maurice/snix

Author	SHA1	Message	Date
Florian Klink	7c3d029b8e	fix(ops/modules/o11y): disable analytics.reporting_enabled Change-Id: I1138a3cc9a8a107794bf3053fc48e51af2789d9b Reviewed-on: https://cl.snix.dev/c/snix/+/30494 Reviewed-by: Ryan Lahfa <masterancpp@gmail.com> Autosubmit: Florian Klink <flokli@flokli.de> Tested-by: besadii	2025-05-09 23:06:14 +00:00
Florian Klink	6b518f1aed	refactor(ops): make status.snix.dev grafana listen on unix socket Change-Id: Ib3838edf1ee98a8fe1792771f1a948f00e3f466b Reviewed-on: https://cl.snix.dev/c/snix/+/30493 Reviewed-by: Ryan Lahfa <masterancpp@gmail.com> Autosubmit: Florian Klink <flokli@flokli.de> Tested-by: besadii	2025-05-09 23:06:14 +00:00
Florian Klink	e20ff4cb60	fix(ops/keycloak): fix assigning grafana_roles keycloak_openid_user_client_role_protocol_mapper.grafana_role_mapper was missing. It is configured to make the client roles for this Application (and only those for this application) available in the grafana_roles claim. We can also disable full scope, as we're not interested in other role mappings. The Terraform files are a bit reorganized, everything configuring the Grafana client lives in grafana.tf (and vice-versa for Forgejo, Buildkite and Gerrit). The only thing left in permissions.tf is global groups, their memberships and mappings. Change-Id: I37b0755f4f8658518083353ec6cc0193e805d5c2 Reviewed-on: https://cl.snix.dev/c/snix/+/30476 Tested-by: besadii Autosubmit: Florian Klink <flokli@flokli.de> Reviewed-by: Jonas Chevalier <zimbatm@zimbatm.com>	2025-05-05 12:36:30 +00:00
Florian Klink	56c3a5d24d	fix(ops/modules/o11y): remove anonymous auth org_name This doesn't seem to do anything, and logs a warning on startup. Change-Id: I4d883f2a95d5934bc3dc2998a497f3c2a8ff857d Reviewed-on: https://cl.snix.dev/c/snix/+/30364 Autosubmit: Florian Klink <flokli@flokli.de> Reviewed-by: Ryan Lahfa <masterancpp@gmail.com> Tested-by: besadii	2025-04-30 20:22:13 +00:00
Florian Klink	ca23b17680	refactor(ops/machines): switch from grafana-agent to alloy grafana-agent has been removed, but the failing eval was missed due to #80. Change-Id: I87cfc71c8c98e27e32f4e95e4d85901195cb5b75 Reviewed-on: https://cl.snix.dev/c/snix/+/30347 Autosubmit: Florian Klink <flokli@flokli.de> Reviewed-by: Ryan Lahfa <masterancpp@gmail.com> Tested-by: besadii	2025-04-30 20:21:42 +00:00
Florian Klink	088296c52c	refactor(ops/modules/o11y/agent): drop bearerTokenFile option This option is not used, we can reintroduce it when needed. Change-Id: Ie0f90ea7fc84f493f0c73de29ddf200c1184cb40 Reviewed-on: https://cl.snix.dev/c/snix/+/30345 Tested-by: besadii Reviewed-by: Ryan Lahfa <masterancpp@gmail.com> Autosubmit: Florian Klink <flokli@flokli.de>	2025-04-30 20:20:12 +00:00
Florian Klink	a52ea3675c	feat(*): initialize new Snix infrastructure Co-Authored-By: edef <edef@edef.eu> Co-Authored-by: Ryan Lahfa <raito@lix.systems> Change-Id: Ica1cda177a236814de900f50a8a61d288f58f519	2025-03-17 17:15:07 +00:00

7 commits