16045fdff8
I wrote a new readme and contributing guidelines, and took a rough pass through the rest of the documentation.
1.1 KiB
1.1 KiB
Production hosting
Server secrets
Some services require the use of secret tokens or passwords. Those are stored
in private/secret.json which is not checked into the repository.
These settings are currently set on the production server:
- bintray_apikey
- bintray_user
- gh_client_id
- gh_client_secret
- gh_token
- gitter_dev_secret
- shieldsIps
- shieldsSecret
- sl_insight_apiToken
- sl_insight_userUuid
(Gathered from cat private/secret.json | jq keys | grep -o '".*"' | sed 's/"//g'.)
The secret.tpl.json is a template file used by the Docker container to set the secrets based on
environment variables.
Main Server Sysadmin
- Servers in DNS round-robin:
- s0: 192.99.59.72 (vps71670.vps.ovh.ca)
- s1: 51.254.114.150 (vps244529.ovh.net)
- s2: 149.56.96.133 (vps117870.vps.ovh.ca)
- Self-signed TLS certificates, but
img.shields.iois behind CloudFlare, which provides signed certificates. - Using systemd to automatically restart the server when it crashes.
See https://github.com/badges/ServerScript for helper admin scripts.