This project contains the FreeBSD pot (jail) (pkg install pot) flavours which are regularly built with Jenkins and published on potluck.honeyguide.net.
These changes allow a secure orchestrated bootstrap of a vault/consul/nomad
cluster. They require more documentation - we might simply publish ansible
playbooks to support users.
This also moves cook scripts to flavour.d and reduces the overall size
of cook scripts dramatically to reduce the need to escape scripts to a
minimum. All scripts should pass shellcheck.
Note the use of 'set -o pipefail', as this is supported by FreeBSD's
/bin/sh since 11.3. We might want to expand that to more scripts.
This also adds .ini files for potman, which was also used to build-test
(did not use the resulting images yet). Build should work just fine
without potman though.
These changes allow a secure orchestrated bootstrap of a vault/consul/nomad cluster. They require more documentation - we might simply publish ansible playbooks to support users.
This also moves cook scripts to flavour.d and reduces the overall size of cook scripts dramatically to reduce the need to escape scripts to a minimum. All scripts should pass shellcheck.
Note the use of 'set -o pipefail', as this is supported by FreeBSD's /bin/sh since 11.3. We might want to expand that to more scripts.
This also adds .ini files for potman, which was also used to build-test (did not use the resulting images yet). Build should work just fine without potman though.