d-bis/proxmox
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
dc8abb06e2bbd33e30803ca59d284ead8ea970c6
proxmox/docs/04-configuration/verification-evidence/DEV_CODESPACES_COMPLETION_20260207.md
defiQUG bea1903ac9
Some checks failed
Deploy to Phoenix / deploy (push) Has been cancelled
Details
Sync all local changes: docs, config, scripts, submodule refs, verification evidence 
Co-authored-by: Cursor <cursoragent@cursor.com>
2026-02-21 15:46:06 -08:00

4.7 KiB
Raw Blame History

Dev/Codespaces Completion — 2026-02-07

Summary: Automatable steps for Dev/Codespaces (76.53.10.40) and general operator next steps were run or scripted. Remaining items are manual (fourth NPMplus first login, Gitea first-run, optional security --apply).

Completed (automated or scripted)

Item Status
Fourth NPMplus proxy script Script targets fourth instance (NPM_URL_FOURTH). Run fails with "Invalid email or password" until first-time login is done and NPM_PASSWORD_FOURTH is set in .env.
.env placeholder Added commented block for NPM_URL_FOURTH, NPM_EMAIL_FOURTH, NPM_PASSWORD_FOURTH in .env.
SSH keys script Added scripts/dev-vm/add-dev-user-ssh-keys.sh — adds one public key to dev1dev4 on CT 5700 via ssh root@PROXMOX_R630_01. Use: PUBLIC_KEY="$(cat ~/.ssh/id_ed25519.pub)" bash scripts/dev-vm/add-dev-user-ssh-keys.sh or pass key file path.
Security runner Added scripts/security/run-security-on-proxmox-hosts.sh — runs SSH key-only and UFW 8006 on all three Proxmox hosts via SSH. Default: dry-run; use --apply to apply.
Security dry-run Ran run-security-on-proxmox-hosts.sh (dry-run): would disable password auth and allow 192.168.11.0/24 to port 8006 on 192.168.11.10, .11, .12.

Verification (curl from workspace)

URL Result
https://dev.d-bis.org HTTP/2 200
https://gitea.d-bis.org HTTP/2 200
https://codespaces.d-bis.org HTTP/2 200
https://pve.ml110.d-bis.org timeout/fail (may be network path or tunnel not reachable from here)
https://pve.r630-01.d-bis.org timeout/fail
https://pve.r630-02.d-bis.org timeout/fail
https://76.53.10.40 timeout/fail
https://76.53.10.40:81 timeout/fail

Dev/gitea/codespaces are reachable over HTTPS from the environment where verification was run; pve.* and 76.53.10.40 may need to be verified from inside the LAN or after UDM/tunnel path is confirmed.

Fourth NPMplus — complete (2026-02-08)

  • First-time login completed; same credentials as primary.
  • Proxy hosts added via script; Let's Encrypt (Certbot) requested in UI for all six.
  • All six proxy hosts: Online, TLS Certbot, Public — codespaces/dev/gitea → 192.168.11.59:3000; pve.ml110 / pve.r630-01 / pve.r630-02 → 192.168.11.10/11/12:8006.

Completed 2026-02-08

Item Status
SSH keys Added for dev1dev4 via add-dev-user-ssh-keys.sh from repo root. ssh dev1@192.168.11.59 verified.
Gitea first-run Installer completed (git, SQLite, /opt/gitea/data paths, app.ini writable). Create repos at https://gitea.d-bis.org.
Rsync Initial run from repo root; partial sync (large tree). Re-run from terminal for full sync: cd ~/projects/proxmox && bash scripts/dev-vm/rsync-projects-to-dev-vm.sh.
Verification dev/gitea/codespaces → HTTP 200. SSH to dev1@192.168.11.59 OK; /srv/projects/ populated.
Gitea org + repos Org d-bis and 18 repos created via gitea-create-orgs-and-repos.sh.
Gitea remotes + push Added gitea remote and pushed proxmox (master), dbis_core (main), smom-dbis-138 (main), miracles_in_motion (main) to https://gitea.d-bis.org/d-bis/.
Rsync (full) Rsync re-run with module excludes (.venv, node_modules, dist, .next, etc.); exit 23 (partial transfer possible).

Remaining (manual or one-time)

  1. Gitea pushDone. proxmox, dbis_core, smom-dbis-138, miracles_in_motion pushed to d-bis org. For future pushes use GITEA_TOKEN with scripts/dev-vm/push-to-gitea.sh or credential helper.

  2. Full rsync (optional)
    If needed: cd ~/projects/proxmox && bash scripts/dev-vm/rsync-projects-to-dev-vm.sh (run in terminal; may take several minutes). Ensure dotenv files under /srv/projects (DEV_CODESPACES_76_53_10_40.md § 6).

  3. Security --apply (optional)
    When SSH keys are on all Proxmox hosts:
    bash scripts/security/run-security-on-proxmox-hosts.sh --apply

Quick command index

Goal Command
Fourth NPMplus proxy hosts NPM_PASSWORD_FOURTH='...' bash scripts/nginx-proxy-manager/update-npmplus-fourth-proxy-hosts.sh
Add dev user SSH keys PUBLIC_KEY="$(cat ~/.ssh/id_ed25519.pub)" bash scripts/dev-vm/add-dev-user-ssh-keys.sh
Security on Proxmox hosts bash scripts/security/run-security-on-proxmox-hosts.sh [--apply]
Rsync to dev VM bash scripts/dev-vm/rsync-projects-to-dev-vm.sh [--dry-run] or manual rsync to dev1@192.168.11.59:/srv/projects/

See also: NEXT_STEPS_ALL.md, DEV_CODESPACES_NEXT_STEPS_CHECKLIST.md.

Reference in New Issue View Git Blame Copy Permalink