il y a 7 ans · f4ae5fb6da
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-01-24-webserver-online-and-global.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-01-24-webserver-online-and-global.md
@@ -1,11 +1,13 @@
 
				 {:title "Go global with CDN"
			
 
				- :layout :yt-episode
			
 
				-; :yt-episode-video-id "QDBcQdnM1h0"
			
 
				- :yt-episode-video-id "NoBO1ghOpsc"
			
 
				+ :layout :episode
			
 
				+ :episode-yt-video-id "NoBO1ghOpsc"
			
 
				  :tags ["video" "episode-wip"]}
			
 
				 
			
 
				 ## Global Scale Webserver
			
 
				 
			
 
				+
			
 
				+Configuring CDN for a scalable web server. About an hour of me navigating around the CF console, talking about settings.
			
 
				+
			
 
				 Needs
			
 
				 
			
 
				 * 1 raspi
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-desktop.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-desktop.md
@@ -1,6 +1,6 @@
 
				 {:title "Desktop"
			
 
				- :layout :yt-episode
			
 
				- :yt-episode-video-id "crApIVQ5Wqk"
			
 
				+ :layout :episode
			
 
				+ :episode-yt-video-id "crApIVQ5Wqk"
			
 
				  :tags ["episode" "episode-wip" "video"]}
			
 
				 
			
 
				 
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-docker.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-docker.md
@@ -1,7 +1,7 @@
 
				 {:title "Docker"
			
 
				  :layout :episode
			
 
				  :video-url "/media/tinydc/docker/out.m3u8"
			
 
				- :yt-episode-video-id "0S9rePglH2Y"
			
 
				+ :episode-yt-video-id "0S9rePglH2Y"
			
 
				  :tags ["episode" "episode-wip" "video"]}
			
 
				 
			
 
				 
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-webserver-net.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-webserver-net.md
@@ -1,6 +1,6 @@
 
				 {:title "Networked Webserver"
			
 
				- :layout :yt-episode
			
 
				- :yt-episode-video-id "oe66fs_FqxA"
			
 
				+ :layout :episode
			
 
				+ :episode-yt-video-id "oe66fs_FqxA"
			
 
				  :tags ["episode" "episode-wip" "video"]}
			
 
				 
			
 
				 ### Needs
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-webserver.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-02-04-webserver.md
@@ -1,7 +1,7 @@
 
				 {:title "Webserver"
			
 
				  :layout :episode
			
 
				  :video-url "/media/tinydc/webserver/out.m3u8"
			
 
				- :yt-episode-video-id "RPyHFrn37Qc"
			
 
				+ :episode-yt-video-id "RPyHFrn37Qc"
			
 
				  :tags ["episode" "episode-wip" "video"]}
			
 
				 
			
 
				 
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-archival-project.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-archival-project.md
@@ -1,7 +1,5 @@
 
				 {:title "Archival Project"
			
 
				- :layout :yt-episode
			
 
				- :video-url "/media/tinydc/docker/out.m3u8"
			
 
				- :yt-episode-video-id "0S9rePglH2Y"
			
 
				+ :layout :episode
			
 
				  :tags ["episode-wip" "video"]
			
 
				  }
			
 
				 
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-dev-box.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-dev-box.md
@@ -1,11 +1,16 @@
 
				 {:title "Dev Box (Development Machine)"
			
 
				- :layout :yt-episode
			
 
				- :tags ["episode-wip" "video"]
			
 
				- :video-url "/media/tinydc/docker/out.m3u8"
			
 
				- :yt-episode-video-id "0S9rePglH2Y"}
			
 
				+ :layout :episode
			
 
				+ :tags ["episode-wip"]}
			
 
				 
			
 
				 
			
 
				 Use box as a development machine. Local with an X session, remote via SSH. Token auth useful. Networked storage useful.
			
 
				 
			
 
				 Dev pipeline with Docker repo. How that fits in with POSSE.
			
 
				 
			
 
				+1. Setup docker registry
			
 
				+
			
 
				+2. Configure other machines to use docker registry
			
 
				+
			
 
				+3. Simplify DNS issues with /etc/hosts
			
 
				+
			
 
				+4. Maybe someday add a DNS server
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-online-publication.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-online-publication.md
@@ -1,7 +1,5 @@
 
				 {:title "Online Publication (Blog/Vodcast, RSS)"
			
 
				  :layout :episode
			
 
				- :video-url "/media/tinydc/docker/out.m3u8"
			
 
				- :yt-episode-video-id "0S9rePglH2Y"
			
 
				  :tags ["episode-wip" "video"]}
			
 
				 
			
 
				 Similar to archive, but available to public. Focus on RSS and CDN.
			
@@ -10,3 +8,4 @@ RSS is simple with Cryogen via Tags. Can create a variety of channels, offering
 
				 
			
 
				 Embed iframe. Sign content, or auth via YubiKey.
			
 
				 
			
 
				+Lots of hacking on this one, check the YT channel. Recent days.
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-token-auth.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-06-token-auth.md
@@ -1,7 +1,5 @@
 
				 {:title "Token Auth"
			
 
				  :layout :episode
			
 
				- :video-url "/media/tinydc/docker/out.m3u8"
			
 
				- :yt-episode-video-id "0S9rePglH2Y"
			
 
				  :tags ["episode-wip" "video"]}
			
 
				 
			
 
				 Similar to archive, but available to public. Focus on RSS and CDN.
			
