| Repo | Lint status | Tests status | Galaxy url | Status |
|---|---|---|---|---|
| Platform |  |
 |
||
| Containerization |  |
 |
 |
|
| Routing |  |
 |
 |
|
| SecureHost |  |
 |
 |
|
| Users |  |
|
 |
|
| Virtualization |  |
 |
 |
|
| Virt-guest |  |
 |
 |
|
| Volumes |  |
 |
 |
|
| Nameserver |  |
 |
 |
|
| Orchestration |  |
 |
 |
|
| Orchestration Cli |  |
 |
 |
|
| Kube Cert Manager |  |
 |
 |
|
| Container registry |  |
 |
 |
 |
| NFS Client |  |
 |
 |
|
| NFS Server |  |
 |
 |
|
| Reverse Proxy |  |
 |
 |
|
| LocalUser |  |
|
 |
|
| Bind9 |  |
 |
 |
|
| /etc/host append |  |
 |
 |
|
| Orchestration_csi |  |
 |
 |
|
| Service Mesh |  |
 |
 |
|
NOTE | Don't worry that much about build status: CI on 3 VMs and public, free-of-chagre CI providers are frequently leading to timeouts...
Is it a bunch of infrastructure scripts (Packer, Ansible, Terraform, Dockerfiles, Kubernetes Helm Charts) that will ease the setup of a full OSS integrated Information System (including people management, mails, HR, ERP, EMD, Engineering, ...) targeting on premise (also includes a private cloud).
As of now, it focuses on setting up a fully secured production platform (with kubernetes) that can scale from 1 to inifinite. Technically speaking, the stack is dealing with the following technologies:
- LVM
- Libvirt and KVM (VMs)
- Other low level security & host stack: Firewalld, Fail2ban, /etc/hosts, ...
- FreeIPA (including Kerberos, PKI, internal DNS, company LDAP)
- Kerberized NFS
- Nginx-proxy & letencrypt (frontend proxy)
- Kubernetes (including certmanager and Istio service mesh)
- Want a new business relative integration ? Feel free to propose a new category
- Want to propose a new solution answering to a business need? Tell us your recommendation
Solution proposal are submitted by the community and chosed democratically via votes on tickets, then integrated in the platform. The platform delivery goal is to provide a one (or just a little bit more) click solution to deploy the overall integrated stack for your company.
Checkout the reference documentation for more information.
This project is looking for active contributors and committers, feel free to join us and produce anything you'll find useful
At the end of the day, you'll configure your provision (VM creation) and configuration (middlewares) inventories, then run the three commands above to get your production platform up and running!
sh git-clone # will disappear ASAP
./configure
ansible-galaxy install -r <path to the highest level role>/requirements-stansalone.yml -p ./roles
ansible-playbook -i inventories/provision-vms osgiliath-provision.yml -vv --vault-password-file .vault_pass.txt --ask-become-pass
ansible-playbook -i inventories/configure-vms osgiliath-configure.yml -vv --vault-password-file .vault_pass.txt --ask-become-pass