Erich Blume
19a82373d5
## Summary - Step 0.1: Update Pulumi ACLs with tag:registry - Step 0.3: Create Zot registry ansible role with mcquack LaunchAgent - Step 0.4: Add Zot to Tailscale Serve configuration - Step 0.5: Create Zot metrics role for Prometheus scraping - Step 0.6: Add Zot log collection to Alloy - Step 0.7: Update indri-services-check with zot checks - Step 0.8: Add podman role for container runtime - Step 0.9: Add minikube role for Kubernetes cluster - Step 0.10: Configure remote kubectl access with 1Password credentials ## Remaining Steps - [ ] Step 0.11: Add minikube to indri-services-check - [ ] Step 0.12: Create zettelkasten documentation - [ ] Step 0.13: Verify main playbook (already done - roles added) ## Deployment and Testing - [x] Zot registry deployed and accessible at https://registry.tail8d86e.ts.net - [x] Podman machine running on indri - [x] Minikube cluster running on indri - [x] kubectl access from gilbert working with 1Password credentials - [ ] indri-services-check passes all checks 🤖 Generated with [Claude Code](https://claude.com/claude-code) Reviewed-on: https://forge.tail8d86e.ts.net/eblume/blumeops/pulls/26
42 lines
801 B
YAML
42 lines
801 B
YAML
---
|
|
# Tailscale serve configuration for this host
|
|
# Each service maps a Tailscale service name to local endpoints
|
|
|
|
tailscale_serve_services:
|
|
- name: svc:grafana
|
|
https:
|
|
port: 443
|
|
upstream: http://localhost:3000
|
|
|
|
- name: svc:forge
|
|
https:
|
|
port: 443
|
|
upstream: http://localhost:3001
|
|
tcp:
|
|
port: 22
|
|
upstream: tcp://localhost:2200
|
|
|
|
- name: svc:kiwix
|
|
https:
|
|
port: 443
|
|
upstream: http://localhost:5501
|
|
|
|
- name: svc:pypi
|
|
https:
|
|
port: 443
|
|
upstream: http://127.0.0.1:3141
|
|
|
|
- name: svc:pg
|
|
tcp:
|
|
port: 5432
|
|
upstream: tcp://localhost:5432
|
|
|
|
- name: svc:feed
|
|
https:
|
|
port: 443
|
|
upstream: http://localhost:8080
|
|
|
|
- name: svc:registry
|
|
https:
|
|
port: 443
|
|
upstream: http://localhost:5050
|