73 lines
2.5 KiB
Markdown
73 lines
2.5 KiB
Markdown
# LoopAware Infrastructure CLI
|
|
|
|
A robust Python-based CLI designed for automated management of the LoopAware infrastructure. Built for developers and AI agents to provision and manage resources on a flat `10.32.0.0/16` network.
|
|
|
|
## Core Modules
|
|
|
|
| Module | Command | Description |
|
|
|--------|---------|-------------|
|
|
| **Identity** | `infra samba` | Manage Active Directory users and groups. |
|
|
| **Compute** | `infra proxmox` | Provision and destroy LXC containers across nodes. |
|
|
| **Database**| `infra db` | Provision PostgreSQL databases and users. |
|
|
| **Network** | `infra dns` | Manage static DHCP leases and DNS records. |
|
|
| **IP AM** | `infra ip` | Automatic discovery of free IPs in the agent pool. |
|
|
| **Ingress** | `infra ingress` | Manage HAProxy subdomains and routing. |
|
|
| **Certificates**| `infra cert` | Manage SSL/TLS certificates (Let's Encrypt). |
|
|
| **External**| `infra cloudflare`| Manage Cloudflare DNS and Dynamic DNS updates. |
|
|
|
|
## Installation
|
|
|
|
```bash
|
|
cd external/dynamic-infra-tooling
|
|
pip install -e .
|
|
```
|
|
|
|
## Configuration
|
|
|
|
The CLI looks for a config file at `~/.config/loopaware/infra-cli.yaml` or the path specified in the `INFRA_CONFIG` environment variable.
|
|
|
|
```bash
|
|
# Set up your local config
|
|
cp config.yaml.example config.yaml
|
|
export INFRA_CONFIG=$(pwd)/config.yaml
|
|
```
|
|
|
|
## Common Workflows
|
|
|
|
### Provisioning a New Service
|
|
1. **Find an IP:** `infra ip next-free`
|
|
2. **Create Database:** `infra db provision "project-name"`
|
|
3. **Provision LXC:** `infra proxmox create-lxc 12345 debian-13 "project-host" "10.32.70.x/16" "10.32.0.1" --node la-vmh-12`
|
|
4. **Setup DNS:** `infra dns add-host <MAC> 10.32.70.x "project-host"`
|
|
5. **Expose Ingress:** `infra ingress add "project.loopaware.com" 10.32.70.x 80`
|
|
|
|
### Full Decommission
|
|
Clean up every trace of a service in one command:
|
|
```bash
|
|
infra decommission --domain project.loopaware.com --mac <MAC> --vmid 12345 --node la-vmh-12 --port-name project_udp
|
|
```
|
|
|
|
### Certificate Management
|
|
```bash
|
|
# List all active certificates
|
|
infra cert list
|
|
|
|
# Check main certificate expiry
|
|
infra cert status
|
|
|
|
# Trigger dynamic SAN discovery and renewal
|
|
infra cert renew --force
|
|
```
|
|
|
|
## Safety & Validation
|
|
- **Template Resolution:** The `debian-13` alias automatically finds the latest template on the target Proxmox node.
|
|
- **Input Validation:** All IPs, MACs, and Ports are validated before execution.
|
|
- **Pre-flight Checks:** The CLI verifies SSH connectivity to nodes before attempting changes.
|
|
|
|
## Development
|
|
|
|
### Running Tests
|
|
```bash
|
|
export ROUTER_PASS="..."
|
|
pytest tests/test_cli.py -v
|
|
```
|