Haitao Pan
|
19e1f4ef1d
|
Add readonly SSH audit user role and playbooks
|
2026-04-10 11:08:47 +08:00 |
|
Haitao Pan
|
b8d93ec31c
|
Inject ACP provider auth environment
|
2026-04-09 19:21:12 +08:00 |
|
Haitao Pan
|
3ce18ef133
|
chore: simplify xfce xrdp minimal role
|
2026-04-09 18:59:16 +08:00 |
|
Haitao Pan
|
396a1fad71
|
chore: harden vhost and xfce xrdp playbooks
|
2026-04-09 17:45:11 +08:00 |
|
Haitao Pan
|
a209041839
|
Expose xworkmate bridge public root
|
2026-04-09 15:26:30 +08:00 |
|
Haitao Pan
|
9ad2740997
|
Commit remaining local changes
|
2026-04-09 15:24:38 +08:00 |
|
Haitao Pan
|
c7ffff2825
|
Fix DNS host expansion and bridge service ownership
|
2026-04-09 15:00:29 +08:00 |
|
Haitao Pan
|
7b4e119030
|
Fix ACP deprecated fragment assertion message
|
2026-04-09 14:55:12 +08:00 |
|
Haitao Pan
|
117b912529
|
Handle immutable Caddyfile and Linux Gemini path
|
2026-04-09 14:51:41 +08:00 |
|
Haitao Pan
|
ac83d810c6
|
Make ACP dry-run loop labels check-safe
|
2026-04-09 14:46:01 +08:00 |
|
Haitao Pan
|
e774f5746b
|
Fix ACP dry-run fragment validation
|
2026-04-09 14:44:05 +08:00 |
|
Haitao Pan
|
fb444b23b7
|
Finalize ACP bridge entrypoint and DNS inventory
|
2026-04-09 14:41:55 +08:00 |
|
Haitao Pan
|
32d928a5da
|
Accept authorized ACP endpoints in health checks
|
2026-04-09 14:38:38 +08:00 |
|
Haitao Pan
|
210e32b6db
|
Skip ACP fragment assertions during dry runs
|
2026-04-09 14:36:32 +08:00 |
|
Haitao Pan
|
fb0a9dae5e
|
Skip Gemini handler during dry runs
|
2026-04-09 14:34:30 +08:00 |
|
Haitao Pan
|
8f3f4a07dc
|
Skip ACP runtime checks during dry runs
|
2026-04-09 14:32:52 +08:00 |
|
Haitao Pan
|
93e25c07f2
|
Stabilize ACP bridge handlers and task order
|
2026-04-09 14:31:59 +08:00 |
|
Haitao Pan
|
6d1f582ea1
|
Point ACP bridges to xworkmate-bridge source
|
2026-04-09 14:17:54 +08:00 |
|
Haitao Pan
|
08330218a6
|
Allow ACP local builds during check mode
|
2026-04-09 14:17:09 +08:00 |
|
Haitao Pan
|
605ead2f2e
|
Fix ACP vhosts playbook host targeting
|
2026-04-09 14:16:28 +08:00 |
|
Haitao Pan
|
672ea8ba32
|
Refactor ACP vhosts deployment layout
|
2026-04-09 14:16:05 +08:00 |
|
Haitao Pan
|
9d6e59e802
|
feat: add acp bridge server deploy role
|
2026-04-09 06:20:07 +08:00 |
|
Haitao Pan
|
557272bf88
|
Make postgresql_service check-mode friendly
|
2026-04-05 19:15:50 +08:00 |
|
Haitao Pan
|
36813d4bde
|
Add managed postgresql.svc.plus deployment
|
2026-04-05 19:09:25 +08:00 |
|
Haitao Pan
|
e9ea0b1d3b
|
Add managed accounts.svc.plus deployment
|
2026-04-05 18:58:09 +08:00 |
|
Haitao Pan
|
47504726a3
|
Migrate XRDP and Cloudflare playbooks
|
2026-04-05 16:54:48 +08:00 |
