Local host registry and management UI for the Madagascar network.
This project lives on jumper and is the local source for:
config/hosts.yaml - git-versioned host registryconfig/local-hosts.tsv - DNS manifest exported for local resolversconfig/work-orders.yaml - confirmable operational changesscripts/host_manager.pl - Perl-only web appscripts/sync_local_hosts.sh - local DNS sync to jumper and as01scripts/ca_manager.sh - local OpenSSL CA helper for host certificatesThe public xdev.ro zone is maintained in the separate DNS public-zone repository.
Runtime path:
/usr/local/xdev-host-manager
Secrets live outside git in /etc/xdev/host-manager.env.
The web UI is OTP-protected for all registry data, downloads, exports, and writes. Automation should consume this repository through git with dedicated read-only keys, not through unauthenticated HTTP.
The default internal domain is madagascar.xdev.ro. Short aliases are derived automatically from FQDNs, so autonas01.madagascar.xdev.ro also publishes autonas01 without declaring it separately.
Name removals with operational impact go through a Work Order. A WO records intent first; the operational checklist must be completed before confirmation can update hosts.yaml, mark the WO as confirmed, and regenerate local-hosts.tsv. Resolver sync remains an explicit operator step.
The local host CA stores private material outside git under var/ca. Initialize it on jumper with:
sudo scripts/ca_manager.sh init