Deuxfleurs/nixcfg
17
6
Fork 2
Code Issues 9 Pull requests 2 Projects Releases Wiki Activity
nixcfg/cluster/prod/app
History
Baptiste Jonglez 7e88a88e04 prod: garage: Enable on-demand-tls check for *.garage S3 endpoint 
We were hitting Let's Encrypt rate limits because we were generating
thousands of non-sense certificates like "foo.bar.baz.garage.deuxfleurs.fr"

See https://crt.sh

Subdomains of garage.deuxfleurs.fr only make sense when accessing buckets
through S3 with vhost-style, so let's enable the on-demand-tls check to
make sure that the bucket exists in Garage.

In the long term, we might want to have a wildcard certificate for this
usage, or simply stop supporting vhost-style S3 access.
2024-06-08 17:14:48 +02:00
..
backup migration Cryptpad sur Courgette (Neptune) depuis Abricot (Scorpio), avec reconfiguration des backups 2024-05-12 22:02:22 +02:00
bagage fix bagage 2023-12-04 12:19:00 +01:00
cms prod: remove all apps from orion, add some missing in scorpio 2023-09-04 19:05:18 +02:00
core Tricot ulimit 2024-04-25 09:13:06 +02:00
coturn Fix coturn that was failing with newer Nomad/Docker 2024-04-28 18:01:52 +02:00
cryptpad migration Cryptpad sur Courgette (Neptune) depuis Abricot (Scorpio), avec reconfiguration des backups 2024-05-12 22:02:22 +02:00
email Move emails from ananas (in scorpio) to celeri (in neptune) 2024-05-12 17:09:05 +02:00
garage prod: garage: Enable on-demand-tls check for *.garage S3 endpoint 2024-06-08 17:14:48 +02:00
guichet directory 2023-10-30 11:55:25 +01:00
jitsi use diplonat autodiscovery to set ip addr 2024-05-18 15:45:00 +02:00
matrix matrix: add memory to async media upload after oom crash 2023-11-27 13:56:47 +01:00
plume prod: remove all apps from orion, add some missing in scorpio 2023-09-04 19:05:18 +02:00
postgres prod: remove all apps from orion, add some missing in scorpio 2023-09-04 19:05:18 +02:00
telemetry Update lightstream and grafana 2024-03-09 11:41:46 +01:00
woodpecker-ci Update woodpecker to latest 2.4.1 2024-04-28 13:31:15 +02:00