T

Will Anderson 48106b27ec vault: cut over to GCE Raft HA cluster, retire nook.family media stack

- dns-neuralplatform.tf: add vault.neuralplatform.ai A record → 34.54.164.21 (GCP LB)
  DNS-only (not proxied) so GCP managed TLS cert can provision correctly
- main.tf: remove vault.neuralplatform.ai from Cloudflare tunnel ingress
  (now served directly via GCP Global HTTPS LB)
- main.tf: remove watch.nook.family, jellyfin.nook.family, bazarr.nook.family
  from tunnel ingress (nook.family media stack retired; infra is Neuron-focused)

GCE Vault cluster already initialized and running (3-node Raft, active since
2026-05-04T16:05). Secrets migrated 48/48 from k3s vault. ESO ClusterSecretStore
validated against new vault. k3s vault-0 is now superseded.

2026-05-04 16:40:03 -05:00

docs

Fix gitea_domain variable and add VPN/Headscale infrastructure

2026-03-25 08:44:20 -05:00

scripts

feat(runpod): add inference pod templates, nginx LB, and provisioner script

2026-04-25 01:20:55 -05:00

servers

vault: cut over to GCE Raft HA cluster, retire nook.family media stack

2026-05-04 16:40:03 -05:00

.gitignore

feat(observability): wire OpenTelemetry into MCP backend and marketing site

2026-04-24 14:21:34 -05:00

Agents.md

Rename inference endpoint to neuron.neurontechnologies.ai, add wildcard DNS for customer orgs

2026-04-28 11:15:11 -05:00

README.md

fix: gitea runner workingDir, README updates, monitoring domain

2026-03-24 12:55:29 -05:00

README.md

infrastructure

Personal infrastructure-as-code for Legion (k3s home server) and supporting tooling.

Doc	What it covers
`AGENTS.md`	Full reference: machines, secrets, services, domains, namespaces, common operations
`servers/legion/README.md`	What's running on Legion and how deployment works
`servers/legion/RUNBOOK.md`	Disaster recovery — full restore from scratch

Quick start

cd servers/legion
direnv allow
terraform plan
terraform apply

Push to servers/ to deploy app changes via Argo CD.