@@ -10,3 +8,5 @@ RSS is simple with Cryogen via Tags. Can create a variety of channels, offering
 
				 
			
 
				 Embed iframe. Sign content, or auth via YubiKey.
			
 
				 
			
 
				+System login also possible in another episode: [here](2018-03-09-draft-u2f-login.html).
			
 
				+
			
--- a/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-09-draft-u2f-login.md
+++ b/tinydatacenter.com-v2/app/resources/templates/md/posts/2018-03-09-draft-u2f-login.md
@@ -0,0 +1,25 @@
 
				+{:title "System login with U2F"
			
 
				+ :layout :episode
			
 
				+ :episode-yt-video-id "AxZxi9M4Ib0"
			
 
				+
			
 
				+ :episode-prereqs ["2018-02-04-webserver.html"]
			
 
				+ :tags ["episode-wip"]}
			
 
				+
			
 
				+
			
 
				+## Status
			
 
				+
			
 
				+In this episode I spend about an hour figuring how to install U2F on the Tinkerboard. This allows us to require
			
 
				+the physical posession of a hardware token. It can be set to sufficient or required; required creates an interesting
			
 
				+scenario for SSH access, which is that the token must sill physically be inserted into the device. But touching it does
			
 
				+allow an SSH session to connect. For now personally I've left it optional, pending more usage.
			
 
				+
			
 
				+There may be a way to make optional for SSH connections, given some other second factor (eg. OTP)... I also found mention 
			
 
				+of a patch of OpenSSH but didn't explore this.
			
 
				+
			
 
				+
			
 
				+
			
 
				+
			
 
				+## Needs
			
 
				+
			
 
				+* 1 Tinkerboard (RasPi untested)
			
 
				+* 1+ YubiKeys with U2F (1x tested with blue)
			
--- a/tinydatacenter.com-v2/app/resources/templates/themes/blue/html/episode.html
+++ b/tinydatacenter.com-v2/app/resources/templates/themes/blue/html/episode.html
@@ -39,9 +39,23 @@
 
				 var player = videojs('example-video');
			
 
				 player.play();
			
 
				 </script>
			
 
				+
			
 
				+{% else %}
			
 
				+  {% if post.episode-yt-video-id %}
			
 
				+    
			
 
				+    
			
 
				+     <div>
			
 
				+<iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/{{post.episode-yt-video-id}}?rel=0&amp;showinfo=0" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>     
			
 
				+     
			
 
				+
			
 
				+     </div>
			
 
				+    
			
 
				+  {% endif %}
			
 
				 {% endif %}
			
 
				 
			
 
				 
			
 
				+
			
 
				+
			
 
				     
			
 
				    {% include "/html/post-content.html" %}
			
 
				 
			
--- a/tinydatacenter.com-v2/app/resources/templates/themes/blue/html/yt-episode.html
+++ b/tinydatacenter.com-v2/app/resources/templates/themes/blue/html/yt-episode.html
@@ -1,28 +0,0 @@
 
				-{% extends "/html/base.html" %}
			
 
				-{%block subtitle %}: {{post.title}}{% endblock %}
			
 
				-{% block content %}
			
 
				-<div id="custom-page">
			
 
				-    <div id="page-header">
			
 
				-        <h2>EPISODE {{post.title}}</h2>
			
 
				-    </div>
			
 
				-
			
 
				-     <div>
			
 
				-       <iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/{{page.yt-episode-video-id}}?rel=0" frameborder="0" gesture="media" allow="encrypted-media" allowfullscreen></iframe>
			
 
				-     </div>
			
 
				-
			
 
				-
			
 
				-
			
 
				-    
			
 
				-   {% include "/html/post-content.html" %}
			
 
				-   
			
 
				-   
			
 
				-    <div id="prev-next">
			
 
				-        {% if post.prev %}
			
 
				-        <a href="{{post.prev.uri}}">&laquo; {{post.prev.title}}</a>
			
 
				-        {% endif %}
			
 
				-        {% if post.next %}
			
 
				-        <a class="right" href="{{post.next.uri}}">{{post.next.title}} &raquo;</a>
			
 
				-        {% endif %}
			
 
				-    </div>
			
 
				-</div>
			
 
				-{% endblock %}
			
--- a/tinydatacenter.com-v2/scripts/env.sh
+++ b/tinydatacenter.com-v2/scripts/env.sh
@@ -6,7 +6,7 @@ NAME=tinydatacenter-build
 
				 DEV_PORT=23000
			
 
				 
			
 
				 NAME_STATIC=tinydatacenter-static
			
 
				-IMAGE_STATIC=docker-registry.local:5000/tinydatacenter.com/tinydatacenter-static:5
			
 
				+IMAGE_STATIC=docker-registry.local:5000/tinydatacenter.com/tinydatacenter-static:6
			
 
				 PORT_STATIC=23080
			
 
				 
			
 
				 MEDIA=$HOME/p/tdc-media