RubyGems - subspace - Versions diffs - 3.0.11 → 3.0.13 - Mend

subspace 3.0.11 → 3.0.13

Files changed (9) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d1c77eb9c5ed9af690c41c6976b9ba324d4fe24418821b4c6121067b7c255158
-  data.tar.gz: 01e1baa80b61039274f258d4c26cbc4355ac711745d9b40521f30949f4dd7a6d
+  metadata.gz: fd80f06bb8065ca4506d7b4d40c6e001f67b25c9aedf9a0ff513a099a23d98c9
+  data.tar.gz: 73eed74a49b776a5e465b57783eaabb7257fd8ea6fa49e0f3c4908c397409468
 SHA512:
-  metadata.gz: 066ace825b18a5ad8f2b0d3c1b5a792e3863fa76ca8e9a3dc13bd27d53dbd28b29ee484fcb66f00d450b4439e8e33d57be1998b6810e33fc62b0929c42362c8d
-  data.tar.gz: 21656985d06485065cd6f36b32ed195691ca7f738d40e5254f4dcfc09849a436f00795900dc0a60e8b0f233c0c00fecbdd841f7efe6fd9e11bf0a96efd570015
+  metadata.gz: 962f2c5c22909b7a9b544cb67a97d70d281dab1afbd24d9873ece20e4d2c45a44449e3102e1bc703b8847bacf10b5b6aa4eeb89487b112034ddf562ad11c74eb
+  data.tar.gz: 6101675bde847ffd31133754fb41142214c1128200a8b5815cb90eb313c82e014cb4a117143d71ea402b0da6f60ceea17bd8bc9eb5b2c78b28843687fe819251

data/CHANGELOG.md CHANGED Viewed

@@ -12,6 +12,12 @@ This project attempts to follow [semantic versioning](https://semver.org/).
 ## Unreleased
+## 3.0.13
+  * Allow tailscale to update itself again; bug that required known good version pinning in 3.0.10 has been resolved.
+## 3.0.12
+  * Bugfix: use `exist?`
 ## 3.0.11
   * Change tailscale pinning behavior to allow install, and then pin to specific version
   * Fix psycopg2 break_system_packages to work across ubuntu/python versions

data/README.md CHANGED Viewed

@@ -480,6 +480,23 @@ This will install a monit script that keeps sidekiq running.  We spawn one sidek
 Sidekiq uses redis by default, and rails connects to a redis running on localhost by default.  However, this role does not depend on redis since in production it's likely redis will be running elsewhere.  If you're provisioning a standalone server, make sure to include the redis role.
+## tailscale
+This installs/updates the Tailscale package, and adds/authenticates servers to the 10FW Tailnet.
+**Prerequesites:**
+- Create an auth key within tailscale, appropriately tagged & granted ACL access for the given project.
+- Add `tailscale_auth_key` to the secrets vault for the environment you wish to provision.
+**Recommendations:**
+At the top of `config/subspace/{env}.yml`, add a separate block to allow the tailscale role to execute before all other roles. When the tailscale package is updated, the ssh connection will be broken, and it's best to get this out of the way first thing during a maintain or provision.
+**Force Reauthentication:**
+To force authentication with the tailnet, use the following tag when provisioning:
+    subspace provision {env} --tags=tailscale_reauth`
 ## Other Internal Roles

data/ansible/roles/tailscale/tasks/main.yml CHANGED Viewed

@@ -18,6 +18,7 @@
       - tailscale_reauth
   - name: "Allow tailscale to be installed"
+    ignore_errors: yes
     dpkg_selections:
       name: tailscale
       selection: install
@@ -27,7 +28,7 @@
   - name: "Install tailscale from apt"
     apt:
-      name: tailscale=1.66.4
+      name: tailscale
       state: present
       allow_downgrade: true
       update_cache: yes
@@ -35,14 +36,6 @@
       - maintenance
       - tailscale_reauth
-  - name: "Prevent tailscale from being upgraded"
-    dpkg_selections:
-      name: tailscale
-      selection: hold
-    tags:
-      - maintenance
-      - tailscale_reauth
   - name: "Join the tailnet and force reauth"
     become: true
     command: tailscale up --ssh --auth-key={{tailscale_auth_key}} --hostname={{project_name | regex_replace('_', '')}}-{{hostname}} --accept-risk=lose-ssh {{tailscale_options}} --force-reauth

data/lib/subspace/commands/base.rb CHANGED Viewed

@@ -59,7 +59,7 @@ module Subspace
       end
       def confirm_overwrite(file_path)
-        return true unless File.exists? file_path
+        return true unless File.exist? file_path
         answer = ask "#{file_path} already exists. Reply 'y' to overwrite: [no] "
         return answer.downcase.start_with? "y"
       end

data/lib/subspace/commands/init.rb CHANGED Viewed

@@ -25,7 +25,7 @@ class Subspace::Commands::Init < Subspace::Commands::Base
   end
   def run
-    if File.exists? dest_dir
+    if File.exist? dest_dir
       answer = ask "Subspace appears to be initialized.  Reply 'yes' to continue anyway: [no] "
       abort unless answer.chomp == "yes"
     else

data/lib/subspace/commands/secrets.rb CHANGED Viewed

@@ -29,7 +29,7 @@ class Subspace::Commands::Secrets < Subspace::Commands::Base
   end
   def create_local
-    if File.exists? File.join(project_path, "config/application.yml")
+    if File.exist? File.join(project_path, "config/application.yml")
       answer = ask "config/application.yml already exists. Reply 'yes' to overwrite: [no] "
       abort unless answer == "yes"
     end

data/lib/subspace/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Subspace
-  VERSION = "3.0.11"
+  VERSION = "3.0.13"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: subspace
 version: !ruby/object:Gem::Version
-  version: 3.0.11
+  version: 3.0.13
 platform: ruby
 authors:
 - Brian Samson
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2024-07-08 00:00:00.000000000 Z
+date: 2024-12-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -313,7 +313,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.13
+rubygems_version: 3.5.23
 signing_key:
 specification_version: 4
 summary: Ansible-based server provisioning for rails projects