|
Xdev Host Manager
authored
2 days ago
|
1
|
# Xdev Host Manager
|
|
|
2
|
|
|
|
3
|
Local host registry and management UI for the Madagascar network.
|
|
|
4
|
|
|
|
5
|
This project lives on jumper and is the local source for:
|
|
|
6
|
|
|
|
7
|
- `config/hosts.yaml` - git-versioned host registry
|
|
|
8
|
- `config/local-hosts.tsv` - DNS manifest exported for local resolvers
|
|
|
9
|
- `scripts/host_manager.pl` - Perl-only web app
|
|
|
10
|
- `scripts/sync_local_hosts.sh` - local DNS sync to is-vpn-gw and as01
|
|
Xdev Host Manager
authored
2 days ago
|
11
|
- `scripts/ca_manager.sh` - local OpenSSL CA helper for host certificates
|
|
Xdev Host Manager
authored
2 days ago
|
12
|
|
|
|
13
|
The public `xdev.ro` zone is maintained in the separate DNS public-zone repository.
|
|
|
14
|
|
|
|
15
|
Runtime path:
|
|
|
16
|
|
|
|
17
|
```text
|
|
|
18
|
/usr/local/xdev-host-manager
|
|
|
19
|
```
|
|
|
20
|
|
|
|
21
|
Secrets live outside git in `/etc/xdev/host-manager.env`.
|
|
Xdev Host Manager
authored
2 days ago
|
22
|
|
|
|
23
|
The web UI is OTP-protected for all registry data, downloads, exports, and writes. Automation should consume this repository through git with dedicated read-only keys, not through unauthenticated HTTP.
|
|
Xdev Host Manager
authored
2 days ago
|
24
|
|
|
Xdev Host Manager
authored
2 days ago
|
25
|
The default internal domain is `madagascar.xdev.ro`. Short aliases are derived automatically from FQDNs, so `autonas01.madagascar.xdev.ro` also publishes `autonas01` without declaring it separately.
|
|
|
26
|
|
|
Xdev Host Manager
authored
2 days ago
|
27
|
The local host CA stores private material outside git under `var/ca`. Initialize it on jumper with:
|
|
|
28
|
|
|
|
29
|
```bash
|
|
|
30
|
sudo scripts/ca_manager.sh init
|
|
|
31
|
```
|