fix(chen): no sysctl

2026-02-09 12:29:19 -08:00 · 2023-02-04 15:47:40 -08:00 · 2023-02-04 15:47:40 -08:00 · 3fe6f591e1
commit 3fe6f591e1
parent 7354ad3085
10 changed files with 561 additions and 6 deletions
--- a/iac/device.go
+++ b/iac/device.go
@ -71,7 +71,7 @@ func (d *Device) handle(ctx *pulumi.Context, zone *Zone, CAKey *tls.PrivateKey,
 	if err != nil {
 		return err
 	}
-  if d.Hostname != "koishi" {
+  if d.Hostname != "koishi" && d.Hostname != "tewi" {
    return err
  }
 	err = d.handleTLS(CAKey, CACert)
--- a/iac/files.go
+++ b/iac/files.go
@ -9,14 +9,20 @@ func CreatePulumiFile(ctx *pulumi.Context, name string, fqdn string, value pulum
 	environment := goMapToPulumiMap(map[string]string{
 		"PULUMI_SKIP_UPDATE_CHECK": "true",
 	})
-	return remote.NewCommand(ctx, name, &remote.CommandArgs{
+  port := 22
+  user := "deploy"
+  if fqdn == "tewi.inskip.me" {
+    port = 62954
+    user = "root"
+  }
+  return remote.NewCommand(ctx, name, &remote.CommandArgs{
 		Connection: &remote.ConnectionArgs{
 			Host:            pulumi.String(fqdn),
-			Port:            pulumi.Float64Ptr(22),
-			User:            pulumi.String("deploy"),
+			Port:            pulumi.Float64Ptr(float64(port)),
+			User:            pulumi.String(user),
 			AgentSocketPath: pulumi.String("/Users/kat/.gnupg/S.gpg-agent.ssh"),
 		},
-		Create:      pulumi.Sprintf("sudo mkdir -p /var/lib/secrets && sudo chown deploy:users -R /var/lib/secrets && cd /var/lib/secrets && echo \"%s\" > \"%s\"", value, name),
+		Create:      pulumi.Sprintf("sudo mkdir -p /var/lib/secrets && cd /var/lib/secrets && echo \"%s\" | sudo tee \"%s\"", value, name),
 		Delete:      pulumi.Sprintf("cd /var/lib/secrets && rm %s", name),
 		Environment: environment,
 	}, pulumi.DependsOn(resources))