Merge branch 'do'
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/push Build is passing
Details
This commit is contained in:
commit
a504103e0f
|
@ -0,0 +1,14 @@
|
||||||
|
|
||||||
|
load("@this//drone:drone.star", "drone")
|
||||||
|
load("@this//drone:stack-name.star", "stackName")
|
||||||
|
load("@this//drone:stack-root.star", "stackRoot")
|
||||||
|
|
||||||
|
def main(ctx):
|
||||||
|
return drone(
|
||||||
|
ctx,
|
||||||
|
"do",
|
||||||
|
stackRoot,
|
||||||
|
stackName,
|
||||||
|
[]
|
||||||
|
)
|
||||||
|
|
|
@ -9,6 +9,9 @@ def main(ctx):
|
||||||
"home-deploy",
|
"home-deploy",
|
||||||
stackRoot,
|
stackRoot,
|
||||||
stackName,
|
stackName,
|
||||||
[]
|
[
|
||||||
|
"docker service scale proxy_letsencrypt-drone=0",
|
||||||
|
"docker service scale proxy_letsencrypt-drone=1",
|
||||||
|
]
|
||||||
)
|
)
|
||||||
|
|
|
@ -19,9 +19,11 @@ def buildDockerFolder(
|
||||||
],
|
],
|
||||||
"environment": environment([
|
"environment": environment([
|
||||||
"local-docker-registry",
|
"local-docker-registry",
|
||||||
|
"registry-password",
|
||||||
]),
|
]),
|
||||||
"commands": [
|
"commands": [
|
||||||
"cd {folder}".format(folder=folder),
|
"cd {folder}".format(folder=folder),
|
||||||
|
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
|
||||||
"sh build-docker-folder.sh {dockerFile} {image} {tag}".format(
|
"sh build-docker-folder.sh {dockerFile} {image} {tag}".format(
|
||||||
image = image,
|
image = image,
|
||||||
dockerFile = dockerFile,
|
dockerFile = dockerFile,
|
||||||
|
|
|
@ -14,9 +14,11 @@ def buildFolder(name, folder):
|
||||||
],
|
],
|
||||||
"environment": environment([
|
"environment": environment([
|
||||||
"local-docker-registry",
|
"local-docker-registry",
|
||||||
|
"registry-password",
|
||||||
]),
|
]),
|
||||||
"commands": [
|
"commands": [
|
||||||
"cd {folder}".format(folder=folder),
|
"cd {folder}".format(folder=folder),
|
||||||
|
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
|
||||||
"sh build.sh {name} $${{LOCAL_DOCKER_REGISTRY}}".format(name = name),
|
"sh build.sh {name} $${{LOCAL_DOCKER_REGISTRY}}".format(name = name),
|
||||||
],
|
],
|
||||||
}
|
}
|
||||||
|
|
|
@ -12,9 +12,11 @@ def build(name):
|
||||||
],
|
],
|
||||||
"environment": environment([
|
"environment": environment([
|
||||||
"local-docker-registry",
|
"local-docker-registry",
|
||||||
|
"registry-password"
|
||||||
]),
|
]),
|
||||||
"commands": [
|
"commands": [
|
||||||
"cd {name}".format(name=name),
|
"cd {name}".format(name=name),
|
||||||
|
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
|
||||||
"docker build . -t $${{LOCAL_DOCKER_REGISTRY}}{name}".format(name=name),
|
"docker build . -t $${{LOCAL_DOCKER_REGISTRY}}{name}".format(name=name),
|
||||||
"docker push $${{LOCAL_DOCKER_REGISTRY}}{name}".format(name=name),
|
"docker push $${{LOCAL_DOCKER_REGISTRY}}{name}".format(name=name),
|
||||||
],
|
],
|
||||||
|
|
|
@ -1,3 +1,4 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"chat-admin-password",
|
"chat-admin-password",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -3,4 +3,5 @@ secretSecrets = [
|
||||||
"commento-askimet-key",
|
"commento-askimet-key",
|
||||||
"commento-postgres-password",
|
"commento-postgres-password",
|
||||||
"commento-github-secret",
|
"commento-github-secret",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -30,6 +30,7 @@ def deploy(
|
||||||
"export DRONE_COMMIT={commit}".format(commit=ctx.build.commit),
|
"export DRONE_COMMIT={commit}".format(commit=ctx.build.commit),
|
||||||
"docker network prune -f",
|
"docker network prune -f",
|
||||||
"cd {folder}".format(folder=folder),
|
"cd {folder}".format(folder=folder),
|
||||||
|
'docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"',
|
||||||
"docker stack rm {name}".format(name = name),
|
"docker stack rm {name}".format(name = name),
|
||||||
"sleep 30",
|
"sleep 30",
|
||||||
"docker stack deploy -c {filename} {name}".format(name= name, filename = filename),
|
"docker stack deploy -c {filename} {name}".format(name= name, filename = filename),
|
||||||
|
|
|
@ -2,4 +2,5 @@ secretSecrets = [
|
||||||
"drone-convert-secret",
|
"drone-convert-secret",
|
||||||
