hiro/phoebe
1
0
Fork 0
mirror of https://github.com/vale981/phoebe synced 2025-03-04 17:31:41 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
10 commits 5 branches 0 tags 164 KiB
Commit graph

10 commits

This branch
This branch
All branches
Author SHA1 Message Date
Peter Jones
72d3974626
rails: Automatically rotate log files 2019-01-04 17:08:10 -07:00
Peter Jones
c5dc7d83be
secrets: Try to improve size estimates for the tmpfs 
When creating the tmpfs we need to specify a size.  Calculate the size
based on the size of the tarball of the encrypted files, multiplied by
10.
 2019-01-04 11:19:15 -07:00
Peter Jones
4964d95974
rails: Support background workers and other Rails services/workers 
The new `services' option is used to request additional processes be
run in the background with the same environment as the main Rails
process.
 2019-01-04 11:17:40 -07:00
Peter Jones
193b82189e
Automatically depending on NixOps key services, new Rails sourcedFile option 
* Services that need password files will automatically depend on the
    appropriate NixOps key service as necessary.

  * New `sourcedFile` option for Rails applications to load a Bash
    script just before starting the Rails service.  Useful for setting
    secret environment variables.
 2019-01-03 14:33:38 -07:00
Peter Jones
accdc1bf54
When decrypting secrets, pass unencrypted files straight through 2019-01-03 14:32:11 -07:00
Peter Jones
b2571a8c30
Add a script to help manage secrets 
Current features:

  * Mount a directory of encrypted secrets into a memory file system

  * Unmount the file system created by the mount command
 2019-01-02 16:09:31 -07:00
Peter Jones
b5c6563d5b
rails: Create a state directory where stateful files can live 
This is necessary for files like the state file that tells the
migration script whether or not the schema needs to be loaded.

Fixes a bug where the migration script would try to load the schema on
a second deployment (since touching a file in the db directory fails
because it's in the nix store).
 2018-12-21 13:10:54 -07:00
Peter Jones
b9061e43a4
security: Some settings should always be enabled 
Even if Phoebe security is off, force some settings to be on.  These
are settings that are appropriate even for developer testing VMs.
 2018-12-20 16:54:36 -07:00
Peter Jones
9745341307
postgresql: Add option to give a user the SUPERUSER permission 
This is necessary for databases used to test Ruby on Rails
applications :(
 2018-12-20 16:53:34 -07:00
Peter Jones
3980c37fa0
security, rails, postgresql: Import files from original repo 2018-12-19 16:08:03 -07:00