pez-infra/.github/workflows
Rasmus Wejlgaard d2ec024e6a Give Terraform CI tailnet access for the Proxmox provider
The bpg/proxmox provider has to reach london-a's API and node, which only
live on the tailnet, during plan and apply. Add a setup-tailnet composite
action (Tailscale via the CI OAuth client + the deploy SSH key in an agent)
and use it in the terraform plan/apply and validate workflows. Pin the
provider's node SSH address to london-a's Tailscale IP so it isn't reached
via the API-reported LAN address.
2026-06-21 18:20:02 +01:00
..
_deploy-core.yml ci: extract shared SOPS/tofu steps into composite actions (#135) 2026-06-18 20:27:54 +01:00
deploy-on-merge.yml fix: stop masking failed service deploys; trim dead config (#119) 2026-06-04 18:41:24 +01:00
deploy.yml hotfix: broken pipeline (#109) 2026-05-15 20:19:56 +01:00
lint-ansible.yml chore(deps): bump the github-actions group across 1 directory with 2 updates (#117) 2026-06-05 21:13:03 +01:00
lint-docker-compose.yml fix: update checkout version to dodge deprecation (#77) 2026-04-26 18:13:38 +01:00
terraform.yml Give Terraform CI tailnet access for the Proxmox provider 2026-06-21 18:20:02 +01:00
validate-caddyfile.yml ci: make Caddyfile validation download robust (#134) 2026-06-15 20:38:21 +01:00
validate-terraform.yml Give Terraform CI tailnet access for the Proxmox provider 2026-06-21 18:20:02 +01:00