Sofus Albert Høgsbro Rose
e3e2955ea0
|
||
|---|---|---|
| playbooks | ||
| stacks | ||
| .dockerignore | ||
| .editorconfig | ||
| .gitignore | ||
| .pre-commit-config.yaml | ||
| DEPLOYING.md | ||
| LICENSE | ||
| README.md | ||
| TODO.md | ||
| inventory.yml | ||
| run.sh | ||
README.md
Complete Infrastructure for DTU Python Support
Very heavily WIP
This project describes and implements the complete infrastructure for DTUs Python Support group.
The repository provides the following user-facing services:
-
timesigned.com: Modern, multilingual guide to using Python at DTU.
- SSG with mdbook w/plugins.
-
chat.timesigned.com: Modern asynchronous communication and support channel for everybody using Python at DTU.
- Instance of Zulip.
-
git.timesigned.com: Lightweight collaborative development for teams
-
auth.timesigned.com: Identity Provider allowing seamless, secure access to key services with their DTU Account.
- Instance of Authentik.
-
uptime.timesigned.com: Black-box monitoring with notifications
- Instance of Authentik.
References
Wireguard / systemd-networkd
systemd-networkdNetwork: https://www.freedesktop.org/software/systemd/man/systemd.network.htmlsystemd-networkdNetDev: https://man.archlinux.org/man/systemd.netdev.5- Setup Inspiration: https://elou.world/en/tutorial/wireguard
- Wireguard w/
systemd-networkd: https://wiki.archlinux.org/title/WireGuard#systemd-networkd - Network Test w/
iperf: https://www.redhat.com/sysadmin/network-testing-iperf3
Ansible
- DigitalOcean
droplet: https://docs.ansible.com/ansible/latest/collections/community/digitalocean/digital_ocean_droplet_module.html - CloudFlare
dns: https://docs.ansible.com/ansible/latest/collections/community/general/cloudflare_dns_module.html template: https://docs.ansible.com/ansible/latest/collections/ansible/builtin/template_module.htmlpassword-store: https://docs.ansible.com/ansible/latest/collections/community/general/passwordstore_lookup.htmlset-fact: https://docs.ansible.com/ansible/latest/collections/ansible/builtin/set_fact_module.htmlfile: https://docs.ansible.com/ansible/latest/collections/ansible/builtin/file_module.html
Docker Ansible
- Index: https://docs.ansible.com/ansible/latest/collections/community/docker/index.html
- Docker
swarmModule: https://docs.ansible.com/ansible/latest/collections/community/docker/docker_swarm_module.html - Docker
networkModule: https://docs.ansible.com/ansible/latest/collections/community/docker/docker_network_module.html - Docker
pruneModule: https://docs.ansible.com/ansible/latest/collections/community/docker/docker_prune_module.html - Docker
volumeModule: https://docs.ansible.com/ansible/latest/collections/community/docker/docker_volume_module.html
rclone
-
Docker Plugin Docs: https://rclone.org/docker/
-
rclonemount: https://rclone.org/commands/rclone_mount/ -
Docker Serve Docs: https://rclone.org/commands/rclone_serve_docker/#options
-
S3 Backend: https://rclone.org/s3/
-
Crypt Meta-Backend: https://rclone.org/crypt/
Swarm Deployment
- The Funky Penguin: https://geek-cookbook.funkypenguin.co.nz/docker-swarm
- Traefik Certificate Auto-Renewal: https://doc.traefik.io/traefik/https/acme/#automatic-renewals
- Traefik Service: https://doc.traefik.io/traefik/routing/services/#configuring-http-services