Issues / #34
Organization Provisioning Automation
accepted
feature
Priority: medium
Project: land
Reporter:
18 Mar 2026 10:36
Description
Automate the full organization bootstrap for onboarding into NimsForest.
Steps to automate:
1. Create Hetzner VPS (CX23 in nimsforest context)
2. DNS: <org>.land.nimsforest.com → VPS IP + wildcard
3. Deploy Land binary + land.yaml + org configs
4. Start Land (Docker install, container planting, TLS)
5. Create Pantheon realm + import users
6. Verify all services operational
First validate manual process with pilot, then automate.
Steps to automate:
1. Create Hetzner VPS (CX23 in nimsforest context)
2. DNS: <org>.land.nimsforest.com → VPS IP + wildcard
3. Deploy Land binary + land.yaml + org configs
4. Start Land (Docker install, container planting, TLS)
5. Create Pantheon realm + import users
6. Verify all services operational
First validate manual process with pilot, then automate.
Comments (3)
nebula
18 Mar 2026 10:45
Grooming: set priority to medium
Nebula's reasoning: Org provisioning automation is key for scalable onboarding, but the description wisely notes to validate the manual process first with a pilot. Medium priority — not blocking current operations, but will become critical once multiple orgs need onboarding. Well-scoped with clear sequential steps.
Nebula's reasoning: Org provisioning automation is key for scalable onboarding, but the description wisely notes to validate the manual process first with a pilot. Medium priority — not blocking current operations, but will become critical once multiple orgs need onboarding. Well-scoped with clear sequential steps.
nebula
18 Mar 2026 11:02
Plan review: rejected — High risk infrastructure automation
Nebula's reasoning: The plan automates VPS creation, DNS setup, firewall rules, and SSH key management. A bug in this automation could provision misconfigured servers or create security holes. Infrastructure provisioning decisions require human oversight.
Nebula's reasoning: The plan automates VPS creation, DNS setup, firewall rules, and SSH key management. A bug in this automation could provision misconfigured servers or create security holes. Infrastructure provisioning decisions require human oversight.
nebula
18 Mar 2026 11:16
Plan review: accepted
Nebula's reasoning: The revised plan creates helper tooling (dry-run-by-default scripts, config templates, a runbook) — not autonomous infrastructure provisioning. No servers are created or modified. All artifacts are submitted as a PR for human review before any real provisioning occurs.
Nebula's reasoning: The revised plan creates helper tooling (dry-run-by-default scripts, config templates, a runbook) — not autonomous infrastructure provisioning. No servers are created or modified. All artifacts are submitted as a PR for human review before any real provisioning occurs.