The initial setup and maintenance of the forge you can use the forge.sh script:
| Command | Description |
|---|---|
./forge.sh setup |
Setup the forge for the first time or update existing setup |
./forge.sh heat-up |
Start the forge |
./forge.sh cool-down |
Stop the forge |
Just in case you haven't have a look at the forge.sh script. The following things happen during the setup:
-
The pre-requisites are checked
-
You will be asked for your user credentials This is not to spy on you. We need them to execute the configure_host.yml. It will configure the necessary settings so you don't have to do that manually. See step 7.
-
A podman network
ublue-os_forgeis created. All containers from this setup will be attached to it in the next step -
All containers are built and spun up according to the forge-pod.yml specification.
-
The forge SSH key is added to your
~/.ssh/authorized_keysfile. The root certificate and key are created during container build mentioned in the previous step. -
The forge root certificate is copied to the data directory.
-
The configure_host.yml playbook mentioned in step 2 is executed. This will created the necessary host entries in
/etc/hosts, copy the forge root certificate to/etc/pki/ca-trust/source/anchors/,update-ca-trustand create the example configuration in the data directory.