homelab-codex-ws

oskar/homelab-codex-ws

Fork 0

Commit graph

Author	SHA1	Message	Date
Oskar Kapala	a5a1352e01	fix(lustro): mount SSH key at /home/homelab/.ssh for node-agent event shipping node-agent runs as uid 1000 (homelab) since the base compose sets user "1000:1000"; ssh in _ship_events_to_vps() has no -i flag and looks for keys in $HOME/.ssh = /home/homelab/.ssh. The old mount target /root/.ssh was never consulted, so rsync to VPS failed with 'Permission denied'. uid match (pi=1000 on RPi OS) keeps OpenSSH strict ownership checks happy. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>	2026-06-11 12:45:55 +02:00
Oskar Kapala	f6342749e6	feat(onboard): add 30-node-agent.sh + lustro node-agent override Push-based deploy step for LUSTRO (git_control=false): rsync services/node-agent/ and the host override to /opt/homelab/deploy/node-agent/ on the remote, then docker compose up --build via SSH. Guard by effect: skip push+build+up if node-agent container already running (docker ps filter, not command -v). Verify: container running + events appear in /opt/homelab/events/lustro/ within 90 s (confirms agent write path). Override (hosts/lustro/runtime/node-agent/docker-compose.override.yml): - group_add: ["991"] (docker GID on LUSTRO; 999 from base concatenated — harmless) - mem_limit: 256m (MagicMirror ~1.9 GiB; agent must be bounded) - /home/pi/.ssh:/root/.ssh:ro (not /home/oskar/.ssh — pi user) - /opt/homelab/deploy/node-agent:/repo:ro (no repo checkout on push-based node) - NODE_NAME=lustro, NODE_TYPE=sd_card, VPS_EVENTS_HOST=100.95.58.48 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-09 14:24:39 +02:00

Author

SHA1

Message

Date

Oskar Kapala

a5a1352e01

fix(lustro): mount SSH key at /home/homelab/.ssh for node-agent event shipping

node-agent runs as uid 1000 (homelab) since the base compose sets
user "1000:1000"; ssh in _ship_events_to_vps() has no -i flag and looks
for keys in $HOME/.ssh = /home/homelab/.ssh. The old mount target
/root/.ssh was never consulted, so rsync to VPS failed with
'Permission denied'. uid match (pi=1000 on RPi OS) keeps OpenSSH strict
ownership checks happy.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>

2026-06-11 12:45:55 +02:00

Oskar Kapala

f6342749e6

feat(onboard): add 30-node-agent.sh + lustro node-agent override

Push-based deploy step for LUSTRO (git_control=false): rsync
services/node-agent/ and the host override to /opt/homelab/deploy/node-agent/
on the remote, then docker compose up --build via SSH.

Guard by effect: skip push+build+up if node-agent container already running
(docker ps filter, not command -v). Verify: container running + events appear
in /opt/homelab/events/lustro/ within 90 s (confirms agent write path).

Override (hosts/lustro/runtime/node-agent/docker-compose.override.yml):
- group_add: ["991"]  (docker GID on LUSTRO; 999 from base concatenated — harmless)
- mem_limit: 256m  (MagicMirror ~1.9 GiB; agent must be bounded)
- /home/pi/.ssh:/root/.ssh:ro  (not /home/oskar/.ssh — pi user)
- /opt/homelab/deploy/node-agent:/repo:ro  (no repo checkout on push-based node)
- NODE_NAME=lustro, NODE_TYPE=sd_card, VPS_EVENTS_HOST=100.95.58.48

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-06-09 14:24:39 +02:00

2 commits