eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/docs/how-to/plans/plans.md
Erich Blume 657bb28fd1 Abandon UniFi IaC, add manual network segmentation plan (#189) 
## Summary

- Abandon the UniFi Pulumi IaC approach after provider bugs caused a network outage (no-op update reset undeclared properties on the default LAN network)
- Remove untracked IaC artifacts (`pulumi/unifi/`, `mise-tasks/unifi-preview`, `mise-tasks/unifi-up`) locally
- Mark `add-unifi-pulumi-stack` plan as Abandoned with explanation
- Create new `segment-home-network` plan for manual three-network segmentation (Main/IoT/Guest) via UX7 web UI
- Rewrite UniFi reference card to remove all Pulumi/IaC references
- Update plan and how-to indexes

## Test plan

- [x] `docs-check-links` passes
- [x] `docs-check-index` passes
- [x] Pre-commit hooks pass
- [ ] Review segmentation plan for completeness before executing manually

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Reviewed-on: https://forge.ops.eblu.me/eblume/blumeops/pulls/189
2026-02-14 09:47:04 -08:00

1.4 KiB
Raw Blame History

title modified tags
Plans 2026-02-14
how-to
plans

Plans

Migration and transition plans for upcoming infrastructure changes. Each plan is a how-to document that captures the full context, steps, and verification criteria for a future execution session.

Plans differ from regular how-to guides in that they describe work that has been designed but not yet executed. Once a plan is completed, it moves to completed.

Plan Status Description
migrate-forgejo-from-brew Planned Transition Forgejo from Homebrew to source-built binary with LaunchAgent
add-unifi-pulumi-stack Abandoned Add Pulumi IaC for UniFi Express 7 (provider bugs — see doc)
segment-home-network Planned Manual three-network segmentation for UniFi Express 7
upstream-fork-strategy Planned Stacked-branch forking strategy for tracking upstream projects
adopt-oidc-provider Planning Deploy OIDC identity provider for SSO across services
harden-zot-registry Planned Add authentication and tag immutability to zot registry
forgejo-actions-dashboard Planned Grafana dashboard and custom Prometheus exporter for Forgejo Actions CI metrics
operationalize-reolink-camera Planned Cloud-free NVR with Frigate, object detection, and ring buffer recording to sifaka