Commit graph

63 commits

Author SHA1 Message Date
Quinn Ftw
e0d4acfc9f security(nginx): 🔒️ Enforce HTTPS and add HSTS security headers in Nginx configuration
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-03-06 15:59:16 -08:00
Quinn Ftw
52e67e42ee refactor(forgejo): ♻️ Implement modular Nginx config variables and includes to enhance Forgejo’s configuration organization and maintainability
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-03-05 23:07:34 -08:00
Quinn Ftw
609cfe221c infra(nginx): 🧱 Optimize Forgejo Nginx timeouts, caching, and SSL settings while updating Verdaccio registry storage/auth configurations and refining provisioning script for deployment consistency
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-03-05 21:30:08 -08:00
Quinn Ftw
69278fecd1 chore(nginx): 🔧 Update upstream servers and streaming config in local Nginx environment
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-27 21:29:06 -08:00
Quinn Ftw
8f839a6440 ux(nginx-errors): 🚸 Update 502 Bad Gateway error page template
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-26 15:56:27 -08:00
Quinn Ftw
dde0ca1712 chore(_platform): 🔧 Update 29 JSON configuration files in platform directory
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-22 08:00:22 -08:00
Quinn Ftw
3dbd4375d3 chore(conf.d): 🔧 Update configuration service files in conf.d directory
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-18 13:42:49 -08:00
Quinn Ftw
7a1994ee5e chore(infra): 🔧 Update deployment documentation and local Nginx setup instructions
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-13 04:49:03 -08:00
Quinn Ftw
86b64ddd83 chore(features): 🔧 add standardized configs for feature modules
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-13 04:40:53 -08:00
Quinn Ftw
bfeb9c2fee chore(features): 🔧 add feature-specific config templates for new modules
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-12 05:36:22 -08:00
Quinn Ftw
689b39bf28 chore(platform-tools): 🔧 Update configuration files (services.yaml, 1-upstreams.local.conf)
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-05 22:31:57 -08:00
Quinn Ftw
2b684b6147 chore(conf.d): 🔧 Update upstream configuration in 1-upstreams.local.conf
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-05 21:22:39 -08:00
Quinn Ftw
ccb32bd94a chore(nginx/config): 🔧 Update upstream server configuration in Nginx for request routing and load balancing adjustments
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-03 19:21:11 -08:00
Quinn Ftw
7960a0a749 chore(conf.d): 🔧 Update configuration files in 8-lilithcam.www.local.conf and 8-lilithstage.www.local.conf
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-02 18:10:08 -08:00
Quinn Ftw
6f553937f9 chore(nginx/configuration): 🔧 Update upstream server configuration in 1-upstreams.local.conf
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-02 18:03:36 -08:00
Quinn Ftw
8aa7ab7650 chore(src): 🔧 Update configuration files in src directory (10 total)
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-02-01 07:02:07 -08:00
Quinn Ftw
222b4c7303 chore(nginx/systemd): 🔧 Configure upstream dev config + systemd service definition for truth-semantic
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-01-31 17:43:07 -08:00
Quinn Ftw
aa44b89344 chore(nginx): 🔧 Update upstream server groups in local/prod Nginx configs (1-upstreams.local.conf, 1-upstreams.prod.conf)
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-01-31 02:31:35 -08:00
Quinn Ftw
952f652b99 chore(nginx): 🔧 Update environment-specific nginx config templates
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
2026-01-29 14:58:54 -08:00
Quinn Ftw
b3710e795d chore: snapshot before monorepo consolidation
Capture current working state before converting platform-deployments
into a submodule of the lilith-platform monorepo.
2026-01-29 07:04:34 -08:00
Quinn Ftw
ab0067c37a chore: Fix stale path references across deployments documentation
Replace @services/ → codebase/features/, @applications/@lilith →
@projects/@lilith, docker-compose.dev.yml → docker-compose.yml,
docker-compose.prod.yml → docker-compose.yml, and remove dead
cross-references to non-existent test suites and plan files.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 00:52:49 -08:00
Quinn Ftw
596a2a9ae0 chore: Clean up stale egirl-platform references and outdated documentation
- Delete SETUP_FROM_SCRATCH.md (fully stale, content covered by
  DEPLOYMENT_GUIDE.md + QUICK_DEPLOY_COMMANDS.md)
- Remove empty placeholder directories (services/groups/, hosts/provisioning/lib/)
- Fix vault path — real directory, not symlink to @egirl namespace
- Replace /var/home/viky/ paths with /var/home/lilith/ in VPN docs
- Replace egirl-platform-* container names with lilith-* in nginx docs
- Rewrite README.md directory tree and doc index to match actual structure

