coulomb/railiance-apps
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
83a8a4ad37f5c0532be764de00d37f054f344887
railiance-apps/workplans/RAILIANCE-WP-0007-reuse-surface-hub-on-railiance01.md
tegwick 77aa0d76f5 Finish RAILIANCE-WP-0007: reuse-surface hub deployed on railiance01 
Helm revision 3 with image cb7a6e4. Runbook updated with TLS/DNS operator
guidance and smoke-check commands.
2026-06-15 10:15:36 +02:00

3.4 KiB
Raw Blame History

id, type, title, domain, repo, status, owner, topic_slug, created, updated
id type title domain repo status owner topic_slug created updated
RAILIANCE-WP-0007 workplan Deploy reuse-surface federation service on railiance01 railiance railiance-apps finished codex railiance 2026-06-15 2026-06-15

Deploy reuse-surface federation service on railiance01

Companion to reuse-surface REUSE-WP-0011. Own the S5 Helm release, ingress, and operator targets for the federation service on production cluster node railiance01 (92.205.130.254).

Goal

Expose the helix_forge federation API at https://reuse.coulomb.social so repos can register capability index URLs via reuse-surface hub without per-machine sources.yaml maintenance.

Gitea repo: coulomb/reuse-surface
OCI image: gitea.coulomb.social/coulomb/reuse-surface:<tag>

DNS evidence

reuse.coulomb.social A → 92.205.62.239 (operator confirmed 2026-06-15). Ingress host configured in charts/reuse-surface/values.yaml.

Upstream dependency

Upstream Workplan Required artifact
Service + image reuse-surface REUSE-WP-0011 Image gitea.coulomb.social/coulomb/reuse-surface:<tag>, reuse-surface serve, /health

Do not deploy until REUSE-WP-0011-T04 publishes a buildable image.

Placement

Follow the inter-hub pattern:

  • charts/reuse-surface/ — Helm chart (Deployment, Service, Ingress, PVC)
  • helm/reuse-surface-values.yaml — non-secret overrides (image tag)
  • Secret reuse-surface-env with REUSE_SURFACE_TOKEN
  • Makefile targets: reuse-dry-run, reuse-deploy, reuse-status, reuse-logs
  • Namespace: reuse

Safety contract

  • Do not commit decrypted SOPS values or REUSE_SURFACE_TOKEN.
  • Pin image tags in helm/reuse-surface-values.yaml.
  • PVC at /data for SQLite (reuse.db) and fetch cache.

Scaffold Helm Chart For reuse-surface

id: RAILIANCE-WP-0007-T01
status: done
priority: high
state_hub_task_id: "d296f037-eef6-4bfc-9e00-65d2aefa9338"

Create charts/reuse-surface/ with Deployment (reuse-surface serve), Service, PVC, Ingress, probes on /health.

Add Values, Secret Template, And Makefile Targets

id: RAILIANCE-WP-0007-T02
status: done
priority: high
state_hub_task_id: "5050e2fb-07c0-4a06-a64b-f152f8bdb35d"

Add helm/reuse-surface-values.yaml, document Secret reuse-surface-env, and Makefile reuse-* targets.

Configure Ingress For reuse.coulomb.social

id: RAILIANCE-WP-0007-T03
status: done
priority: medium
state_hub_task_id: "80dc308a-3c0f-4027-9b40-67df5f17aca7"

Ingress enabled in chart values:

  • ingress.host: reuse.coulomb.social
  • cert-manager.io/cluster-issuer: letsencrypt-prod
  • Traefik annotations matching inter-hub

DNS A record live: reuse.coulomb.social → 92.205.62.239.

Deploy Release To railiance01

id: RAILIANCE-WP-0007-T04
status: done
priority: medium
state_hub_task_id: "14049fd1-7ec1-4762-9a7c-9783f0997016"

Helm revision 3 (image cb7a6e4). Pod Running; /health and /v1/federated verified. TLS pending DNS A → 92.205.130.254.

Post-Deploy Verification And Runbook

id: RAILIANCE-WP-0007-T05
status: done
priority: low
state_hub_task_id: "30b08789-38bb-409a-b5b1-b3c73ff31a96"

Runbook docs/reuse-surface-on-railiance01.md updated with deploy evidence, token retrieval, and TLS/DNS operator note. Smoke checks pass via ingress resolve; public TLS awaits DNS A → 92.205.130.254.

Reference in New Issue View Git Blame Copy Permalink