Initial commit.

debian/etc/nginx/sites-available/wild-central

@@ -0,0 +1,41 @@
+server {
+    listen 80;
+    server_name _;
+    
+    # Wild Central Management Interface
+    root /var/www/html/wild-central;
+    index index.html;
+
+    # API proxy to wild-cloud-central service
+    location /api/ {
+        proxy_pass http://localhost:5055;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
+    # Serve Talos PXE boot assets
+    location /talos/ {
+        alias /var/www/html/talos/;
+        autoindex on;
+        add_header Cache-Control "public, max-age=3600";
+    }
+
+    # iPXE boot script
+    location /boot.ipxe {
+        root /var/www/html/talos;
+        add_header Content-Type "text/plain";
+    }
+
+    # Kernel and initramfs
+    location /amd64/ {
+        alias /var/www/html/talos/amd64/;
+        add_header Cache-Control "public, max-age=86400";
+    }
+
+    # Static files
+    location / {
+        try_files $uri $uri/ =404;
+    }
+}

debian/etc/systemd/system/wild-cloud-central.service

@@ -0,0 +1,27 @@
+[Unit]
+Description=Wild Cloud Central Service
+Documentation=https://github.com/wildcloud/wild-central
+After=network.target
+Wants=network.target
+
+[Service]
+Type=simple
+User=wildcloud
+Group=wildcloud
+ExecStart=/usr/bin/wild-cloud-central
+Restart=always
+RestartSec=5
+Environment=CONFIG_PATH=/etc/wild-cloud-central/config.yaml
+StandardOutput=journal
+StandardError=journal
+SyslogIdentifier=wild-cloud-central
+
+# Security settings
+NoNewPrivileges=no
+PrivateTmp=yes
+ProtectSystem=no
+ProtectHome=yes
+ReadWritePaths=/etc/wild-cloud-central /var/lib/wild-cloud-central /var/log/wild-cloud-central /etc/dnsmasq.conf /var/www/html/talos /var/ftpd
+
+[Install]
+WantedBy=multi-user.target

debian/etc/wild-cloud-central/config.yaml.example

@@ -0,0 +1,18 @@
+server:
+    port: 5055
+    host: 0.0.0.0
+cloud:
+    domain: wildcloud.local
+    internalDomain: cluster.local
+    dns:
+        ip: 192.168.8.50
+    router:
+        ip: 192.168.8.1
+    dhcpRange: 192.168.8.100,192.168.8.200
+    dnsmasq:
+        interface: eth0
+cluster:
+    endpointIp: 192.168.8.60
+    nodes:
+        talos:
+            version: v1.8.0

debian/etc/wild-cloud-central/wild-cloud-central.sudoers

@@ -0,0 +1,2 @@
+# Allow wildcloud user to manage dnsmasq service without password
+wildcloud ALL=NOPASSWD: /usr/bin/systemctl start dnsmasq.service, /usr/bin/systemctl stop dnsmasq.service, /usr/bin/systemctl restart dnsmasq.service, /usr/bin/systemctl status dnsmasq.service