infra

Viktor Barzin deb031cc2c feat(tripit): encrypted personal-document vault PVC + DOCUMENT_ENCRYPTION_KEY Add a proxmox-lvm-encrypted RWO PVC (tripit-personal-documents) mounted at /data/personal-documents on the app container, PERSONAL_STORAGE_DIR env, and the DOCUMENT_ENCRYPTION_KEY ExternalSecret entry (seeded in Vault secret/tripit). A root chown init-container makes the block volume writable by the non-root app without touching the NFS doc vault. Backs the new owner-only encrypted personal document vault in the tripit app. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-05 09:19:12 +00:00
..
main.tf	feat(tripit): encrypted personal-document vault PVC + DOCUMENT_ENCRYPTION_KEY	2026-06-05 09:19:12 +00:00
terragrunt.hcl	tripit: deploy stack + DB provisioning + ongoing mail-ingest [ci skip]	2026-05-30 10:23:11 +00:00

Viktor Barzin deb031cc2c feat(tripit): encrypted personal-document vault PVC + DOCUMENT_ENCRYPTION_KEY

Add a proxmox-lvm-encrypted RWO PVC (tripit-personal-documents) mounted at
/data/personal-documents on the app container, PERSONAL_STORAGE_DIR env, and the
DOCUMENT_ENCRYPTION_KEY ExternalSecret entry (seeded in Vault secret/tripit). A
root chown init-container makes the block volume writable by the non-root app
without touching the NFS doc vault. Backs the new owner-only encrypted personal
document vault in the tripit app.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-05 09:19:12 +00:00

main.tf

feat(tripit): encrypted personal-document vault PVC + DOCUMENT_ENCRYPTION_KEY

2026-06-05 09:19:12 +00:00

terragrunt.hcl

tripit: deploy stack + DB provisioning + ongoing mail-ingest [ci skip]

2026-05-30 10:23:11 +00:00