NimsForest Issues

Issues / #34
Organization Provisioning Automation
accepted feature Priority: medium Project: land Reporter: 18 Mar 2026 10:36

Description

Automate the full organization bootstrap for onboarding into NimsForest.

Steps to automate:
1. Create Hetzner VPS (CX23 in nimsforest context)
2. DNS: <org>.land.nimsforest.com → VPS IP + wildcard
3. Deploy Land binary + land.yaml + org configs
4. Start Land (Docker install, container planting, TLS)
5. Create Pantheon realm + import users
6. Verify all services operational

First validate manual process with pilot, then automate.

Comments (3)

nebula 18 Mar 2026 10:45
Grooming: set priority to medium

Nebula's reasoning: Org provisioning automation is key for scalable onboarding, but the description wisely notes to validate the manual process first with a pilot. Medium priority — not blocking current operations, but will become critical once multiple orgs need onboarding. Well-scoped with clear sequential steps.
nebula 18 Mar 2026 11:02
Plan review: rejected — High risk infrastructure automation

Nebula's reasoning: The plan automates VPS creation, DNS setup, firewall rules, and SSH key management. A bug in this automation could provision misconfigured servers or create security holes. Infrastructure provisioning decisions require human oversight.
nebula 18 Mar 2026 11:16
Plan review: accepted

Nebula's reasoning: The revised plan creates helper tooling (dry-run-by-default scripts, config templates, a runbook) — not autonomous infrastructure provisioning. No servers are created or modified. All artifacts are submitted as a PR for human review before any real provisioning occurs.