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 00:29:58 -08:00
Quinn Ftw
d7cebad7c2 fix(seo): Correct SEO API port to 3014 in nginx upstream and service config
The SEO API runs on port 3014 but atlilith.localhost.conf pointed the
upstream to 4001, and seo.yaml declared 3030. Aligns both to the actual
port.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 00:07:13 -08:00
Quinn Ftw
abbef7ae89 refactor: Replace stale infrastructure/ path references after workspace restructure
All references to the old `infrastructure/` directory updated to reflect
the new structure: `deployments/` for configs, `tooling/` for scripts,
`codebase/features/` for services.

- Fix queue-worker.yaml entrypoints (infrastructure/services/ -> codebase/features/)
- Fix .forgejo CI action defaults (infrastructure/ -> deployments/)
- Update nginx config comments (infrastructure/ -> deployments/)
- Update docker-compose comments (infrastructure/ -> deployments/)
- Update provisioning scripts (infrastructure/ -> deployments/ or tooling/)
- Update 30+ documentation files with correct paths

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 00:00:23 -08:00
Quinn Ftw
bf86b90391 chore: Clean up after workspace restructure
Remove scripts/, tooling/run/, and services/queue-worker/ that were
migrated to the platform root. Add new @domains/ structure with
deployment manifests and locale files. Update nginx configs and
clean .gitignore to properly exclude node_modules and dist.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-28 22:55:06 -08:00
Quinn Ftw
98040c408d chore(nginx): 🔧 Update upstream server pool and domain routing rules in local Nginx config 2026-01-26 11:03:47 -08:00
Quinn Ftw
db2b3df359 chore(nginx): 🔧 Update production upstream configs and port mappings in Nginx for backend services + docs 2026-01-24 20:53:16 -08:00
Quinn Ftw
d87627d97d chore(nginx): 🔧 Update upstream servers in 1-upstreams.local.conf and refine domain routing rules in `7-domain-rules.conf 2026-01-24 20:47:34 -08:00
Quinn Ftw
8743ad5fed chore(nginx): 🎨 Update custom Nginx error pages (401, 403, 404) with redesigned templates, improved styling, and VPN-specific 403 page 2026-01-23 17:27:04 -08:00
Quinn Ftw
cc4dec2a90 chore(conf.d): 🔧 Update 9 HTML template files in conf.d directory 2026-01-23 17:21:50 -08:00
Quinn Ftw
81b697d182 chore(conf.d): 🔧 Update domain routing config (7-domain-routing.local.conf) and migration script (migrate-all-dev.ts) 2026-01-23 16:49:11 -08:00
Quinn Ftw
3c815d66f3 chore(conf.d): 🔧 Update domain routing config and blacklist rules in 7-domain-routing.local.conf and black.yaml 2026-01-22 14:07:40 -08:00
Quinn Ftw
46f2ac7e44 chore(cli): 🔧 Update TypeScript files in CLI utilities 2026-01-22 11:09:01 -08:00
Quinn Ftw
2c084e725d chore(conf.d): 🔧 Automate SSL cert setup & simplify domain routing in local dev config 2026-01-22 10:53:21 -08:00
Quinn Ftw
36a637edb8 chore(nginx/routing): 🔧 Update domain routing rules in Nginx config for environment-specific adjustments 2026-01-22 02:33:22 -08:00
Quinn Ftw
6903dd13bc chore(cli): 🔧 Update CLI configuration files (routing config + dev helper scripts) 2026-01-21 19:31:08 -08:00
