Remove unused indri tags and ansible roles (#41)
## Summary - Remove ansible roles for services migrated to k8s: devpi, kiwix, transmission - Also remove unused node_exporter and podman ansible roles - Remove service tags from indri for k8s-hosted services (grafana, kiwix, devpi, pg, feed) - Update indri description to reflect current architecture ## Changes **Ansible roles removed** (34 files, ~1000 lines): - devpi, devpi_metrics - kiwix - transmission, transmission_metrics - node_exporter - podman **Pulumi indri tags removed**: - tag:grafana, tag:kiwix, tag:devpi, tag:pg, tag:feed These services now run in k8s with their own Tailscale devices via tailscale-operator. ## Deployment and Testing - [x] Verified remaining ansible roles match indri.yml - [x] Verified no playbooks or role dependencies reference removed roles - [ ] Run `pulumi preview` to verify tag changes - [ ] Run `pulumi up` to apply tag changes 🤖 Generated with [Claude Code](https://claude.com/claude-code) Reviewed-on: https://forge.tail8d86e.ts.net/eblume/blumeops/pulls/41
This commit is contained in:
parent
6a140107c6
commit
5a829e0afd
36 changed files with 10 additions and 1079 deletions
|
|
@ -36,7 +36,8 @@ acl = tailscale.Acl(
|
|||
# Tags control access via the ACL policy in policy.hujson.
|
||||
|
||||
# indri - Mac Mini M1, primary homelab server
|
||||
# Hosts all user-facing services (grafana, forge, kiwix, etc.)
|
||||
# Hosts forge, loki, zot registry, and the k8s control plane.
|
||||
# Other services (grafana, kiwix, devpi, etc.) run in k8s with their own Tailscale devices.
|
||||
indri = tailscale.get_device(name="indri.tail8d86e.ts.net")
|
||||
indri_tags = tailscale.DeviceTags(
|
||||
"indri-tags",
|
||||
|
|
@ -44,16 +45,11 @@ indri_tags = tailscale.DeviceTags(
|
|||
tags=[
|
||||
"tag:homelab", # Server role - allows SSH from workstations
|
||||
"tag:blumeops", # Managed by this IaC
|
||||
# Service tags - enable fine-grained access control per service
|
||||
"tag:grafana",
|
||||
# Service tags for services still hosted directly on indri
|
||||
"tag:forge",
|
||||
"tag:kiwix",
|
||||
"tag:devpi",
|
||||
"tag:loki",
|
||||
"tag:pg",
|
||||
"tag:feed",
|
||||
"tag:registry", # Zot container registry
|
||||
"tag:k8s-api", # Kubernetes API server
|
||||
"tag:k8s-api", # Kubernetes API server (minikube)
|
||||
],
|
||||
)
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue