feat: New instance
This commit is contained in:
parent
02534685a1
commit
6d72562d90
10
README.md
10
README.md
@ -1,3 +1,11 @@
|
|||||||
# coreos
|
# coreos
|
||||||
|
|
||||||
Contient les fichiers d'initialisation de CoreOS.
|
Contient les fichiers d'initialisation de CoreOS.
|
||||||
|
|
||||||
|
## Butane
|
||||||
|
|
||||||
|
To convert yml in ignition file, use this command:
|
||||||
|
|
||||||
|
```bash
|
||||||
|
$ file=borgwarehouse-pumbaa.gaia.ykn.local; bin/butane-x86_64-unknown-linux-gnu --output $file.ign $file.yml
|
||||||
|
```
|
||||||
|
|||||||
BIN
bin/butane-x86_64-unknown-linux-gnu
Executable file
BIN
bin/butane-x86_64-unknown-linux-gnu
Executable file
Binary file not shown.
BIN
bin/ignition-validate-x86_64-linux
Executable file
BIN
bin/ignition-validate-x86_64-linux
Executable file
Binary file not shown.
1
borgwarehouse-pumbaa.gaia.ykn.local.ign
Normal file
1
borgwarehouse-pumbaa.gaia.ykn.local.ign
Normal file
@ -0,0 +1 @@
|
|||||||
|
{"ignition":{"version":"3.4.0"},"passwd":{"users":[{"name":"core","shouldExist":false},{"groups":["sudo"],"name":"alegall","passwordHash":"$y$j9T$61LMkIUWS6N.UQv3U4pxM1$Eodnc23AtXOvQMqm/qgqv7blGot4/8.OUsgIZazV9ND","sshAuthorizedKeys":["ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHXrbcIwTQkJPlURJTePjQXAE4Q1lCjPp2JW/Y/oxXzp alegall@mufasa","ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP/JatXrf/HkF8HAnL5JmC05DHmUcgB7/eptDeD7kAP5 alegall@zazu","ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFI2/UosyrHbR3NVB8JDWbhNnmTLMS6EuCRG52hP50Vh alegall@smartphone","ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINwBIdvpiFgEzP2B+h3KIFmmxh1l7MVetGy2cThmpxcP alegall@sightcall"]},{"name":"borgwarehouse","uid":1001}]},"storage":{"directories":[{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/config","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/ssh","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/etc_ssh","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/repos","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/logs","user":{"name":"borgwarehouse"},"mode":488},{"group":{"name":"borgwarehouse"},"overwrite":true,"path":"/srv/borgwarehouse/tmp","user":{"name":"borgwarehouse"},"mode":488}],"files":[{"path":"/etc/hostname","contents":{"compression":"","source":"data:,borgwarehouse-pumbaa.gaia.ykn.local"},"mode":420},{"path":"/etc/vconsole.conf","contents":{"compression":"","source":"data:,KEYMAP%3Dfr"},"mode":420},{"path":"/etc/NetworkManager/system-connections/ens3.nmconnection","contents":{"compression":"gzip","source":"data:;base64,H4sIAAAAAAAC/3SPwW7DIAyG7zzLYCHtqiYVT1L14IIJaGAiMJvy9lOaw6RJO9r6/X+f77YQoeVY6CGiM0jtJHhb0SAHrIQsIjFWDxYlQcYjIe5x/To/BDhXsTVt9DQqfbkqrfTwPp7ffufx4yxcsKsMpfGr4Vnq8g0VQ+kN5drzE0AtEEFtn6RSsZCEo2b0dFJaD+qq1XTbN7IhVBvMn2xcqFSU0LnI/Y5rR5Fhkx5iMh5SQ5GRQ3EmA3VIh/7l0JcLkszFoXHooSd+sUcY/OztdZjn6fYP4ajcfxM/AQAA//8KiTIVRwEAAA=="},"mode":384},{"path":"/etc/containers/systemd/borgwarehouse.container","contents":{"compression":"gzip","source":"data:;base64,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"}}]}}
|
||||||
170
borgwarehouse-pumbaa.gaia.ykn.local.yml
Normal file
170
borgwarehouse-pumbaa.gaia.ykn.local.yml
Normal file
@ -0,0 +1,170 @@
|
|||||||
|
---
|
||||||
|
|
||||||
|
variant: fcos
|
||||||
|
version: 1.5.0
|
||||||
|
passwd:
|
||||||
|
users:
|
||||||
|
- name: core
|
||||||
|
should_exist: false
|
||||||
|
- name: alegall
|
||||||
|
password_hash: $y$j9T$61LMkIUWS6N.UQv3U4pxM1$Eodnc23AtXOvQMqm/qgqv7blGot4/8.OUsgIZazV9ND
|
||||||
|
groups:
|
||||||
|
- sudo
|
||||||
|
ssh_authorized_keys:
|
||||||
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHXrbcIwTQkJPlURJTePjQXAE4Q1lCjPp2JW/Y/oxXzp alegall@mufasa
|
||||||
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP/JatXrf/HkF8HAnL5JmC05DHmUcgB7/eptDeD7kAP5 alegall@zazu
|
||||||
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFI2/UosyrHbR3NVB8JDWbhNnmTLMS6EuCRG52hP50Vh alegall@smartphone
|
||||||
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINwBIdvpiFgEzP2B+h3KIFmmxh1l7MVetGy2cThmpxcP alegall@sightcall
