michael_dileo/Keybard-Vagabond-Demo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

redaction (#1)

Browse Source 
Add the redacted source file for demo purposes

Reviewed-on: https://source.michaeldileo.org/michael_dileo/Keybard-Vagabond-Demo/pulls/1
Co-authored-by: Michael DiLeo <michael_dileo@proton.me>
Co-committed-by: Michael DiLeo <michael_dileo@proton.me>
This commit was merged in pull request #1.
This commit is contained in:
Michael DiLeo
2025-12-24 13:40:47 +00:00
committed by michael_dileo
parent 612235d52b
commit 7327d77dcd
333 changed files with 39286 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
.cursor/rules/00-project-overview.mdc Normal file
View File

@@ -0,0 +1,58 @@
---
description: Keyboard Vagabond project overview and core infrastructure context
globs: []
alwaysApply: true
---
# Keyboard Vagabond - Project Overview
## System Overview
This is a **Talos-based Kubernetes cluster** designed to host **fediverse applications** for <200 MAU (Monthly Active Users):
- **Mastodon** (Twitter-like microblogging) ✅ OPERATIONAL
- **Pixelfed** (Instagram-like photo sharing) ✅ OPERATIONAL
- **PieFed** (Reddit-like forum) ✅ OPERATIONAL
- **BookWyrm** (Social reading platform) ✅ OPERATIONAL
- **Matrix** (Chat/messaging) - Future deployment
## Architecture Summary ✅ OPERATIONAL
- **Three ARM64 Nodes**: n1, n2, n3 (all control plane nodes with VIP 10.132.0.5)
- **Zero Trust Security**: Cloudflare tunnels + Tailscale mesh VPN
- **Storage**: Longhorn distributed with S3 backup to Backblaze B2
- **Database**: PostgreSQL HA cluster with CloudNativePG operator
- **Cache**: Redis HA cluster with HAProxy (redis-ha-haproxy.redis-system.svc.cluster.local)
- **Monitoring**: OpenTelemetry + OpenObserve (O2)
- **Registry**: Harbor container registry
- **CDN**: Per-application Cloudflare CDN with dedicated S3 buckets
## Project Structure
```
keyboard-vagabond/
├── .cursor/rules/ # Cursor rules (this directory)
├── docs/ # Operational documentation and guides
├── manifests/ # Kubernetes manifests
│ ├── infrastructure/ # Core infrastructure components
│ ├── applications/ # Fediverse applications
│ └── cluster/flux-system/ # GitOps configuration
├── build/ # Custom container builds
├── machineconfigs/ # Talos node configurations
└── tools/ # Development utilities
```
## Rule Organization
The `.cursor/rules/` directory contains specialized rules:
- **00-project-overview.mdc** (this file) - Always applied project context
- **infrastructure.mdc**: Auto-attached when working in `manifests/infrastructure/`
- **applications.mdc**: Auto-attached when working in `manifests/applications/`
- **security.mdc**: SOPS and Zero Trust patterns (auto-attached for YAML files)
- **development.mdc**: Development patterns and operational guidelines
- **troubleshooting-history.mdc**: Historical issues, migrations, and lessons learned
- **templates/**: Common configuration templates (*.yaml files)
## Key Operational Facts
- **Domain**: `keyboardvagabond.com`
- **API Endpoint**: `api.keyboardvagabond.com:6443` (Tailscale-only access)
- **Control Plane VIP**: `10.132.0.5:6443` (nodes elect primary, VIP provides HA)
- **Zero Trust**: All external services via Cloudflare tunnels (no port exposure)
- **Network**: NetCup Cloud vLAN 1004963 (10.132.0.0/24)
- **Security**: Enterprise-grade with SOPS encryption, mesh VPN, host firewall
- **Status**: Fully operational, production-ready cluster