coulomb/railiance-cluster
2
0
Fork 0
Code Issues Pull Requests Actions 1 Projects Releases Wiki Activity
98 Commits 1 Branch 0 Tags
b117237b76b549f894f99db44dc80717c5af587d
Commit Graph

98 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
tegwick
b117237b76 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 06:21:10 +02:00
tegwick
164f59208f chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 06:21:01 +02:00
tegwick
75b54be05e chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 06:06:35 +02:00
tegwick
224aba2074 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 06:06:26 +02:00
tegwick
135ee3f62e chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 05:52:06 +02:00
tegwick
776e7c49f0 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 05:51:54 +02:00
tegwick
5f3ed56c12 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 05:37:31 +02:00
tegwick
07e78466e6 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 05:37:19 +02:00
tegwick
73a11df3aa chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 05:23:00 +02:00
tegwick
39c71867de chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 05:22:48 +02:00
tegwick
335447e128 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 05:08:21 +02:00
tegwick
1e35788a4c chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 05:08:13 +02:00
tegwick
f9098e2dea chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 04:53:49 +02:00
tegwick
977343f712 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 04:53:41 +02:00
tegwick
171ece866a chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 04:39:16 +02:00
tegwick
438fd22704 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 04:39:04 +02:00
tegwick
baed899a07 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 04:24:43 +02:00
tegwick
bc2107a339 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 04:24:31 +02:00
tegwick
93b4689f20 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 04:10:06 +02:00
tegwick
74d187dea0 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 04:09:55 +02:00
tegwick
08cd460fcf chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 03:55:32 +02:00
tegwick
77a799c7fd chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 03:55:21 +02:00
tegwick
a4448b8688 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 03:40:53 +02:00
tegwick
8af0e197ba chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 03:40:41 +02:00
tegwick
b7b1822f35 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 03:26:16 +02:00
tegwick
c028150a1f chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 03:26:06 +02:00
tegwick
ea00ae3453 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 03:11:36 +02:00
tegwick
b63689ba33 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 03:11:25 +02:00
tegwick
d949dbee30 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 02:56:58 +02:00
tegwick
9d220b6649 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 02:56:46 +02:00
tegwick
493356a1a3 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 02:42:21 +02:00
tegwick
50b1fb3b08 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 02:42:10 +02:00
tegwick
58cf10c5a1 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 02:28:33 +02:00
tegwick
3202475bed chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-bootstrap
 2026-04-21 02:28:18 +02:00
tegwick
0e2cde0b82 chore(consistency): sync task status from DB [auto]
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Updated by fix-consistency on 2026-04-21:
  - update .custodian-brief.md for railiance-cluster
 2026-04-21 02:15:02 +02:00
tegwick
595a043634 feat(boundary): move Gitea Helm values to railiance-apps (T06)
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
gitea-values.sops.yaml relocated to railiance-apps/helm/ per
ADR-003 boundary rules — Gitea is S5, values belong in S5 repo.
Tombstone left in helm/MOVED.md. SCOPE.md updated to reflect
resolved violation.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-27 13:23:41 +01:00
tegwick
9fc5a033d5 feat(s2): add Gitea SSH NodePort service + close WP-0004 (backup tool, scope updates)
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
- helm/gitea-ssh-nodeport.yaml: expose Gitea SSH on NodePort 30022 (targetPort 2222)
  for on-node git automation (RAIL-HO-WP-0004-T07)
- tools/cmd/railiance-backup-s2: fix SQLite hot backup (was broken etcd-snapshot)
- tools/cmd/railiance-restore-s2: update restore instructions for SQLite mode
- workplans/RAIL-BS-WP-0004-safety-net.md: mark done
- SCOPE.md: update current state, document boundary violations, fix connectivity docs

