Skip to content

Changelog

Since October

Sprint W42

  1. Added new microservice - showcase
  2. Draft version of bots as pods solution

Summer Logs

sprint 1

  1. Local manifest coverage of all API services
  2. Encrypted environment container storage (not entirely sure if it's completely secure, Vault will be needed in the future)

sprint 2

  1. Remote deployment to staging
  2. CI/CD for backend and frontend (requires deployment, first point)
  3. SSL (requires deployment)

sprint 3

  1. Vault - secrets can now be changed in a convenient Vault UI
  2. Logging and monitoring - available via grafana.upmini.app
  3. Initial setup of the CUDA server together with Ilya
  4. Minimal ArgoCD, which works only when the DevOps repository is changed

sprint 4

  1. ArgoCD on a subdomain and a link to the DevOps repository with the back and front for automatic synchronization
  2. Database backups and sending to Telegram
  3. Alerts for incidents in TG (built-in from Prometheus and one custom warning if more than 90% of memory is used)

sprint 5

  1. Created a script to rewrite variables if vault crashes when restarting the server (temporary solution until vault is transferred to prod mode)
  2. Fixed alert templates, now only the most necessary and links to the dashboard with metrics and logs
  3. Minimal analysis of bot consumption (report in one of the issues in the DevOps repository), in the future a full-fledged performance test with locust may be needed

sprint 6

  1. Configured landing on cluster
  2. Deployment and configutation of MinIO
  3. Alertmanager config changes

sprint 7

  1. Vault is now in production mode and there is no need to recreate secrets when restarting the server
  2. Automatic deployment is configured when pushing to the staging branch in the landing repository

sprint 8

  1. Structured and added docs site for DevOps part. In the future need to deploy it with possibly login/password of employees to restrict access or in VPN
  2. Configured horizontal autoscaler for services
  3. Added minimal ddos defense by restricting RPS and connections in ingress NGINX configuration
  4. Added Ansible and role for installing microk8s for simplifying process of initial server configuration
  5. Initial production server configuration

sprint 9

  1. Final production server setup
  2. Created repo and initial skeleton for wiki of the service for developers