d-bis/proxmox
4
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
89 Commits 2 Branches 0 Tags
8d5540bf1d7ffbe8f48ded1aa38cc18713f65fbe
Commit Graph

6 Commits

Author SHA1 Message Date
defiQUG
430431f2f6 feat(order): HAProxy on 10210, NPM → 192.168.11.39:80 
- Add order-haproxy config template and provision-order-haproxy-10210.sh (SSH to r630-01)
- Document one-time unprivileged CT idmap chown repair when apt fails
- Default THE_ORDER_UPSTREAM_* to IP_ORDER_HAPROXY:80; portal bypass via env
- Align update-sankofa-npmplus-proxy-hosts.sh, AGENTS, ALL_VMIDS, E2E notes

Made-with: Cursor
 2026-03-27 14:05:37 -07:00
defiQUG
a2645b5285 NPM: validate canonical_https for www redirects; docs and env example 
- Reject non-https, paths, and injection-prone chars in advanced_config 301 targets
- E2E list: phoenix marketing note, the-order HAProxy remediation, 2026-03-27 passes
- AGENTS.md: scoped Cloudflare token pointer; smom-dbis-138 dotenv load note
- .env.master.example: DNS script flags and scoped token guidance

Made-with: Cursor
 2026-03-27 12:29:40 -07:00
defiQUG
17b923ffdf Follow-ups: DNS dry-run/zone-only, Order NPM IDs, E2E Location assert, the-order block_exploits 
- update-all-dns-to-public-ip.sh: --dry-run (no CF API), --zone-only=ZONE, help before .env, env CLOUDFLARE_DNS_DRY_RUN/DNS_ZONE_ONLY
- update-sankofa-npmplus-proxy-hosts.sh: the-order + www.the-order by ID (env SANKOFA_NPM_ID_THE_ORDER, SANKOFA_NPM_ID_WWW_THE_ORDER, THE_ORDER_UPSTREAM_*)
- update-npmplus-proxy-hosts-api.sh: the-order.sankofa.nexus uses block_exploits false like sankofa portal
- verify-end-to-end-routing.sh: E2E_WWW_CANONICAL_BASE + Location validation (fail on wrong apex); keep local redirect vars
- docs: ALL_VMIDS www 301 lines, E2E_ENDPOINTS_LIST verifier/DNS notes; AGENTS.md Cloudflare script pointer

Made-with: Cursor
 2026-03-27 11:27:39 -07:00
defiQUG
a36ccbbd77 NPM: canonical 301 for www sankofa/phoenix/the-order; E2E pass on 301/308 
- update-npmplus-proxy-hosts-api.sh: optional advanced_config 301 via 5th/6th args; wire www.the-order → https://the-order.sankofa.nexus; document OSJ portal and the_order repo path
- update-sankofa-npmplus-proxy-hosts.sh: same 301 for www rows via 4th pipe field
- verify-end-to-end-routing.sh: www.the-order in inventory; treat 301/308 as HTTPS pass for www.sankofa, www.phoenix, www.the-order
- configure-npmplus-domains.js: comment — avoid duplicate redirection UI rows for Sankofa www
- AGENTS.md, ALL_VMIDS_ENDPOINTS.md, E2E_ENDPOINTS_LIST.md: Order portal and www redirect notes

Made-with: Cursor
 2026-03-27 00:30:28 -07:00
defiQUG
b9d3c10d01 ops: CCIP relay systemd unit, TsunamiSwap VM 5010 inventory script 
- config/systemd/ccip-relay.service for /opt/smom-dbis-138/services/relay/start-relay.sh
- tsunamiswap-vm-5010-provision.sh checks qm status on PROXMOX_HOST
- AGENTS.md pointers for relay and TsunamiSwap

Made-with: Cursor
 2026-03-27 00:27:10 -07:00
defiQUG
00afd38a57 feat(deploy): Sankofa portal sync excludes secrets; ensure NextAuth on CT 
- Tar excludes .env/.env.local; post-sync sets NEXTAUTH_URL on .env and .env.local
- New sankofa-portal-ensure-nextauth-on-ct.sh; optional SANKOFA_PORTAL_NEXTAUTH_URL
- AGENTS.md pointer to ensure script

Made-with: Cursor
 2026-03-26 18:56:57 -07:00