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-27 01:07:02 +01:00
tegwick
943d0f3e80 chore(consistency): sync task status from DB [auto] 
Updated by fix-consistency on 2026-03-26:
  - update .custodian-brief.md for railiance-bootstrap
 2026-03-27 01:07:01 +01:00
tegwick
6eaf20d4d0 chore(consistency): sync task status from DB [auto] 
Updated by fix-consistency on 2026-03-26:
  - update .custodian-brief.md for railiance-cluster
 2026-03-27 01:07:01 +01:00
Bernd Worsch
2420915d30 fix(backup): SQLite hot backup instead of etcd snapshot
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
k3s runs in SQLite mode (no --cluster-init). Replace etcd-snapshot
with sqlite3 .backup for a WAL-aware hot copy of state.db.
Update restore guide to match. Cron installed under root crontab.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-26 21:56:19 +00:00
tegwick
ee6d7b149e new workplan
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details
2026-03-20 23:43:17 +01:00
tegwick
a747445790 Updated scope 2026-03-20 23:42:59 +01:00
tegwick
6431bfab79 chore(sbom): add system-level tool dependency manifest
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Captures k3s, helm, kubectl, goss, sops, and age as direct tool
dependencies for railiance-cluster. Versions are unresolved (confidence:
low) — no version pins exist in the repo yet.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-18 18:31:12 +01:00
tegwick
2acc06f466 docs: add SCOPE.md for rapid orientation 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-17 23:11:38 +01:00
Bernd Worsch
4e1a90032b fix(backup): elevate sudo in Makefile and guard mkdir after root check
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
- `make backup` now invokes `sudo tools/cmd/railiance-backup-s2` directly
- Move `mkdir -p` in railiance-backup-s2 to after the root check so the
  script emits a clear error instead of a raw permission-denied failure

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 22:33:49 +00:00
tegwick
7e28399f69 feat(backup): implement S2 integrated backup — WP-0004 T01-T04
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
tools/cmd/railiance-backup-s2:
  - k3s etcd snapshot (age-encrypted)
  - Helm release values for all namespaces (age-encrypted)
  - kubeconfig /etc/rancher/k3s/k3s.yaml (age-encrypted)
  - output: /opt/backup/railiance/cluster/, keep last 7, .last-backup stamp
  - requires root, no network dependency

tools/cmd/railiance-restore-s2:
  - lists available backups with sizes
  - prints step-by-step restore instructions for each artifact type

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 21:17:54 +01:00
Bernd Worsch
66f8ca4009 docs(wp-0004): add implementation notes for sudo, etcd, helm, cron
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
T02: note to verify etcd is in use before implementing; flags root requirement
T03: add KUBECONFIG to helm commands; note root access approach
T06: document solution to sudo problem — run cron under root's crontab,
     not a sudoers whitelist. Add restore drill commands. Fix cron to use
     absolute path (~ unreliable in root crontab).
T01: note to remove old railiance-backup script (wrong scope)
Makefile: fix stale backup description, add restore target, fix .PHONY

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 16:52:40 +00:00
tegwick
5b0cfbf10a feat(backup): revise WP-0004 — integrated backup per capability (D4)
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
WP-0004 rewritten: scope narrowed to S2-owned assets (etcd snapshots,
Helm values, kubeconfig). No external dependencies. age encryption
reuses SOPS key pair. Output to /opt/backup/railiance/cluster/.

DECISIONS.md D4: integrated backup per capability, not centralized.
EP-RAIL-005 registered in state hub: custodian orchestration deferred
until all layers implement the standard interface.

The old monolithic backup (custodian DB + operator config) was not S2's
concern and has been removed from this workplan scope.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 17:43:30 +01:00
Bernd Worsch
719e4f40d1 fix(wp-0004): correct T05 scope — server backup is Gitea+Zulip via railiance-infra
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
The railiance-backup script targets a developer workstation (custodian DB
in Docker + Claude config). It is not applicable to the server.

Server backup (Gitea repos + Zulip data) belongs in railiance-infra as an
Ansible role. T05 now documents this correctly and blocks wiring up a cron
job until the right script exists.

Also removed the incorrectly installed cron job that called the broken script.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 14:51:42 +00:00
tegwick
a15ceee92b chore(workplan): add state_hub_task_ids to WP-0004
Some checks failed
railiance-tests / smoke (push) Has been cancelled
Details 
Written by fix-consistency: T01-T06 registered in state hub.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 15:24:28 +01:00