|
Haitao Pan
|
d195a21a66
|
chore: ignore generated acp artifacts
|
2026-04-04 18:39:13 +08:00 |
|
Haitao Pan
|
0d5371e98b
|
Consolidate ACP vhosts and add Cloudflare DNS playbook
|
2026-04-04 18:33:54 +08:00 |
|
Haitao Pan
|
b03c1b5797
|
Deploy ACP bridge for OpenCode
|
2026-04-04 17:30:33 +08:00 |
|
Haitao Pan
|
e8515003f3
|
fix(k3s): purge stuck external-dns release state
|
2026-04-04 17:09:37 +08:00 |
|
Haitao Pan
|
78bc356655
|
fix(k3s): create cloudflare token secret for external-dns
|
2026-04-04 16:54:50 +08:00 |
|
Haitao Pan
|
2061a3cd4f
|
fix(k3s): recover external-dns helm lock
|
2026-04-04 16:47:43 +08:00 |
|
Haitao Pan
|
4ae3955d62
|
fix(k3s): remove external-dns retry loop
|
2026-04-04 16:33:07 +08:00 |
|
Haitao Pan
|
4a6978c3b5
|
fix(k3s): harden external-dns addon install
|
2026-04-04 15:45:52 +08:00 |
|
Haitao Pan
|
82eadec0c0
|
fix(k3s): check addon deployments by actual chart names
|
2026-04-04 15:03:38 +08:00 |
|
Haitao Pan
|
16abf5a58e
|
fix(k3s): check reloader deployment by chart fullname
|
2026-04-04 14:58:57 +08:00 |
|
Haitao Pan
|
cd3e9a1afe
|
fix(k3s): replace helm waits with short health checks
|
2026-04-04 14:46:56 +08:00 |
|
Haitao Pan
|
b9f800eedc
|
fix(k3s): use short rollout check for external-dns
|
2026-04-04 14:46:27 +08:00 |
|
Haitao Pan
|
4f6b7069c0
|
fix(k3s): avoid waiting on ingress controller load balancers
|
2026-04-04 14:10:59 +08:00 |
|
Haitao Pan
|
0f0b7cfd04
|
feat(playbooks): add codex and opencode acp roles
|
2026-04-04 13:44:16 +08:00 |
|
Haitao Pan
|
f7a627673a
|
feat(playbooks): rename root authorized key bootstrap playbook
|
2026-04-04 13:16:07 +08:00 |
|
Haitao Pan
|
3a7e30971a
|
feat(playbooks): add root authorized key bootstrap playbook
|
2026-04-04 13:01:04 +08:00 |
|
Haitao Pan
|
3f21540ec6
|
fix(k3s): avoid jinja values attr collisions
|
2026-04-04 12:59:02 +08:00 |
|
Haitao Pan
|
16b5c90ee4
|
fix(k3s): access caddy values with bracket syntax
|
2026-04-04 12:57:58 +08:00 |
|
Haitao Pan
|
a8a1abf817
|
feat(playbooks): add minimal xfce xrdp desktop role
|
2026-04-04 12:51:16 +08:00 |
|
Haitao Pan
|
bbcbe61abc
|
fix(k3s): use apache apisix helm repo
|
2026-04-04 12:50:39 +08:00 |
|
Haitao Pan
|
d595ebabfa
|
fix(k3s): add apisix helm repo before install
|
2026-04-04 12:49:09 +08:00 |
|
Haitao Pan
|
ec9a41bbb0
|
fix(k3s): install caddy from helm repo
|
2026-04-04 12:48:04 +08:00 |
|
Haitao Pan
|
ac32c148ca
|
fix(k3s): render platform helm values before addon installs
|
2026-04-04 12:47:39 +08:00 |
|
Haitao Pan
|
2aae4b62cb
|
fix(k3s): add stakater helm repo for reloader
|
2026-04-04 12:23:45 +08:00 |
|