Changes between Version 13 and Version 14 of WikiStart


Ignore:
Timestamp:
04/29/25 11:37:15 (4 weeks ago)
Author:
enno
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • WikiStart

    v13 v14  
     1
    12= Welcome to Operation Advanced Infrastructure (OAI)
    23
    34== Motivation
    45
    5 This project is an ongoing effort to create a better infrastructure for our preliminary working environment and to document it accordingly.
    6 It will help to onboard new team members, e.g. admins or developers in order to remove some load from existing personnel.
     6Operation Advanced Infrastructure (OAI) is an ongoing initiative to build a more robust and reproducible infrastructure for our working environment, while providing thorough documentation.
     7This will help onboard new team members, such as administrators and developers, and reduce the workload on existing personnel.
    78
    89== Goal
    910
    10 This project can be used as a blue print for a real production environment, when permit is given
     11OAI can serve as a blueprint for a production-ready environment once the necessary approvals are obtained.
    1112
    12 == Key points
     13== Key Points
    1314
    14 * Every part of the new infrastructure is reproducible
    15 * Everything is under version control
    16 * Commits have to be signed
    17 * We provide git repositories, wikis and bug trackers to document everything
    18 * We automate as many processes as possible
    19 * Backups are done regularly
    20 * Tested desaster recovery is mandatory - downtimes not longer than 8 hours max
     15Every component of the infrastructure must be fully reproducible.
    2116
    22 '''These key points are non-negotiable'''
     17All assets are managed under version control.
     18
     19Commits must be cryptographically signed.
     20
     21Git repositories, wikis, and bug trackers are provided to document all aspects of the system.
     22
     23Wherever possible, processes are automated.
     24
     25Regular backups are mandatory.
     26
     27Disaster recovery must be tested — maximum acceptable downtime is 8 hours.
     28
     29'''These key points are non-negotiable.'''
    2330
    2431== Tools
    2532
    26 * [https://guix.gnu.org/en/ guix] to declare everything reproducible
    27 * [https://trac.edgewall.org/ trac] for wiki and bug tracking
    28 * [https://gitolite.com/gitolite/index.html gitolite] for fine-grained access control to our git repos
    29 * [https://en.wikipedia.org/wiki/Free_and_open-source_software libre software] whenever possible - exceptions, e.g. firmware must be clearly justified
     33[https://guix.gnu.org/en/ guix] — for declarative, reproducible system management
    3034
    31 == Recommended hardware
     35[https://trac.edgewall.org/ trac] — for wiki documentation and issue tracking
    3236
    33 * 1 Server for CI / CD with 10 TB of storage space and at least 12 cores
    34 * 1 Substitute server for binaries coming from CI / CD with 20 TB of storage space
    35 * 1 Server to host gitolite repositories and trac installation
    36 * 1 Computer for air gap data exchange
    37 * Multiple developer machines
     37[https://gitolite.com/gitolite/index.html gitolite] — for fine-grained access control to our Git repositories
     38
     39[https://en.wikipedia.org/wiki/Free_and_open-source_software libre software] — preferred wherever possible; exceptions (e.g., firmware) must be clearly justified
     40
     41== Recommended Hardware
     42
     431 server for CI/CD, with 10 TB storage and at least 12 CPU cores
     44
     451 mirror server for CI/CD output, with 20 TB storage
     46
     471 server to host gitolite repositories and the Trac installation
     48
     491 computer for air-gapped data exchange
     50
     51Multiple developer workstations
    3852
    3953== Personnel
    4054
    41 * Two '''hardcore''' admins with high expertise in Guix, [https://en.wikipedia.org/wiki/DevOps DevSecOps], Containers and Linux in general
    42 * Another two admins with enough knowledge to roll out predeclared systems and to write detailed bug reports
     55Two '''expert-level''' administrators with deep knowledge of Guix, [https://en.wikipedia.org/wiki/DevOps DevSecOps], containerization, and Linux systems
    4356
    44 == Time and money
     57Two additional administrators capable of deploying predeclared systems and writing detailed bug reports
    4558
    46 * Hardware costs: below 10000 Euro (without developer machines)
    47 * Time to train existing personnel: less than 3 months, if personnel already is motivated and has profound knowledge as admin
     59== Time and Budget
     60
     61Hardware costs: under €10,000 (excluding developer workstations)
     62
     63Personnel training time: less than 3 months, assuming candidates are already motivated and possess solid administrative skills
    4864
    4965[[Configs]] [[Workflows]] [[Questions and Answers]]