Skip to content

hashicorp-dev-advocates/hashiconf-escape-room

Repository files navigation

HashiConf 2024 Escape Rooms

This repository contains all setup and configuration code for the infrastructure required for the HashiConf 2024 Escape room challenge. This is a mono-repository with multiple Terraform workspaces for each domain area. For more information, please speak to Rosemary or Rob.

  • Infrastructure lifecycle management (ILM) - puzzles use Waypoint, Terraform, Nomad, and Packer
  • Security lifecycle management (SLM) - puzzles use Vault, Consul, and Boundary

Important links

Registration

  • Form
  • Scan badge.
  • ILM/SLM sticker

Instruqt tracks

These are the official puzzles for ILM/SLM:

Version 2 of the tracks in case the puzzles are compromised:

Leaderboard

Backup plans

  • If Instruqt, HCP, or AWS goes down, switch to backup slides with clues and video playback
  • If Nomad, Waypoint, Packer goes down, let staff outside know we are only running SLM.
  • If HCP Vault, Boundary, or Consul goes down, let staff outside know we are only running ILM.

Technical details

All products use HCP except Nomad. Nomad runs on AWS EC2 instances.

The clients and workers all run on AWS in us-east-2.

If any of the endpoints change, you will need to re-run workspaces in HCP Terraform. The workspaces require the following order:

  1. hcp-infrastructure
  2. nomad-infrastructure
  3. nomad-node-pools
  4. clues
  5. waypoint
  6. applications
  7. vault-config
  8. consul-config
  9. boundary-config

Other technicalities:

  • HCP Terraform uses dynamic credentials for AWS. Review hcp-infrastructure for configuration.

  • Images get pushed to HCP Packer with a GitHub Actions workflow. GitHub Actions also uses dynamic credentials, review hcp-infrastructure for configuration.

  • Secrets get synchronized from various resources to GitHub Actions using HCP Vault Secrets. Check out hcp-infrastructure/hvs.tf for a list of secrets. NOTE: The sync is manually configured in HCP Vault Secrets!

Updating clues

In order for changes to propagate across tools, you need to change clues in a few places.

A complete list of valid clues can be found at clues/README.md.

ILM

There are two places to update clues for infrastructure lifecycle management puzzles.

  1. Waypoint and Nomad
    1. Go to clues/.
    2. Update terraform.auto.tfvars.
    3. Push.
    4. This will run the clues workspace in HCP Terraform.
    5. Run workspaces corresponding to each application.
  2. Packer
    1. Go to .github/workflows/packer.
    2. Update the HCP_PACKER_BUILD_DETAILS for each job.

SLM

TODO

About

No description, website, or topics provided.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages