| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The existing AWS backend uses system containers backed on to the AWS
hosted NFS service (EFS). This has some advantages, but also some
disadvantages.
Using the EFS service allows building a container on one instance,
with the state being held on the EFS, and then launching a new
instance to run the container. Using EFS also provides persistence, at
least beyond individual EC2 instances.
However, build performance when using EFS is poor compared with a
local store without the overhead of the network latency. Additionally,
the startup speed of the container running off EFS is slow compared to
local storage.
This backend doesn't use EFS, instead the Guix store sits on instance
storage. Rather than using a system container for a Mini Environment,
an Amazon Machine Image (AMI) is built instead. The fast local storage
makes builds faster, and using EBS storage for the Mini Envirnoments
as well as not having the overhead of starting Ubuntu, then starting
the container also makes startup faster.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This will enable garbage collection of the Guix store, without
removing things that are still in use.
|
| |
|
|
|
| |
Skip the authenticate_user! before action for the Terraform controller
methods, and refactor the code to improve readability.
|
| | |
|
| | |
|
| |
|
|
| |
This prevents any unauthorised access to the Terraform state.
|
| |
|
|
|
| |
Explicitly use the specified private key where possible. Also, use a
struct for the user, address and private key.
|
| |
|
|
|
|
| |
Rather than the configured domain, as the corresponding SSH key
shouldn't change for the AWS domain (whereas it does for the
configured domain, if the machine changes).
|
| |
|
|
| |
Which means just destroying the build machine.
|
| |
|
|
| |
With similar changes to the backend pages.
|
| |
|
|
| |
And link to this from the mini environment page.
|
| |
|
|
|
| |
Redirect to the show page, rather than rendering it, to keep the URL
more consistent.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This makes it more explicit, and works around Terraform being
unpredictable when dealing with SSH agents.
|
| |
|
|
| |
Which contains an available_locally? function.
|
| |
|
|
|
| |
This begins to remote the restriction of having to have Guix installed
locally.
|
| |
|
|
| |
It's more useful to have the most recent jobs at the top.
|
| |
|
|
|
| |
With a service that performs the same function, and use the
MiniEnvironmentJob instead.
|
| |
|
|
|
|
|
|
|
|
| |
Start introducing some workflow, and simplifying the layout.
Also improve the jobs partial, making it actually show when jobs are
running.
The next step is to run the build as a mini environment job, which
should remove some unnecessary complexity.
|
| | |
|
| |
|
|
|
|
|
|
| |
Add an index route, and a route to access a historical Terraform state
by index.
This also makes the ordering explicit, and fixes an issue with wrapped
parameters.
|
| |
|
|
|
|
|
|
|
|
| |
For the AWS backend.
Bring it in to the Terraform configuration for the backend, where
previously only the id was known. Also, alter the provisioning so that
it can handle an empty EFS file system.
This reduces the amount of manual setup required for AWS.
|
| |
|
|
|
|
|
| |
Bring the transaction inside of the request.put? conditional, as it
shouldn't have been outside to begin with.
Also, store the data snapshot if one is selected.
|
| |
|
|
|
|
|
| |
It now takes two arguments, and when used by the
MiniEnvironmentsController, the split is performed there.
This makes it easier to reuse elsewhere in the codebase.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
| |
Separate out the backend things, like the virtual network, from the
mini environment. This makes it easier to have resources shared
between mini environments.
Also handle the deployment of this new backend related Terraform
configuration.
|
| |
|
|
|
| |
Store the passphrase in the clear, as the intent here is to show it to
the user.
|
| |
|
|
|
| |
Move the display in to a partial and improve. Handle the finished and
enqueued jobs in a more consistent way.
|
| |
|
|
|
| |
To allow supporting tracking related TerraformStates for backends as
well.
|
| | |
|
| | |
|
| |
|
|
| |
And replace with a redirect and flash message.
|
| |
|
|
| |
This has been moved to the SetupController.
|
| |
|
|
|
| |
Using the Rails generator seems to generate quite a lot of unnecessary
files...
|
| |
|
|
|
|
|
| |
Add a domain to the libvirt and AWS Terraform backends. Along the way,
improve the backend controllers and views, and rework the build jobs,
simplifying them in to a single new class GovukGuix::BuildJob, which
uses configuration from the respective backend.
|
| |
|
|
| |
When creating mini environments.
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Also annotate existing models.
|
| |
|
|
| |
And various other views and routes.
|
| | |
|
| | |
|
| | |
|