
791d950821
Moving prefix to vars file
2022-12-09 22:23:13 -08:00
4d15923af9
ALB requires two subnets to sit across
2022-12-09 22:23:04 -08:00
d4dae7618b
Hooking service to a load balancer
2022-12-09 22:22:47 -08:00
6212a7d8cc
Removing atlas host
2022-12-09 21:49:17 -08:00
9d426917f7
Working sample service with ECS
...
for now this is just a hello world service with a public IP
2022-12-09 20:55:30 -08:00
e830889432
Creating definition for alpha and lewdlad service
2022-12-06 19:53:48 -08:00
3ef52017c1
New version of alpha named atlas ready for provisioning
2022-10-29 15:50:40 -07:00
ae8816bbc6
* Better build scripts which are now source aware
2022-10-21 20:56:07 -07:00
