RWejlgaard/pez-infra
1
0
Fork 0
mirror of https://github.com/RWejlgaard/pez-infra.git synced 2026-05-06 04:14:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
88 commits 1 branch 0 tags 604 KiB
Commit graph

9 commits

Author SHA1 Message Date
Rasmus "Pez" Wejlgaard
1c6784eade
fix: replace tailscale authkey use with oauth (#76)
Some checks are pending
Deploy (on merge) / Discover hosts (push) Waiting to run
Details
Deploy (on merge) / Deploy → (push) Blocked by required conditions
Details
2026-04-26 17:30:15 +01:00
Rasmus "Pez" Wejlgaard
e9fbd41cb4
fix: deploy using a matrix (#75) 2026-04-26 14:35:12 +01:00
Rasmus "Pez" Wejlgaard
ed6eb22f60
Remove cloudflared — replaced by Caddy reverse proxy (#56) 
Cloudflared tunnels are no longer used. All traffic now routes through
Cloudflare DNS to Caddy on helsinki-a over Tailscale.

- Remove cloudflared systemd unit files (copenhagen-a, london-b)
- Remove cloudflared from media_stack role and copenhagen-a host_vars
- Remove cloudflared references from services README and host docs
- Remove cloudflared deploy trigger from CI workflow

Live service on london-b stopped and disabled. copenhagen-a was
unreachable but the tunnel is unused regardless.
 2026-04-03 22:51:12 +01:00
Rasmus "Pez" Wejlgaard
25d201f930
Add copenhagen-a to docker_hosts and wire up minecraft docker service (#52) 
- Add copenhagen-a to [docker_hosts] inventory group so the docker role
  runs on it in Stage 2
- Add docker_services: [minecraft] to copenhagen-a host_vars
- Add docker_services role to Stage 4d (copenhagen-a) in deploy.yml
- Update deploy-on-merge scope mapping to include copenhagen-a for
  docker role changes

Closes PESO-132
 2026-04-03 19:50:51 +01:00
Rasmus "Pez" Wejlgaard
a31f8b5651
Add systemd_exporter Ansible role and Prometheus scrape config (#49) 
* Add systemd_exporter Ansible role and Prometheus scrape config

- Create systemd_exporter role (download binary, create user, deploy service)
- Add scrape job for london-b:9558 and copenhagen-a:9558
- Add systemd_exporter_hosts inventory group
- Add stage 3b to deploy.yml
- Map role to deploy-on-merge scope

Closes PESO-120

* Fix line length lint violations in systemd_exporter tasks

* Fix var-naming lint: use systemd_exporter_ prefix for role variables
 2026-04-03 12:23:38 +01:00
Rasmus "Pez" Wejlgaard
8f5eb385cc
Remove copenhagen-a from docker role mapping in deploy-on-merge (#48) 
copenhagen-a is not in [docker_hosts] inventory group. Running the
docker role play against it just gets skipped, wasting CI time.

Fixes PESO-121
 2026-04-03 11:49:41 +01:00
Rasmus "Pez" Wejlgaard
b6c8c18106
deploy-on-merge: add path-based host limiting (#41) 
Instead of deploying to the entire fleet on every merge, detect which
files changed and limit ansible-playbook to only affected hosts.

Maps ansible roles, services, and host_vars to their target hosts.
Falls back to full fleet deploy for unmapped paths or changes to
shared infrastructure (common role, deploy.yml, inventory).

Closes PESO-108
 2026-04-03 02:19:55 +01:00
Rasmus "Pez" Wejlgaard
20274d49d4
ci: add ansible-galaxy collection install to deploy workflows (#39) 
Both deploy-on-merge.yml and deploy.yml install ansible via pip but
never install the required Galaxy collections (community.docker,
community.general, ansible.posix) from ansible/requirements.yml.

This works by accident because the pip ansible package bundles some
collections, but it's fragile — a pip upgrade or runner image change
could break deploys silently.

Fixes PESO-110
 2026-04-03 01:18:30 +01:00
Rasmus Wejlgaard
737d6e0bc1 initial commit 2026-03-28 12:39:41 +00:00