pub.solar infrastructure, mostly in nix and terraform
teutat3s
a08003f125
After this change, only obs-portal backup will prune the repository of old snapshots. This is the last backup service to run at 06:00 AM UTC. This should avoid our nightly backups failing because of the exclusive lock on the restic repo. We currently start the next backup while the previous one is still pruning, which makes the newly started one fail with: repo already locked, waiting up to 0s for the lock unable to create lock in backend: repository is already locked by PID 228… |
||
|---|---|---|
| .forgejo/workflows | ||
| docs | ||
| hosts | ||
| lib | ||
| logins | ||
| modules | ||
| overlays | ||
| secrets | ||
| terraform | ||
| tests | ||
| .editorconfig | ||
| .envrc | ||
| .git-blame-ignore-revs | ||
| .gitignore | ||
| CONTRIBUTING.md | ||
| flake.lock | ||
| flake.nix | ||
| LICENSE.md | ||
| README.md | ||
| treefmt.toml | ||
The pub.solar infrastructure
This repository contains almost all of the configuration for the whole pub.solar infrastructure. Our goal is to have everything, from host configurations to Terraform DNS in this repository.
The architecture we are working towards is a vast simplification of what it was before: one dedicated Hetzner server running NixOS with all services. Offsite backups go to several different locations with restic.
Contributing
If you'd like to contribute, it makes sense to talk to the crew on Matrix via #hakken. We can help figuring out how things work and can make sure your ideas fit the pub.solar philosophy. Of course popping a pull request is always celebrated.
To start, check our contributing guide.