"drone-gitea-client-secret",
|
"drone-gitea-client-secret",
|
||||||
"drone-rpc-secret",
|
"drone-rpc-secret",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -1,3 +1,4 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"ghost-mysql-root-password",
|
"ghost-mysql-root-password",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -9,8 +9,8 @@ load("@this//:echo-secret.star", "echoSecret")
|
||||||
load("@this//:wait.star", "wait")
|
load("@this//:wait.star", "wait")
|
||||||
load("@this//:build.star", "build")
|
load("@this//:build.star", "build")
|
||||||
load("@this//:scp.star", "scp")
|
load("@this//:scp.star", "scp")
|
||||||
load("@this//ghost:public-secrets.star", "publicSecrets")
|
load("@this//gitea:public-secrets.star", "publicSecrets")
|
||||||
load("@this//ghost:secret-secrets.star", "secretSecrets")
|
load("@this//gitea:secret-secrets.star", "secretSecrets")
|
||||||
load("@this//:rescale.star", "rescale")
|
load("@this//:rescale.star", "rescale")
|
||||||
load("@this//:pull.star", "pull")
|
load("@this//:pull.star", "pull")
|
||||||
load("@this//:deploy.star", "deploy")
|
load("@this//:deploy.star", "deploy")
|
||||||
|
|
|
@ -4,4 +4,5 @@ secretSecrets = [
|
||||||
"gitea-security-internal-token",
|
"gitea-security-internal-token",
|
||||||
"gitea-oauth2-jwt-secret",
|
"gitea-oauth2-jwt-secret",
|
||||||
"gitea-mailer-passwd",
|
"gitea-mailer-passwd",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -1,3 +1,4 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"guacamole-postgres-password",
|
"guacamole-postgres-password",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -1,4 +1,5 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"matomo-mysql-root-password",
|
"matomo-mysql-root-password",
|
||||||
"matomo-mysql-password",
|
"matomo-mysql-password",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
|
@ -1 +1,3 @@
|
||||||
secretSecrets = []
|
secretSecrets = [
|
||||||
|
"registry-password",
|
||||||
|
]
|
||||||
|
|
|
@ -37,6 +37,7 @@ def drone(
|
||||||
secretSecrets,
|
secretSecrets,
|
||||||
),
|
),
|
||||||
build("ngrok-gitea"),
|
build("ngrok-gitea"),
|
||||||
|
build("registry"),
|
||||||
build("letsencrypt-nginx"),
|
build("letsencrypt-nginx"),
|
||||||
buildDockerFolder(
|
buildDockerFolder(
|
||||||
"Dockerfile.git",
|
"Dockerfile.git",
|
||||||
|
@ -57,6 +58,7 @@ def drone(
|
||||||
"pull images",
|
"pull images",
|
||||||
[
|
[
|
||||||
"ngrok-gitea",
|
"ngrok-gitea",
|
||||||
|
"registry",
|
||||||
"letsencrypt-git",
|
"letsencrypt-git",
|
||||||
"letsencrypt-drone",
|
"letsencrypt-drone",
|
||||||
],
|
],
|
||||||
|
|
|
@ -2,4 +2,5 @@ publicSecrets = [
|
||||||
"certbot-email",
|
"certbot-email",
|
||||||
"drone-domain",
|
"drone-domain",
|
||||||
"git-domain",
|
"git-domain",
|
||||||
|
"local-docker-registry",
|
||||||
]
|
]
|
|
@ -1,3 +1,5 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"ngrok-auth-token",
|
"ngrok-auth-token",
|
||||||
|
"registry-password",
|
||||||
|
"new-registry-password",
|
||||||
]
|
]
|
|
@ -7,7 +7,10 @@ def pull(
|
||||||
name,
|
name,
|
||||||
images,
|
images,
|
||||||
):
|
):
|
||||||
secrets = [ "local-docker-registry"]
|
secrets = [
|
||||||
|
"local-docker-registry",
|
||||||
|
"registry-password",
|
||||||
|
]
|
||||||
return {
|
return {
|
||||||
"name": name,
|
"name": name,
|
||||||
"image": "appleboy/drone-ssh",
|
"image": "appleboy/drone-ssh",
|
||||||
|
@ -21,7 +24,8 @@ def pull(
|
||||||
"script": [
|
"script": [
|
||||||
"set -e"
|
"set -e"
|
||||||
] +
|
] +
|
||||||
map(export, secrets) +
|
map(export, secrets) +
|
||||||
|
['docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"'] +
|
||||||
["docker pull $${{LOCAL_DOCKER_REGISTRY}}{image}".format(image=image) for image in images ]
|
["docker pull $${{LOCAL_DOCKER_REGISTRY}}{image}".format(image=image) for image in images ]
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
@ -1,4 +1,5 @@
|
||||||
secretSecrets = [
|
secretSecrets = [
|
||||||
"zabbix-mysql-root-password",
|
"zabbix-mysql-root-password",
|
||||||
"zabbix-mysql-password",
|
"zabbix-mysql-password",
|
||||||
|
"registry-password",
|
||||||
]
|
]
|
Loading…
Reference in New Issue