From d37ebc132f0b9a5059d02b276d35b1efe0a9bb0d Mon Sep 17 00:00:00 2001 From: Giles Bradshaw Date: Sun, 10 May 2020 22:19:41 +0100 Subject: [PATCH] . --- drone-starlark/repos/chat/drone.star | 74 +++++++++++++++++++ drone-starlark/repos/chat/public-secrets.star | 34 +++++++++ drone-starlark/repos/chat/secret-secrets.star | 24 ++++++ drone-starlark/repos/chat/stack-name._star | 1 + drone-starlark/repos/chat/stack-root._star | 1 + drone-starlark/repos/guacamole/drone.star | 4 +- 6 files changed, 136 insertions(+), 2 deletions(-) create mode 100644 drone-starlark/repos/chat/drone.star create mode 100644 drone-starlark/repos/chat/public-secrets.star create mode 100644 drone-starlark/repos/chat/secret-secrets.star create mode 100644 drone-starlark/repos/chat/stack-name._star create mode 100644 drone-starlark/repos/chat/stack-root._star diff --git a/drone-starlark/repos/chat/drone.star b/drone-starlark/repos/chat/drone.star new file mode 100644 index 0000000..da07c76 --- /dev/null +++ b/drone-starlark/repos/chat/drone.star @@ -0,0 +1,74 @@ +load("@this//:from-secret.star", "fromSecret") +load("@this//:print-secrets.star", "printSecrets") + +load("@this//:map.star", "map") +load("@this//:environment.star", "environment") +load("@this//:echo.star", "echo") +load("@this//:export.star", "export") +load("@this//:echo-secret.star", "echoSecret") +load("@this//:wait.star", "wait") +load("@this//:build.star", "build") +load("@this//:scp.star", "scp") +load("@this//chat:public-secrets.star", "publicSecrets") +load("@this//chat:secret-secrets.star", "secretSecrets") +load("@this//:rescale.star", "rescale") +load("@this//:pull.star", "pull") +load("@this//:deploy.star", "deploy") +load("@this//:build-folder.star", "buildFolder") +load("@this//:build-docker-folder.star", "buildDockerFolder") +load("@this//:pipeline.star", "pipeline") + +def drone( + ctx, + branch, + base, + name, + commands, +): + if ctx.build.branch == branch: + return [ + pipeline( + branch, + [ + wait(15, "wait"), + printSecrets( + "env-chat", + publicSecrets, + secretSecrets, + ), + scp(base), + deploy( + "docker-compose.yml", + name, + base, + publicSecrets + secretSecrets, + commands, + ctx + ), + ], + [], + [ + { + "name": "ca", + "host": { + "path": "/etc/docker/certs.d", + }, + } + ], + [ + { + "name": "ca", + "path": "/etc/docker/certs.d", + }, + ] + ), + ] + else: + return pipeline( + ctx.build.branch, + [], + [], + [], + [], + ) + \ No newline at end of file diff --git a/drone-starlark/repos/chat/public-secrets.star b/drone-starlark/repos/chat/public-secrets.star new file mode 100644 index 0000000..f229e64 --- /dev/null +++ b/drone-starlark/repos/chat/public-secrets.star @@ -0,0 +1,34 @@ +publicSecrets = [ + "title", + "description", + "certbot-email", + "drone-domain", + "drone-gitea-client-id", + "drone-gitea-server", + "drone-server-host", + "git-domain", + "local-docker-registry", + "ssh-host", + "guacamole-postgres-db", + "guacamole-postgres-user", + "sigyl-stack-root", + "sigyl-stack-name", + "ghost-mail-service", + "ghost-mail-user", + "chat-admin-name", + "chat-admin-email", + "gitea-mailer-host", + "gitea-mailer-from", + "gitea-mailer-user", + "gitea-app-name", + "commento-origin", + "commento-smtp-host", + "commento-smtp-port", + "commento-smtp-username", + "commento-smtp-from-address", + "commento-forbid-new-owners", + "commento-postgres-db", + "commento-postgres-user", + "commento-github-key", + "nagios-admin-user", +] \ No newline at end of file diff --git a/drone-starlark/repos/chat/secret-secrets.star b/drone-starlark/repos/chat/secret-secrets.star new file mode 100644 index 0000000..6b38263 --- /dev/null +++ b/drone-starlark/repos/chat/secret-secrets.star @@ -0,0 +1,24 @@ +secretSecrets = [ + "drone-convert-secret", + "drone-gitea-client-secret", + "drone-rpc-secret", + "guacamole-postgres-password", + "ngrok-auth-token", + "ghost-mail-password", + "ghost-mysql-root-password", + "chat-admin-password", + "gitea-server-lfs-jwt-secret", + "gitea-security-secret-key", + "gitea-security-internal-token", + "gitea-oauth2-jwt-secret", + "gitea-mailer-passwd", + "commento-smtp-password", + "commento-askimet-key", + "commento-postgres-password", + "commento-github-secret", + "matomo-mysql-root-password", + "matomo-mysql-password", + "nagios-admin-password", + "zabbix-mysql-root-password", + "zabbix-mysql-password", +] \ No newline at end of file diff --git a/drone-starlark/repos/chat/stack-name._star b/drone-starlark/repos/chat/stack-name._star new file mode 100644 index 0000000..005c93d --- /dev/null +++ b/drone-starlark/repos/chat/stack-name._star @@ -0,0 +1 @@ +stackName='chat' \ No newline at end of file diff --git a/drone-starlark/repos/chat/stack-root._star b/drone-starlark/repos/chat/stack-root._star new file mode 100644 index 0000000..0237676 --- /dev/null +++ b/drone-starlark/repos/chat/stack-root._star @@ -0,0 +1 @@ +stackRoot='/stack/chat' \ No newline at end of file diff --git a/drone-starlark/repos/guacamole/drone.star b/drone-starlark/repos/guacamole/drone.star index 86cfee7..8145f0b 100644 --- a/drone-starlark/repos/guacamole/drone.star +++ b/drone-starlark/repos/guacamole/drone.star @@ -9,8 +9,8 @@ load("@this//:echo-secret.star", "echoSecret") load("@this//:wait.star", "wait") load("@this//:build.star", "build") load("@this//:scp.star", "scp") -load("@this//ghost:public-secrets.star", "publicSecrets") -load("@this//ghost:secret-secrets.star", "secretSecrets") +load("@this//guacamole:public-secrets.star", "publicSecrets") +load("@this//guacamole:secret-secrets.star", "secretSecrets") load("@this//:rescale.star", "rescale") load("@this//:pull.star", "pull") load("@this//:deploy.star", "deploy")