raito raito · he/him

0 followers · 0 following

• Joined on 2024-03-01
• • 

Repositories

5

Projects Packages Public activity Starred repositories

raito pushed to vcs-generalization at the-distro/ofborg 2025-01-03 21:28:30 +00:00

b23794207d feat(dev-config): add missing pieces

c1a8cefa67 feat(bin/build-faker): drop it

eaca596b3b feat(bin/statcheck-web): add support for mTLS

bc752e5e5c feat(web/auth): add mTLS middleware with arbitrary role support

f90b15873c feat(web/certs): init loading of mTLS certificates

Compare 12 commits »

raito opened issue the-distro/infra#163 2025-01-03 18:18:32 +00:00

Node aliases

raito commented on issue the-distro/infra#156 2025-01-02 17:41:12 +00:00

[Tracking Issue] Secret management at scale

OfBorg done in the-distro/infra#162. Next is PostgreSQL for Hydra. Terraform S3 requires a privileged sort of API to emit scoped keys which we do not have right now.…

raito deleted branch infra-automatic-pki from the-distro/infra 2025-01-02 17:40:16 +00:00

raito pushed to main at the-distro/infra 2025-01-02 17:40:16 +00:00

fb8eea1057 feat(services/ofborg/rabbitmq): pre-provision accounts, vhosts and permissions

e02af55beb feat(services/ofborg): add client mTLS for RabbitMQ via Vault

54bf48b1c9 feat(terraform/vault): add RabbitMQ server role

27e17b3f34 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

6774129851 feat(hosts/bagel-box): enable secrets-agent on this machine

Compare 10 commits »

raito merged pull request the-distro/infra#162 2025-01-02 17:40:14 +00:00

feat: vault agent enablement on OfBorg

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-02 17:39:53 +00:00

fb8eea1057 feat(services/ofborg/rabbitmq): pre-provision accounts, vhosts and permissions

e02af55beb feat(services/ofborg): add client mTLS for RabbitMQ via Vault

54bf48b1c9 feat(terraform/vault): add RabbitMQ server role

27e17b3f34 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

6774129851 feat(hosts/bagel-box): enable secrets-agent on this machine

Compare 8 commits »

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-02 17:24:33 +00:00

6466155768 feat(services/ofborg/rabbitmq): pre-provision accounts, vhosts and permissions

ab87514fe5 feat(services/ofborg): add client mTLS for RabbitMQ via Vault

4dab362c87 feat(terraform/vault): add RabbitMQ server role

3a7ae85502 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

e715a58d46 feat(hosts/bagel-box): enable secrets-agent on this machine

Compare 6 commits »

raito pushed to vcs-generalization at the-distro/ofborg 2025-01-01 16:39:21 +00:00

207f6c1393 refactor(vcs/generic): introduce ChangeStatus and remove CommitStatus

6eea6391cf feat(contrib/frontend/gerrit): design a simple status & check frontend for Gerrit

e835be0bf6 feat(statcheck): introduce status & checks server

a27b48e617 refactor(vcs/generic): promote Gerrit checks as the generic variant

22111b3847 chore(devshell): add event streaming & VCS filter in the dev Procfile

Compare 6 commits »

raito pushed to vcs-generalization at the-distro/ofborg 2025-01-01 16:33:19 +00:00

89f60cfde1 refactor(vcs/generic): introduce ChangeStatus and remove CommitStatus

ddbbb8a910 feat(contrib/frontend/gerrit): design a simple status & check frontend for Gerrit

74e57749fe feat(statcheck): introduce status & checks server

089c9192fd refactor(vcs/generic): promote Gerrit checks as the generic variant

fee0f8c6e3 chore(devshell): add event streaming & VCS filter in the dev Procfile

Compare 6 commits »

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-01 04:16:09 +00:00

0b190209dd feat(services/ofborg): add client mTLS for RabbitMQ via Vault

5a0cd6f1cf feat(terraform/vault): add RabbitMQ server role

c04781cf39 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

e9753ba650 feat(hosts/bagel-box): enable secrets-agent on this machine

a453595de2 feat(secrets): init the bagel-box vault token

Compare 5 commits »

raito pushed to vcs-generalization at the-distro/ofborg 2025-01-01 03:46:37 +00:00

82c12dfa67 refactor(vcs/generic): introduce ChangeStatus and remove CommitStatus

c930f8a2e7 feat(contrib/frontend/gerrit): design a simple status & check frontend for Gerrit

7dc6afc24f feat(statcheck): introduce status & checks server

a915b664fb refactor(vcs/generic): promote Gerrit checks as the generic variant

7e84133ad0 chore(devshell): add event streaming & VCS filter in the dev Procfile

Compare 6 commits »

raito pushed to vcs-generalization at the-distro/ofborg 2025-01-01 03:12:31 +00:00

582a893aed refactor(vcs/generic): introduce ChangeStatus and remove CommitStatus

2f8d0160f4 feat(contrib/frontend/gerrit): design a simple status & check frontend for Gerrit

378b2a495e feat(statcheck): introduce status & checks server

1ea8833954 refactor(vcs/generic): promote Gerrit checks as the generic variant

bcc8d1600d chore(devshell): add event streaming & VCS filter in the dev Procfile

Compare 6 commits »

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-01 02:50:25 +00:00

1f634346eb feat(terraform/vault): add RabbitMQ server role

b107091d50 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

21fca37bce feat(hosts/bagel-box): enable secrets-agent on this machine

Compare 3 commits »

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-01 02:43:26 +00:00

6ba24ad1cb feat(terraform/vault): add RabbitMQ server role

61aed32221 fix(terraform/vault/sub-ca): policy path calculation requires path resource IDs

a06e7b9747 feat(hosts/bagel-box): enable secrets-agent on this machine

c2b1d29cb6 feat(secrets): init the bagel-box vault token

9072613928 feat(services/secrets-agent): init

Compare 8 commits »

raito created pull request the-distro/infra#162 2025-01-01 01:21:55 +00:00

feat: vault agent enablement

raito created branch infra-automatic-pki in the-distro/infra 2025-01-01 01:20:48 +00:00

raito pushed to infra-automatic-pki at the-distro/infra 2025-01-01 01:20:48 +00:00

517774270e feat(systems): inject systemd-openbao project

3b9f1e24a6 feat(systems): trust our infra chain on all systems

Compare 2 commits »

raito pushed to main at the-distro/systemd-openbao 2025-01-01 01:16:10 +00:00

2479c46b0f feat(branding): rebrand the README for accurate documentation

raito created branch main in the-distro/systemd-openbao 2025-01-01 01:12:32 +00:00