mirror of
https://github.com/blackboxprogramming/BlackRoad-Operating-System.git
synced 2026-03-17 06:57:17 -05:00
a62d44a637
## Deployment Guide (DEPLOYMENT_GUIDE.md) - Complete Railway custom domain setup (17 domains configured) - Cloudflare DNS configuration instructions (Terraform + manual) - GitHub secrets configuration for CI/CD - Service deployment steps and verification checklist - Architecture overview diagram - Troubleshooting guide ## Cloudflare DNS (infra/cloudflare/dns-records-railway.tf) - Updated with actual Railway CNAME targets from custom domains - 12 subdomains for blackroad.systems - 5 subdomains for blackroad.io - All records configured as proxied CNAMEs ## Deploy Keys (infra/secrets/DEPLOY_KEYS.md) - Generated ed25519 deploy keys for satellite repos - Setup instructions for enabling deploy keys - Security notes and key regeneration guide ## Railway Custom Domains Configured - api.blackroad.systems → wghu19q0.up.railway.app - core.blackroad.systems → panyy677.up.railway.app - infra.blackroad.systems → xmky2kqn.up.railway.app - app.blackroad.io → qydv7efz.up.railway.app - + 13 more subdomains 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2.8 KiB
2.8 KiB
BlackRoad OS - Deploy Keys
Generated: 2025-11-29 Location: ~/.ssh/blackroad-deploy/
Deploy Keys for Satellite Repo Sync
These keys enable the monorepo to push changes to satellite repositories.
Key Locations
| Repo | Private Key | Public Key |
|---|---|---|
| blackroad-os-infra | ~/.ssh/blackroad-deploy/infra | ~/.ssh/blackroad-deploy/infra.pub |
| blackroad-os-core | ~/.ssh/blackroad-deploy/core | ~/.ssh/blackroad-deploy/core.pub |
| blackroad-os-operator | ~/.ssh/blackroad-deploy/operator | ~/.ssh/blackroad-deploy/operator.pub |
Public Keys (Add to GitHub Repos)
blackroad-os-infra
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINgPG/wFrB84H6IAIeDH7lKbHfAa3+6l6hUWVUTEpISj deploy-infra@blackroad.systems
blackroad-os-core
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPAx1L5spDV+ZdQjgA0beDib+fUa1lqzhKw9sUlfToGG deploy-core@blackroad.systems
blackroad-os-operator
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB8Hm32vsfRJtuAJAGkILePRfAQUMyrL5XdWTehsEOXT deploy-operator@blackroad.systems
Setup Instructions
Step 1: Enable Deploy Keys on Repos
-
Go to each repo in GitHub:
-
Navigate to: Settings → Deploy keys
-
Click "Add deploy key"
-
Paste the corresponding public key (above)
-
Check "Allow write access"
-
Click "Add key"
Step 2: Add Private Keys to Monorepo Secrets
-
Go to: https://github.com/blackboxprogramming/BlackRoad-Operating-System/settings/secrets/actions
-
Click "New repository secret"
-
Add each private key:
| Secret Name | Value (from file) |
|---|---|
| INFRA_DEPLOY_KEY | Contents of ~/.ssh/blackroad-deploy/infra |
| CORE_DEPLOY_KEY | Contents of ~/.ssh/blackroad-deploy/core |
| OPERATOR_DEPLOY_KEY | Contents of ~/.ssh/blackroad-deploy/operator |
Step 3: Verify Setup
After adding keys, trigger a sync workflow:
gh workflow run sync-satellites.yml -R blackboxprogramming/BlackRoad-Operating-System
Security Notes
- Private keys are stored locally at
~/.ssh/blackroad-deploy/ - Never commit private keys to version control
- Keys are ed25519 format (modern, secure)
- Each key is scoped to a single repository
Regenerating Keys
If keys are compromised:
# Remove old keys
rm -rf ~/.ssh/blackroad-deploy/
# Generate new keys
ssh-keygen -t ed25519 -C "deploy-infra@blackroad.systems" -f ~/.ssh/blackroad-deploy/infra -N ""
ssh-keygen -t ed25519 -C "deploy-core@blackroad.systems" -f ~/.ssh/blackroad-deploy/core -N ""
ssh-keygen -t ed25519 -C "deploy-operator@blackroad.systems" -f ~/.ssh/blackroad-deploy/operator -N ""
# Then update GitHub deploy keys and secrets