@marramgrass Update on my adventures. I not have an Ansible playbook that will completely move an existing app from Heroku onto a new VPS, migrate the data, point the domain to the new server and create new LetsEncrypt certs.

I'm really loving it.

@mo I also want to do that upgrade, but my prediction for the stainless steel makes it a bit much this month with all the back to school and extra curricular costs 😔

@mo not yet, I’m on the up to date program and last years late launch and low availability would mean me paying an extra £200 to get it now. Will get the gold Xs at the start of November

@marramgrass I’ve probably created and torn down about 150 servers this week 😅

@marramgrass bit of both. Provisioning app server from scratch, but making updates on the proxy and database servers.

@marramgrass one nice thing is you can always fall back to just issuing shell commands if there isn’t a module. Ansible Galaxy is also really handy, you can install something and then use it as a reference or tweak to suit your needs.

@marramgrass @d3z I just started really basic, got one stage working then built it up until it worked. I put the whole thing in a Docker container too. Only tricky part was getting SSH agent forwarding into Docker on the Mac.

Happy to help with my swathe of one weeks knowledge 😜

@marramgrass I looked it that, Terraform, Chef, Puppet and Ansible was the only one that did a good job describing how it worked 😂

I do like the very simple, declarative style too.

@mo yeah, it’s very neat. Going to make more “useful” playbooks to manage update rollouts across all client apps simultaneously, add/remove developer access to servers in bulk, stuff like that.

@mo I’ve got it that is will go off and create a new Linode server, create default users, disable roof login, disable password auth for SSH, install Apt updates, activate UFW, install Docker, pull, build and run the container, add the new server to the DB server firewall and pg_hba, create a DNS entry on AWS Route 53 to our Nginx proxy server, add the Nginx conf for the subdomain and run Certbot to install ssl certs and redirect port 80 to 443.

NI Tech

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!