--- kind: pipeline type: docker name: default clone: # skip_verify: true steps: steps: - name: wait when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run commands: - sleep 60 - name: build-postgres when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd guacamole-postgresql - docker build . -t $${LOCAL_DOCKER_REGISTRY}guacamole-postgresql - docker push $${LOCAL_DOCKER_REGISTRY}guacamole-postgresql - name: build-ngrok when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd ngrok2 - docker build . -t $${LOCAL_DOCKER_REGISTRY}ngrok-gitea - docker push $${LOCAL_DOCKER_REGISTRY}ngrok-gitea - name: build-letsencrypt-nginx when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - docker build . -t $${LOCAL_DOCKER_REGISTRY}letsencrypt-nginx - docker push $${LOCAL_DOCKER_REGISTRY}letsencrypt-nginx - name: build-nginx-home when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.home.sh $${LOCAL_DOCKER_REGISTRY} - name: build-letsencrypt-blog when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.sh blog $${LOCAL_DOCKER_REGISTRY} - name: build-letsencrypt-drone when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.sh drone $${LOCAL_DOCKER_REGISTRY} - name: build-letsencrypt-git when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.sh git $${LOCAL_DOCKER_REGISTRY} - name: build-letsencrypt-remote when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.sh remote $${LOCAL_DOCKER_REGISTRY} - name: build-letsencrypt-chat when: branch: - home-deploy image: docker:dind volumes: - name: dockersock path: /var/run environment: LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry commands: - cd letsencrypt-nginx - sh build.sh chat $${LOCAL_DOCKER_REGISTRY} - name: scp files when: branch: - home-deploy image: appleboy/drone-scp settings: host: from_secret: ssh-host username: from_secret: ssh-user password: from_secret: ssh-password port: from_secret: ssh-port command_timeout: 2m target: ~/gitea-drone-stack source: - . - name: deploy when: branch: - home-deploy image: appleboy/drone-ssh environment: DRONE_RPC_SECRET: from_secret: drone-rpc-secret DRONE_GITEA_CLIENT_ID: from_secret: drone-gitea-client-id DRONE_GITEA_SERVER: from_secret: drone-gitea-server DRONE_GITEA_CLIENT_SECRET: from_secret: drone-gitea-client-secret LOCAL_DOCKER_REGISTRY: from_secret: local-docker-registry SSH_USER: from_secret: ssh-user CERTBOT_EMAIL: from_secret: certbot-email GIT_DOMAIN: from_secret: git-domain DRONE_DOMAIN: from_secret: drone-domain CHAT_DOMAIN: from_secret: chat-domain REMOTE_DOMAIN: from_secret: remote-domain BLOG_DOMAIN: from_secret: blog-domain settings: envs: - drone_rpc_secret - drone_gitea_client_id - drone_gitea_client_secret - drone_gitea_server - ssh_user - local_docker_registry - certbot_email - git_domain - drone_domain - chat_domain - remote_domain - blog_domain host: from_secret: ssh-host username: from_secret: ssh-root-user password: from_secret: ssh-root-password port: from_secret: ssh-port script: - set -e - export LOCAL_DOCKER_REGISTRY=$LOCAL_DOCKER_REGISTRY - export DRONE_RPC_SECRET=$DRONE_RPC_SECRET - export DRONE_GITEA_CLIENT_ID=$DRONE_GITEA_CLIENT_ID - export DRONE_GITEA_CLIENT_SECRET=$DRONE_GITEA_CLIENT_SECRET - export DRONE_GITEA_SERVER=$DRONE_GITEA_SERVER - export SSH_USER=$SSH_USER - export CERTBOT_EMAIL=$CERTBOT_EMAIL - export GIT_DOMAIN=$GIT_DOMAIN - export DRONE_DOMAIN=$DRONE_DOMAIN - export CHAT_DOMAIN=$CHAT_DOMAIN - export REMOTE_DOMAIN=$REMOTE_DOMAIN - export BLOG_DOMAIN=$BLOG_DOMAIN - docker pull $${LOCAL_DOCKER_REGISTRY}letsencrypt-git - docker pull $${LOCAL_DOCKER_REGISTRY}letsencrypt-chat - docker pull $${LOCAL_DOCKER_REGISTRY}letsencrypt-remote - docker pull $${LOCAL_DOCKER_REGISTRY}letsencrypt-blog - docker pull $${LOCAL_DOCKER_REGISTRY}letsencrypt-drone - docker network prune -f - cd /home/$SSH_USER/gitea-drone-stack - docker stack rm gitea - sleep 60 - docker stack deploy -c docker-compose-home.yml gitea #- sleep 300 services: - name: docker image: docker:dind privileged: true volumes: - name: dockersock path: /var/run - name: ca path: /etc/docker/certs.d volumes: - name: dockersock temp: {} - name: ca host: path: /home/giles/gitea-drone-stack/.ca