add monitoring

Run victoria metrics and grafana on rivendell. Grafana is using authelia for auth. We run some collectors on all the machines, and they publish to VM through the wireguard interface.
author: Franck Cuny <franck@fcuny.net> 2025-12-19 08:51:52 -0800
committer: Franck Cuny <franck@fcuny.net> 2025-12-19 08:58:36 -0800
commit: 58159636e820926eaf731aed4c3de657717dabe8 (patch)
tree: bdbbf9466c8ad9a2d7f3d8d373cd9a36f883f56e /justfile
parent: use kitten ssh to ssh (diff)
download: infra-58159636e820926eaf731aed4c3de657717dabe8.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/justfile b/justfile
index 7f62818..a63b1bd 100644
--- a/justfile
+++ b/justfile
@@ -51,3 +51,9 @@ sync-agenix-key:
 	mkdir -p ~/.ssh
 	op --account my.1password.com read "op://Private/agenix/private key?ssh-format=openssh" > ~/.ssh/agenix
 	op --account my.1password.com read "op://Private/agenix/public key" > ~/.ssh/agenix.pub
+
+# generate a new OIDC secret
+[group('secrets')]
+oidc-secret:
+	@echo "generate a new OIDC secret..."
+	nix run nixpkgs#authelia -- crypto hash generate pbkdf2 --variant sha512 --random --random.length 72 --random.charset rfc3986
author	Franck Cuny <franck@fcuny.net>	2025-12-19 08:51:52 -0800
committer	Franck Cuny <franck@fcuny.net>	2025-12-19 08:58:36 -0800
commit	58159636e820926eaf731aed4c3de657717dabe8 (patch)
tree	bdbbf9466c8ad9a2d7f3d8d373cd9a36f883f56e /justfile
parent	use kitten ssh to ssh (diff)
download	infra-58159636e820926eaf731aed4c3de657717dabe8.tar.gz