Coder Social home page Coder Social logo

doomsday-boshrelease's Introduction

doomsday-boshrelease - A certificate expiry early warning system

Doomsday is a server (and also a CLI) which can be configured to track certificates from different storage backends (Vault, Credhub, Pivotal Ops Manager, or actual websites) and provide a tidy view into when certificates will expire. Doomsday provides no automation for renewal - Doomsday simply provides the information required for maintainers to take action.

How Do I Deploy It?

A sample manifest is available at manifests/doomsday.yml. It contains example configuration for secret backends, the doomsday server, and notifications. For a more thorough configuration example, see the docs here on the doomsday repo.

After setting up your configuration in the manifest, use BOSH to deploy doomsday.

bosh -e <env> -d doomsday deploy manifests/doomsday.yml

Once doomsday is running, you can view the WebUI at the IP address assigned to the box after deployment, or assign a static IP in the manifest.

$ bosh -d doomsday vms
Using environment <env> as user 'admin'

Deployment 'doomsday'

Instance                                       Process State  AZ  IPs            VM CID                                   VM Type  Active
doomsday/29fd5a45-12c0-42a9-9701-246324b7e886  running        z1  10.128.0.2  vm-2137fdce-9074-47bd-8a2d-d1ba84c0e4ca  default  true

1 vms

WebUI

In addition to the WebUI, the doomsday cli can also be configured as follows to give you a TUI dashboard.

$ doomsday target lab https://10.128.0.2:443
Creating target... Successfully created target

+-------------+----------------------------+
| NAME        | lab                        |
+-------------+----------------------------+
| ADDRESS     | https://10.200.255.47:443  |
+-------------+----------------------------+
| SKIP VERIFY | false                      |
+-------------+----------------------------+

$ doomsday login
Username: admin
Password:

Successfully authenticated to `lab'

In the ideal case, after doomsday has checked the configured backends and there are no certs expiring soon, you should see the following.

$ doomsday dashboard
Could not find any certs which expire soon

If you happen to have expired or expiring certs however, you'll get a dashboard warning you which certs are too far gone, and which you can still save ahead of time.

CLI

doomsday-boshrelease's People

Contributors

daviddob avatar doomsday-bot avatar thomasmitchell avatar

Watchers

James Cloos avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.