|
||||||
|
- name: borgwarehouse
|
||||||
|
uid: 1001
|
||||||
|
|
||||||
|
storage:
|
||||||
|
directories:
|
||||||
|
- path: /srv/borgwarehouse
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/config
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/ssh
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/etc_ssh
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/repos
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/logs
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
- path: /srv/borgwarehouse/tmp
|
||||||
|
overwrite: true
|
||||||
|
mode: 0750
|
||||||
|
user:
|
||||||
|
name: borgwarehouse
|
||||||
|
group:
|
||||||
|
name: borgwarehouse
|
||||||
|
|
||||||
|
files:
|
||||||
|
- path: /etc/hostname
|
||||||
|
mode: 0644
|
||||||
|
contents:
|
||||||
|
inline: borgwarehouse-pumbaa.gaia.ykn.local
|
||||||
|
|
||||||
|
- path: /etc/vconsole.conf
|
||||||
|
mode: 0644
|
||||||
|
contents:
|
||||||
|
inline: KEYMAP=fr
|
||||||
|
|
||||||
|
- path: /etc/NetworkManager/system-connections/ens3.nmconnection
|
||||||
|
mode: 0600
|
||||||
|
contents:
|
||||||
|
inline: |
|
||||||
|
[connection]
|
||||||
|
id=ens3
|
||||||
|
type=ethernet
|
||||||
|
interface-name=ens3
|
||||||
|
|
||||||
|
[ipv4]
|
||||||
|
address1=192.168.1.10/24,192.168.1.254
|
||||||
|
dhcp-hostname=borgwarehouse-pumbaa.gaia.ykn.local
|
||||||
|
dns=193.110.81.9;
|
||||||
|
dns-search=gaia.ykn.local
|
||||||
|
ignore-auto-dns=true
|
||||||
|
may-fail=false
|
||||||
|
method=manual
|
||||||
|
|
||||||
|
[ipv6]
|
||||||
|
addr-gen-mode=default
|
||||||
|
dns=2a0f:fc80::9;
|
||||||
|
ignore-auto-dns=true
|
||||||
|
method=dhcp
|
||||||
|
|
||||||
|
- path: /etc/containers/systemd/borgwarehouse.container
|
||||||
|
contents:
|
||||||
|
inline: |
|
||||||
|
[Unit]
|
||||||
|
Description=borgwarehouse podman container
|
||||||
|
Wants=network-online.target
|
||||||
|
After=network-online.target
|
||||||
|
|
||||||
|
[Container]
|
||||||
|
ContainerName=borgwarehouse
|
||||||
|
|
||||||
|
Image=docker.io/borgwarehouse/borgwarehouse:latest
|
||||||
|
|
||||||
|
# Host port mappings
|
||||||
|
Environment=WEB_SERVER_PORT=3000
|
||||||
|
Environment=SSH_SERVER_PORT=2589
|
||||||
|
|
||||||
|
# Hostname and URL
|
||||||
|
Environment=FQDN=borgwarehouse.ykn.fr
|
||||||
|
Environment=NEXTAUTH_URL=https://borgwarehouse.ykn.fr
|
||||||
|
|
||||||
|
# Secrects
|
||||||
|
Environment=NEXTAUTH_SECRET=J2TyeJz9eujrW8FU
|
||||||
|
Environment=CRONJOB_KEY=sG3dn11JzyE7k9Kj
|
||||||
|
|
||||||
|
# UID:GID must match the user and group ID of the host folders and must be > 1000
|
||||||
|
# If you want to use a different user than 1001:1001, you must rebuild the image yourself.
|
||||||
|
Environment=UID=1001
|
||||||
|
Environment=GID=1001
|
||||||
|
|
||||||
|
# Config and data folders (volume mounts)
|
||||||
|
# The host folders must be owned by the user with UID and GID specified above
|
||||||
|
Environment=CONFIG_PATH=./config
|
||||||
|
Environment=SSH_PATH=./ssh
|
||||||
|
Environment=SSH_HOST=./ssh_host
|
||||||
|
Environment=BORG_REPOSITORY_PATH=./repos
|
||||||
|
Environment=TMP_PATH=./tmp
|
||||||
|
Environment=LOGS_PATH=./logs
|
||||||
|
|
||||||
|
# LAN feature
|
||||||
|
Environment=FQDN_LAN=192.168.1.10
|
||||||
|
Environment=SSH_SERVER_PORT_LAN=22589
|
||||||
|
|
||||||
|
Volume=/srv/borgwarehouse/config:/home/borgwarehouse/app/config
|
||||||
|
Volume=/srv/borgwarehouse/ssh:/home/borgwarehouse/.ssh
|
||||||
|
Volume=/srv/borgwarehouse/etc_ssh:/etc/ssh
|
||||||
|
Volume=/srv/borgwarehouse/repos:/home/borgwarehouse/repos
|
||||||
|
Volume=/srv/borgwarehouse/logs:/home/borgwarehouse/logs
|
||||||
|
Volume=/srv/borgwarehouse/tmp:/home/borgwarehouse/tmp
|
||||||
|
|
||||||
|
SecurityLabelDisable=true
|
||||||
|
|
||||||
|
PublishPort=3000:3000
|
||||||
|
PublishPort=22895:22
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target default.target
|
||||||
Loading…
x
Reference in New Issue
Block a user