Erich Blume
0dce806107
## Summary - Rewrites the UniFi Pulumi plan doc to use filipowm/unifi Terraform provider via `pulumi package add terraform-provider` (replaces pulumiverse_unifi approach) - Adds network segmentation goals (main/guest/IoT WiFi zones) and API key auth - Creates UniFi reference card (`docs/reference/infrastructure/unifi.md`) with topology diagram - Updates all documentation indexes (plans.md, how-to.md, hosts.md, reference.md) ## What's Deferred Actual stack scaffolding (`pulumi/unifi/`), mise tasks, and `pulumi import` are blocked on switch purchase and cabling. The plan doc captures everything needed for a future execution session. ## Verification - `docs-check-links` passes (all wiki-links resolve) - `docs-check-index` passes (unifi.md referenced in reference.md) - Pre-commit hooks pass Reviewed-on: https://forge.ops.eblu.me/eblume/blumeops/pulls/145
15 lines
580 B
Bash
Executable file
15 lines
580 B
Bash
Executable file
#!/usr/bin/env bash
|
|
#MISE description="Preview tailnet changes with Pulumi"
|
|
|
|
set -euo pipefail
|
|
|
|
TAILSCALE_OAUTH_CLIENT_ID=$(op read "op://blumeops/tailscale - blumeops/client_id")
|
|
export TAILSCALE_OAUTH_CLIENT_ID
|
|
TAILSCALE_OAUTH_CLIENT_SECRET=$(op read "op://blumeops/tailscale - blumeops/client_secret")
|
|
export TAILSCALE_OAUTH_CLIENT_SECRET
|
|
export TAILSCALE_TAILNET="tail8d86e.ts.net"
|
|
|
|
cd "$(dirname "$0")/../pulumi/tailscale"
|
|
uv sync --quiet || { echo "uv sync failed — if devpi is down, run 'devpi off' and retry"; exit 1; }
|
|
pulumi stack select tail8d86e
|
|
pulumi preview "$@"
|