Eglide: Difference between revisions
m (→IP connectivity: Add network configuration link) |
|||
| (3 intermediate revisions by 2 users not shown) | |||
| Line 6: | Line 6: | ||
* Nasqueron supports the infrastructure and ITC management | * Nasqueron supports the infrastructure and ITC management | ||
* Wolfplex Hackerspace gives support to users @ Libera Chat #wolfplex (there is also a channel #eglide) | * Wolfplex Hackerspace gives support to users @ Libera Chat #wolfplex (there is also a channel #eglide) | ||
== Create an account == | |||
=== What do you need? === | |||
* A username | |||
* A SSH key (see [[PuTTY with SSH key tutorial]] if you're on Windows) - keep the private part for you, communicate only the public part | |||
{{Call for action | |||
|link=https://devcentral.nasqueron.org/maniphest/task/edit/form/3/ | |||
|text=Create an account | |||
}} | |||
=== Workflow === | |||
To create an account, we follow the following workflow: | |||
# You create a task to request an account | |||
# A change is created by your or an ops for our operations repository | |||
# The change is deployed by an ops | |||
Anyone can create the change, while Nasqueron Operations SIG is responsible for approving and deploying commits to Operations repository. | |||
=== If you want to submit the change yourself === | |||
You're welcome to submit a change for our [https://devcentral.nasqueron.org/source/operations/ Operations repository] following [[How to contribute code]]. | |||
You need to submit a change with just two files to edit: | |||
* {{Ops file|pillar/core/users.sls}}: your user account | |||
* {{Ops file|pillar/core/groups.sls}}: add yourself in the group <code>shell</code> (that's the first one) | |||
UID can be picked by running <code>./utils/next-uid.py</code> or by looking carefully in users.sls the next one available in the 2xxx series (uid in 5xxx are deprecated). | |||
Note there could be here an egg and chicken problem: if you want a shell to get a comfortable environment for contributing with already everything installed and ready, it can be difficult to use <code>arc</code>. | |||
In that case, here what we suggest: | |||
$ git clone https://devcentral.nasqueron.org/source/operations.git | |||
$ $EDITOR pillar/core/users.sls pillar/core/groups.sls | |||
$ git diff | |||
Then you copy/paste the diff generated here: https://devcentral.nasqueron.org/differential/diff/create/ | |||
Or you can also create a patch with git format-patch and attach it to the task: | |||
$ git switch -c user-create | |||
$ git add pillar/core/users.sls pillar/core/groups.sls | |||
$ git commit -m "Create user account for yourusernamehere on Eglide" | |||
$ git format-patch origin/main | |||
To upload a file to the task, you'll find an icon Upload a file in the comment section of your task. | |||
Drag and drop works too. | |||
== Networking == | == Networking == | ||
| Line 17: | Line 67: | ||
It's possible to reserve an IP for a service, and customize reverse DNS. Also, if we move from one ISP to another, or from one DC to another, this block moves with us while IPv4 will probably change. | It's possible to reserve an IP for a service, and customize reverse DNS. Also, if we move from one ISP to another, or from one DC to another, this block moves with us while IPv4 will probably change. | ||
Working network configuration state can be found on [ | Working network configuration state can be found on [https://devcentral.nasqueron.org/P343 Devcentral]. | ||
=== Ports === | === Ports === | ||
| Line 42: | Line 92: | ||
[[Category:Servers]] | [[Category:Servers]] | ||
[[Category:Eglide|*]] | |||
Latest revision as of 20:28, 26 October 2024
Eglide is a shell server donated by Sandlayth for an independant shell project.
Responsibilities and involvement
- Eglide is an independent shell project free to use
- Nasqueron supports the infrastructure and ITC management
- Wolfplex Hackerspace gives support to users @ Libera Chat #wolfplex (there is also a channel #eglide)
Create an account
What do you need?
- A username
- A SSH key (see PuTTY with SSH key tutorial if you're on Windows) - keep the private part for you, communicate only the public part
Workflow
To create an account, we follow the following workflow:
- You create a task to request an account
- A change is created by your or an ops for our operations repository
- The change is deployed by an ops
Anyone can create the change, while Nasqueron Operations SIG is responsible for approving and deploying commits to Operations repository.
If you want to submit the change yourself
You're welcome to submit a change for our Operations repository following How to contribute code.
You need to submit a change with just two files to edit:
- rOPS: pillar/core/users.sls: your user account
- rOPS: pillar/core/groups.sls: add yourself in the group
shell(that's the first one)
UID can be picked by running ./utils/next-uid.py or by looking carefully in users.sls the next one available in the 2xxx series (uid in 5xxx are deprecated).
Note there could be here an egg and chicken problem: if you want a shell to get a comfortable environment for contributing with already everything installed and ready, it can be difficult to use arc.
In that case, here what we suggest:
$ git clone https://devcentral.nasqueron.org/source/operations.git $ $EDITOR pillar/core/users.sls pillar/core/groups.sls $ git diff
Then you copy/paste the diff generated here: https://devcentral.nasqueron.org/differential/diff/create/
Or you can also create a patch with git format-patch and attach it to the task:
$ git switch -c user-create $ git add pillar/core/users.sls pillar/core/groups.sls $ git commit -m "Create user account for yourusernamehere on Eglide" $ git format-patch origin/main
To upload a file to the task, you'll find an icon Upload a file in the comment section of your task. Drag and drop works too.
Networking
IP connectivity
IPv4: 51.159.150.221
IPv6: 2001:470:1f13:896:0:c0de:15:11fe
IPv6 is provided by an HE tunnel, our range is 2001:470:1f13:896::/64.
It's possible to reserve an IP for a service, and customize reverse DNS. Also, if we move from one ISP to another, or from one DC to another, this block moves with us while IPv4 will probably change.
Working network configuration state can be found on Devcentral.
Ports
| Port | User | Service | Configuration source |
|---|---|---|---|
| 22 | root | OpenSSH | /etc/ssh/sshd_config |
| 80 | www-data | nginx | /etc/nginx/sites-enabled/default |
| 443 | www-data | nginx | /etc/nginx/sites-enabled/default |
| 12000 | bitlbee | bitlbee | rOPS: roles/shellserver/userland-software/files/etc__init.d__bitlbee |
Policies
See Eglide/Policies.
See also
- Operations grimoire/Create and revoke user accounts on Salt servers
- Operations grimoire/Deploy with Salt (Eglide is purely managed through rOPS and Salt)
- Operations grimoire/Eglide
