Temp repo for Bagel-baking infrastructure
Find a file
emily 4e87e35bb5
feat(forgejo): offload custom forgejo package into its own repository
It has been a recurring issue that flake lockfile bumps in this repo
here make the forgejo patches no longer apply.

The dedicated repository (nix-forgejo) solves this by not overriding the
existing forgejo derivation from nixpkgs but rather having its own.

Additionally, nix-forgejo pins and uses a "known good" nixpkgs revision
itself, unless `pkgs` is passed on import.

So if issues should arise after a flake bump, we can use that revision
by modifying our import statement, or we can rollback the nix-forgejo
revision itself.

Moving forgejo out of tree also makes iterating on it a lot easier and
opens a lot of other possibilities :)
2024-12-18 03:39:37 +01:00
common feat: introduce awareness module for WAN addresses 2024-12-14 21:47:53 +01:00
dashboards feat(grafana): plug jsonnet-based dashboards in provisioning 2024-08-24 16:32:21 +02:00
hosts feat: listen on Gerrit events and rewrite them as generic VCS events 2024-12-16 01:25:53 +01:00
lib Add a wrapper to colmena that stops unintended toe-stepping 2024-07-24 07:25:25 +00:00
overlays fix: pin pyroscope to go 1.22 2024-11-12 23:16:46 +03:00
secrets feat: listen on Gerrit events and rewrite them as generic VCS events 2024-12-16 01:25:53 +01:00
services feat(forgejo): offload custom forgejo package into its own repository 2024-12-18 03:39:37 +01:00
terraform fix: disable IPv4 on amqp.forkos.org 2024-12-15 16:51:45 +01:00
.editorconfig editorconfig: init 2024-07-13 01:10:18 +00:00
.envrc chore: add lorri to prevent direnv from blocking, closes #147 2024-10-27 09:42:11 +00:00
.gitignore gitignore: add secrets (but not encrypted secrets) to gitignore 2024-07-15 11:02:54 +00:00
flake.lock feat(forgejo): offload custom forgejo package into its own repository 2024-12-18 03:39:37 +01:00
flake.nix feat(forgejo): offload custom forgejo package into its own repository 2024-12-18 03:39:37 +01:00
LICENSE Initial commit 2024-06-23 06:41:53 +02:00
README.md docs(README.md): explain how to deploy things 2024-10-06 08:09:53 +00:00
secrets.nix feat: listen on Gerrit events and rewrite them as generic VCS events 2024-12-16 01:25:53 +01:00

Infrastructure for the donut shaped thing that is absolutely not a donut.

Quick start

Build the infrastructure

$ colmena build --on @localboot

Notice that @localboot is load-bearing as we have some machines that cannot be deployed with vanilla Colmena. Fixing this is welcome.

$ colmena apply dry-activate $machine # Verify that the nvd log is reasonable.
$ colmena apply $machine
$ nix flake update
$ colmena apply dry-activate --on @localboot # Verify that the nvd log is reasonable. Run it twice to get only NVD logs shown.
$ colmena apply --on @localboot

Troubleshooting

I failed to deploy gerrit01

Our Gerrit source build is known to have some hiccups sometimes, we are always interested in build logs, feel free to attach information in a new issue so we can make it more reliable.