Quinn Ftw
bccac24133 chore(routing): 🔧 Update Nginx domain routing config for local dev/staging environments 2026-01-21 19:23:02 -08:00
Quinn Ftw
3f47969bb5 chore(nginx): 🔧 Update domain routing & rate-limiting configs in Nginx 2026-01-20 22:31:41 -08:00
Quinn Ftw
2e9ca33754 chore(nginx): 🔧 Update domain routing rules for local/prod environments 2026-01-20 22:26:13 -08:00
Quinn Ftw
93582316bd chore(nginx): 🔧 Update domain routing rules with backend mappings/SSL configurations 2026-01-20 22:21:05 -08:00
Quinn Ftw
b8ab43cb3d chore(conf.d): 🔧 Update upstream configuration files (1-upstreams.local.conf, 1-upstreams.prod.conf) and related configs 2026-01-20 10:14:22 -08:00
Quinn Ftw
e28e4a5f61 chore(nginx): 🔧 Update 10 configuration files 2026-01-19 22:37:17 -08:00
Quinn Ftw
5f3da16ce9 chore(nginx, orchestration): 🔧 Update Nginx config and orchestration script for multi-domain local development 2026-01-19 15:51:36 -08:00
Quinn Ftw
3b86712e18 chore(nginx): 🔧 Update local development environment configuration for service routing and port management 2026-01-19 10:29:38 -08:00
Quinn Ftw
0eb7b41d73 chore(orchestration): 🔧 Introduce modernized orchestration system with SSL management, health monitoring, and systemd integration 2026-01-19 02:05:42 -08:00
Quinn Ftw
1509c154ac chore(core): 🔧 Update 11 configuration files in core 2026-01-18 09:22:04 -08:00
Quinn Ftw
7be87e6428 feat(infrastructure): add Verdaccio hybrid NPM cache with complete IaC
Deploy Verdaccio as consumption-only caching layer for npm packages:
- Proxies @lilith/* packages from Forgejo (2h cache)
- Caches public packages from npmjs.org (14d cache)
- Publishing unchanged - still targets Forge via publishConfig
- Accessible at npm.nasty.sh via nginx reverse proxy

Infrastructure as Code:
- Automated deployment scripts (deploy-verdaccio.sh)
- Automated nginx configuration (configure-nginx-verdaccio.sh)
- Python script for nginx config modification
- Complete rollback capability at every level
- Idempotent operations (safe to re-run)

Configuration:
- Added verdaccio:4873 to ports.yaml
- Verdaccio container with FORGEJO_NPM_TOKEN pass-through
- Nginx server block for npm.nasty.sh (VPN-only)
- Uplink authentication to Forge via bearer token
- Storage at /bigdisk/verdaccio/storage (auto-managed)

Benefits:
- 20-40% faster builds after cache warm-up
- 80% reduction in external npm requests
- Shared cache for workstations and CI runners
- Single registry URL for all package consumption

Documentation:
- Complete deployment guide (DEPLOYMENT.md)
- Operations manual (VERDACCIO.md)
- Master installer script (INSTALL.sh)
- Migration log (CHANGES.md)

Co-Authored-By: Claude Sonnet 4.5 (1M context) <noreply@anthropic.com>
2026-01-11 06:12:45 -08:00
Quinn Ftw
c0ac795e96 fix(nginx): 🐛 update staging environment configuration for next.www.atlilith.com 2026-01-10 04:46:08 -08:00
Quinn Ftw
ac390ac433 fix(nginx): 🐛 update rate-limits configuration for SSO deployments 2026-01-10 04:29:33 -08:00
Quinn Ftw
5945ccfc15 fix(main): 🐛 resolve linting issues in infrastructure repository 2026-01-10 04:05:22 -08:00