Add OGS

Author: MasterPtato

errors/cloudflare/error.md

@@ -0,0 +1,9 @@
+---
+name = "CLOUDFLARE_ERROR"
+description = "Cloudflare returned an error: {error}"
+http_status = 400
+---
+
+# Cloudflare Error
+
+An error was returned by a cloudflare API and has been re-routed to this error response.

errors/ogs/invalid-neon-project-config.md

@@ -0,0 +1,9 @@
+---
+name = "OPENGB_INVALID_NEON_PROJECT_CONFIG"
+description = "Neon project config is invalid: {reason}."
+http_status = 400
+---
+
+# OpenGB Invalid Neon Project Config
+
+The Neon project config given was invalid. See https://api-docs.neon.tech/reference/updateproject for more info.

fern/definition/cloud/common.yml

@@ -13,9 +13,7 @@ types:
       svc_name:
         docs: The name of the service.
         type: string
-      ts:
-        docs: RFC3339 timestamp.
-        type: datetime
+      ts: commons.Timestamp
       duration:
         docs: Unsigned 64 bit integer.
         type: long

fern/definition/cloud/games/games.yml renamed to fern/definition/cloud/games/__package__.yml

@@ -132,14 +132,7 @@ types:
       name_id:
         docs: >-
           **Deprecated**
-
-          A human readable short identifier used to references resources.
-          Different than a `rivet.common#Uuid` because this is intended to be
-          human readable.
-          Different than `rivet.common#DisplayName` because this should not
-          include special
-          characters and be short.
-        type: optional<string>
+        type: optional<commons.Identifier>
 
   ValidateGameResponse:
     properties:

fern/definition/cloud/games/namespaces/analytics.yml

@@ -9,9 +9,9 @@ service:
   path-parameters:
     game_id:
       type: uuid
-
     namespace_id:
       type: uuid
+
   endpoints:
     getAnalyticsMatchmakerLive:
       path: /matchmaker/live

fern/definition/common.yml

@@ -77,7 +77,7 @@ types:
   AccountNumber: integer
 
   Timestamp:
-    type: string
+    type: datetime
     docs: RFC3339 timestamp
 
   GlobalEventNotification:

fern/definition/group/common.yml

@@ -58,9 +58,7 @@ types:
     docs: A group join request.
     properties:
       identity: identityCommons.Handle
-      ts:
-        docs: RFC3339 timestamp.
-        type: datetime
+      ts: commons.Timestamp
 
   Member:
     docs: A group member.

fern/definition/identity/common.yml

@@ -11,7 +11,7 @@ types:
   GlobalEvent:
     docs: An event relevant to the current identity.
     properties:
-      ts: datetime
+      ts: commons.Timestamp
       kind: GlobalEventKind
       notification: optional<GlobalEventNotification>
 

infra/tf/dns/cert_packs.tf

@@ -10,8 +10,7 @@ locals {
  	needs_cdn_cert_pack = data.cloudflare_zone.cdn.name != var.domain_cdn
 }
 
-# TODO: Only if we use deprecated subdomains
-# Allow CLoudflare to serve TLS requests at the edge for our wildcard
+# Allow Cloudflare to serve TLS requests at the edge for our wildcard
 # subdomains.
 #
 # This requires paying money for these certs.
@@ -25,13 +24,19 @@ resource "cloudflare_certificate_pack" "main" {
 	certificate_authority = "lets_encrypt"
 	# The certificate must include the root domain in it.
 	#
-	# We convert to set then back to list to remove potential duplicates of the root zoon.
-	hosts = sort(tolist(toset([
-		data.cloudflare_zone.main.name,
-		var.domain_main,
-		"*.${var.domain_main}",
-		"*.api.${var.domain_main}",
-	])))
+	# We convert to set then back to list to remove potential duplicates of the root zone.
+	hosts = sort(tolist(toset(
+		flatten([
+			[
+				data.cloudflare_zone.main.name,
+				var.domain_main,
+				"*.${var.domain_main}",
+				# TODO: Only if we use deprecated subdomains
+				"*.api.${var.domain_main}",
+			],
+			var.opengb_enabled ? ["*.opengb.${var.domain_main}"] : []
+		])
+	)))
 	type = "advanced"
 	validation_method = "txt"
 	validity_days = 90

infra/tf/dns/vars.tf

@@ -41,6 +41,11 @@ variable "extra_dns" {
 	}))
 }
 
+# MARK: OpenGB
+variable "opengb_enabled" {
+	type = bool
+}
+
 # MARK: Cloudflare
 variable "cloudflare_account_id" {
 	type = string