titan-iac

Author	SHA1	Message	Date
Brad Stein	6815a67c1f	maintenance(soteria): roll out 0.1.0-35	2026-04-13 16:51:46 -03:00
Brad Stein	deefdb53ad	maintenance(soteria): roll out 0.1.0-34	2026-04-13 14:23:24 -03:00
Brad Stein	4e4c310cd4	maintenance(soteria): roll out 0.1.0-33	2026-04-13 13:58:44 -03:00
Brad Stein	df79cad1c3	maintenance(soteria): grant pod logs and roll out 0.1.0-32	2026-04-13 12:51:38 -03:00
Brad Stein	b3d8b13f39	maintenance(soteria): roll pvc-node pin fix and pod-read rbac	2026-04-13 03:32:25 -03:00
Brad Stein	a23b6a4b93	maintenance(soteria): move restic vault path to shared scope	2026-04-13 03:01:29 -03:00
Brad Stein	38abbd9fe1	maintenance(vault): roll sync pod after soteria secret mapping	2026-04-13 02:55:42 -03:00
Brad Stein	ac12a9bfed	maintenance(soteria): source restic credentials from vault	2026-04-13 02:54:05 -03:00
Brad Stein	f25186ef7e	maintenance(soteria): switch to encrypted restic backups	2026-04-13 02:14:39 -03:00
Brad Stein	a01dc0813a	maintenance(soteria): enable b2 usage scan config and alert	2026-04-12 19:47:58 -03:00
Brad Stein	75a992b829	maintenance(soteria): tighten oauth2 ingress and drill validation	2026-04-12 14:58:25 -03:00
Brad Stein	7b3dfa335b	maintenance(soteria): harden ingress path and add backup alerts	2026-04-12 12:12:43 -03:00
Brad Stein	e1bba18b52	maintenance: set explicit jenkins cleanup schedule	2026-04-12 11:36:50 -03:00
Brad Stein	52882f1bb5	maintenance(soteria): add serviceaccount and rbac manifests	2026-04-12 11:36:33 -03:00
Brad Stein	5128741c53	maintenance: default jenkins cleanup to dry-run	2026-04-12 11:28:48 -03:00
Brad Stein	96f923ae4c	maintenance(soteria): add protected UI, OIDC bootstrap, and backup health panel wiring	2026-04-12 11:16:29 -03:00
Brad Stein	95bc3953d1	maintenance: wire jenkins cleanup permissions	2026-04-12 11:00:50 -03:00
Brad Stein	f4e921bb33	scheduling: keep app workloads off control-plane	2026-04-12 04:26:52 -03:00
Brad Stein	616c6308b1	maintenance: remove pi-usb-scratch guard rollout	2026-04-12 01:02:41 -03:00
Brad Stein	d9b30d6c5b	maintenance(pi-usb-scratch): skip k3s runtime rsync during cutover	2026-04-11 12:11:15 -03:00
Brad Stein	7c337ad5a1	maintenance(pi-usb-scratch): disable rollout jitter for initial cutover	2026-04-11 12:00:30 -03:00
Brad Stein	3823b68ee2	maintenance(pi-usb-scratch): fix false mount conflict detection	2026-04-11 11:57:50 -03:00
Brad Stein	40de2b59a5	maintenance: enforce Astraios + tmpfs /tmp on worker Pis	2026-04-11 11:54:43 -03:00
Brad Stein	5483c04bb3	maintenance: add worker pi usb scratch rollout	2026-04-11 01:03:42 -03:00
Brad Stein	64b4f14018	ariadne: remove remaining cronjobs and migrate schedule ownership	2026-04-10 22:40:58 -03:00
Brad Stein	166020ca1d	ariadne: migrate glue cronjobs to schedules	2026-04-10 21:22:35 -03:00
Brad Stein	764bfe189e	monitoring/recovery: harden ananke checks and OIDC-gated service validation	2026-04-09 01:44:26 -03:00
Brad Stein	a4631dee81	maintenance: migrate metis ssh key names to ananke	2026-04-07 04:36:42 -03:00
Brad Stein	5e387e8e4d	maintenance/metis: remove legacy hecate ssh key vars	2026-04-06 19:43:16 -03:00
Brad Stein	1ccb04a18a	maintenance/metis: default missing ananke ssh keys to empty	2026-04-06 19:36:01 -03:00
Brad Stein	25ea022c2e	maintenance/metis: migrate ssh key vars to ananke	2026-04-06 19:28:44 -03:00
Brad Stein	801dde8242	maintenance: harden k3s traefik disable cleanup	2026-04-06 01:47:32 -03:00
Brad Stein	2a9485d9e0	maintenance: disable ariadne vault auth/oidc policy sync cron	2026-04-05 17:40:40 -03:00
Brad Stein	2799b54b08	maintenance: pin metis to available image tag	2026-04-05 17:05:31 -03:00
Brad Stein	3ce7b2eeb7	maintenance/monitoring: wire reciprocal metis hecate key + dampen alert flapping	2026-04-05 13:51:57 -03:00
Brad Stein	8d1be9672c	maintenance/metis: bump runner tags to 0.1.0-23	2026-04-05 11:41:02 -03:00
Brad Stein	deb52c424b	maintenance/vault: move Metis runtime secrets to Vault	2026-04-05 11:31:05 -03:00
Brad Stein	0828f0cf9e	maintenance: inject metis SSH keys directly from Vault	2026-04-05 10:31:20 -03:00
Brad Stein	e84399d0b1	maintenance: source metis SSH keys from Vault	2026-04-05 10:25:29 -03:00
Brad Stein	1c9716d855	maintenance: pass bastion key into metis env	2026-04-05 10:18:13 -03:00
Brad Stein	0fc5ac3041	maintenance/metis: read optional ssh pubkeys from secret env	2026-04-05 10:07:09 -03:00
Brad Stein	e418183f56	maintenance(metis): roll deployment after config update	2026-04-02 01:27:23 -03:00
Brad Stein	8e711c4666	maintenance(metis): raise media size ceiling to 1TB	2026-04-02 01:26:38 -03:00
Brad Stein	0c2f769875	maintenance(metis): re-enable titan-24 flash host list	2026-04-02 01:22:49 -03:00
Brad Stein	1e3352b94a	maintenance: roll metis runtime to 0.1.0-21	2026-04-01 13:16:04 -03:00
Brad Stein	db357dca2c	maintenance: roll metis runtime to 0.1.0-20	2026-04-01 13:00:59 -03:00
Brad Stein	7d0c474f4d	maintenance: enable jetson sources and roll metis to 0.1.0-19	2026-04-01 12:53:50 -03:00
Brad Stein	5ec3b2b992	maintenance: roll metis runtime to 0.1.0-18	2026-04-01 12:47:27 -03:00
Brad Stein	aacaee2052	maintenance: roll metis runtime to 0.1.0-17	2026-04-01 12:30:04 -03:00
Brad Stein	572cb018c4	maintenance: roll metis runtime to 0.1.0-16	2026-04-01 11:14:49 -03:00

1 2 3 4

156 Commits