talexander/machine_setup
1
0
Fork 0
Code Issues Pull Requests Releases Activity
1,273 Commits 9 Branches 0 Tags
c37723ca81fbe73b2dea018c20e92929c11e759d
Commit Graph

27 Commits

Author SHA1 Message Date
Tom Alexander
c37723ca81 Switch to kubernetes ipam mode. 2026-06-14 08:47:13 -04:00
Tom Alexander
1da8e20d5b Fix service cluster ip range. 
Kubernetes only allows a /112 for service ip range.
 2026-06-14 08:47:13 -04:00
Tom Alexander
8584577327 Fix trailing line break in kubernetes encryption config. 2026-06-14 08:47:13 -04:00
Tom Alexander
a3afb104cd Move the yaml functions to their own file. 2026-06-14 08:47:12 -04:00
Tom Alexander
d4620e8ac9 Introduce functions to generate yaml. 
The toYAML function is just an alias to toJSON which is technically fine since YAML is a superset of JSON, but these new functions will generate actual YAML.
 2026-06-14 08:47:12 -04:00
Tom Alexander
ebe4505a6f Add missing cidr declarations. 2026-06-14 08:47:12 -04:00
Tom Alexander
f962c679ca Fix DNS resolution. 2026-06-14 08:47:12 -04:00
Tom Alexander
4fe58c4d6c Apply the git repo to the cluster. 2026-06-14 08:47:12 -04:00
Tom Alexander
570424f5b1 Trust flux's ssh key in the yaml git repo. 2026-06-14 08:47:12 -04:00
Tom Alexander
3a5ada6049 Generic secrets for ssh keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
8d572a5cce Generic secrets for pgp keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
c26fa59408 Generate kubernetes secrets for ssh keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
2e0c97bbf9 Install CoreDNS. 2026-06-14 08:47:11 -04:00
Tom Alexander
3197868a7b Generate pgp keys for sops. 2026-06-14 08:47:11 -04:00
Tom Alexander
c9f483dd98 Generate ssh keys for flux bootstrap. 2026-06-14 08:47:11 -04:00
Tom Alexander
dbeb98112b Move the cluster bootstrap into the keys flake. 
Bootstrapping the cluster needs access to secrets, so I am moving it into the keys flake.
 2026-06-14 08:47:10 -04:00
Tom Alexander
eb82e8e5e3 Add kube-proxy. 2026-06-14 08:47:09 -04:00
Tom Alexander
f1382cfbb7 Add kubelet. 2026-06-14 08:47:09 -04:00
Tom Alexander
f3797b5c42 Add kube-scheduler. 2026-06-14 08:47:09 -04:00
Tom Alexander
593929598a Add kube-controller-manager. 2026-06-14 08:47:08 -04:00
Tom Alexander
3a8569b0de Fix launching kube-apiserver. 2026-06-14 08:47:08 -04:00
Tom Alexander
84738f7266 Move the encryption config into a package. 2026-06-14 08:47:08 -04:00
Tom Alexander
45b7ce369e Switch to generating certs with openssl. 2026-06-14 08:47:08 -04:00
Tom Alexander
c863bfe136 Add controller proxy certs. 2026-06-14 08:47:08 -04:00
Tom Alexander
98a0d78e45 Add requestheader-client-ca. 2026-06-14 08:47:08 -04:00
Tom Alexander
87312b19fa Add service account. 2026-06-14 08:47:07 -04:00
Tom Alexander
21d5002e7f Add configs for a new kubernetes cluster on NixOS. 2026-06-14 08:47:05 -04:00