coulomb/railiance-infra
0
0
Fork 0
Code Issues Pull Requests Actions Projects Releases Wiki Activity
1,978 Commits 1 Branch 0 Tags
main
Commit Graph

12 Commits

Author SHA1 Message Date
tegwick
2ad38b4a1a docs: start Forgejo migration inventory 2026-06-04 01:34:33 +02:00
tegwick
2d7e0101bc feat(infra): UFW k3s routing + full deploy runbook 
- base role: allow UFW routing direction (required for k3s flannel
  pod networking to function across nodes)
- docs/deploy-stack.md: full S1→S5 ordered deploy runbook with
  pre-conditions checklist and layer-by-layer steps

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-27 02:28:51 +01:00
tegwick
a680fb51af feat(adr): add ADR-003 (5-repo OAS stack); supersede ADR-002 
ADR-003 formalises the 5-repo structure aligned with OAS Stack S1-S5:
railiance-infra, railiance-cluster, railiance-platform,
railiance-enablement, railiance-apps. Defines boundary rule, pre-condition
chain, and content relocation table. ADR-002 marked superseded.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 00:27:18 +01:00
tegwick
b32dfd4f5a docs: add verification guide, close WP-0002 
- docs/verification.md: explains spec/server-baseline.yaml, goss/baseline.yaml,
  make verify workflow, assertion mapping table, and how to add new checks
- docs/convergence.md: replace manual spot-check snippet with make verify reference
- workplans/RAIL-HO-WP-0002: mark completed (all tasks done, workstream closed)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 19:37:10 +01:00
tegwick
8f5799553e feat: implement WP-0002 — Goss test suite, verify playbook, and ADR-002 
- goss/baseline.yaml: assertions for all spec/server-baseline.yaml items
  (packages, services, SSH config, UFW rules, admin user, fail2ban, HISTCONTROL)
- goss/vars/baseline-vars.yaml: parameterised ports and paths
- ansible/roles/goss/: installs Goss binary (v0.4.9), deploys tests,
  runs assertions in TAP format, fetches report to reports/
- ansible/playbooks/verify.yaml: playbook wrapping the goss role
- Makefile: add 'make verify' target; update 'make status' with hint
- docs/adr/ADR-002: formal repo boundary — railiance-hosts vs railiance-bootstrap
- workplans/RAIL-HO-WP-0002: registered workstream 8fed53c2, T03–T06 done

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 12:38:48 +01:00
Bernd Worsch
492f605895 docs: establishing baseline security and tools 2025-09-14 04:10:57 +02:00
Bernd Worsch
26d2854c07 docs: added fast path documentation 2025-09-14 01:08:26 +02:00
Bernd Worsch
389c20478f docs: add documentation for provisioning a server 2025-09-14 00:57:26 +02:00
Bernd Worsch
75af105f6c docs: added documentation about setting up ssh-access 2025-09-14 00:47:41 +02:00
Bernd Worsch
1192a0cece docs: added secrets handling digest 2025-09-13 22:52:18 +02:00
Bernd Worsch
59bc9bbcf4 docs: improved masterkey setup documentation 2025-09-13 22:48:15 +02:00
Bernd Worsch
31f30373a0 docs: add documentation about secret key generation 2025-09-13 20:47:24 +02:00