feature ci/cd test 0.0046

.gitea/workflows/ci.yml

@@ -3,15 +3,42 @@ on:
   push:
     branches:
       - main
+
 jobs:
+  deploy:
+  runs-on: node-ansible
+  steps:
+    - name: Setup SSH key
+      run: |
+        echo "${{ secrets.SSH_PRIVATE_KEY }}" > /tmp/id_rsa
+        chmod 600 /tmp/id_rsa
+
+    - name: Install Ansible collection
+      run: ansible-galaxy collection install community.docker
+
+    - name: Create inventory
+      run: echo "${{ secrets.INVENTORY }}" > inventory.ini
+
+    - name: Create secrets.yml
+      run: echo "${{ secrets.SECRETS }}" > secrets.yml
+
+    - name: Create .env file
+      run: echo "${{ secrets.WEDDING_SITE_ENV }}" > .env
+
+    - name: Run Ansible playbook
+      run: ansible-playbook -i inventory.ini deploy.yml -e @secrets.yml
+      env:
+        ANSIBLE_PRIVATE_KEY_FILE: /tmp/id_rsa
+
   build:
     runs-on: node-docker
+    needs: deploy
     steps:
       - uses: actions/checkout@v4
       - name: Create .env file
-        run: |
+        run: echo "${{ secrets.WEDDING_SITE_ENV  }}" > .env
-          echo "${{ secrets.WEDDING_SITE_ENV  }}" > .env
       - name: Build image
         run: docker build -t back:latest -f docker/dockerfile .
       - name: Start docker-compose
-        run: docker compose --env-file .env -f docker/docker-compose.yaml up -d
+        run: docker compose --env-file .env -f docker/docker-compose.yaml up -d
+  

.gitignore

@@ -22,6 +22,7 @@ hint.py
 
 #env
 *.env
+secrets.yml
 #db
 *.db
 versions/

ansible/deploy.yml

@@ -1,10 +1,20 @@
 - hosts: servers
   become: yes
+  vars:
+    env_file: .env 
   tasks:
     - name: Install Docker
-      shell: curl -fsSL https://get.docker.com | sh
+      apt:
-      args:
+        name: docker-compose
-        creates: /usr/bin/docker
+        state: present
+        update_cache: yes
+    - name: Copy .env to remote
+      copy:
+        src: "{{ env_file }}"
+        dest: /opt/infra/.env
+        owner: root
+        group: root
+        mode: '0600'
 
     - name: Install git
       apt:
@@ -14,10 +24,11 @@
 
     - name: Clone repo
       git:
-        repo: ${GITEA_INSTANCE_URL} //как то передавать переменные
+        repo: "{{ gitea_instance_url }}"
         dest: /opt/infra
 
-    - name: Start docker compose
+    - name: Start docker compose via module
-      shell: docker compose up -d
+      community.docker.docker_compose:
-      args:
+        project_src: /opt/infra
-        chdir: /opt/infra
+        state: present
+        restarted: true

ansible/env_example

@@ -1,3 +0,0 @@
-ansible-playbook -i inventory.ini deploy.yml -e "target_host=$HOST"
-GITEA_INSTANCE_URL="..."
-HOST="..."

ansible/inventory.ini

@@ -1,2 +0,0 @@
-[servers]
-myserver ansible_user=root

ansible/inventory_example

@@ -0,0 +1,2 @@
+[servers]
+myserver host=... ansible_user=...

ansible/secrets_example

@@ -0,0 +1 @@
+gitea_instance_url: ...

docker/gitea_runners/node-ansible.yaml

@@ -0,0 +1,12 @@
+services:
+  runner:
+    image: gitea/act_runner:latest
+    restart: always
+    volumes:
+      - ./data/act_runner:/data
+      - /var/run/docker.sock:/var/run/docker.sock
+    environment:
+      - GITEA_INSTANCE_URL=${GITEA_INSTANCE_URL}
+      - GITEA_RUNNER_REGISTRATION_TOKEN=${TOKEN}
+      - GITEA_RUNNER_NAME=docker-runner
+      - GITEA_RUNNER_LABELS=node-ansible:docker://homyakspace/wedding-ansible:${TAG}

docker/gitea_runners/node-docker.yaml

@@ -9,4 +9,4 @@ services:
       - GITEA_INSTANCE_URL=${GITEA_INSTANCE_URL}
       - GITEA_RUNNER_REGISTRATION_TOKEN=${TOKEN}
       - GITEA_RUNNER_NAME=docker-runner
-      - GITEA_RUNNER_LABELS=node-docker:docker://homyakspace/wedding:${TAG}, node-ansible:docker://homyakspace/wedding-ansible:${TAG}
+      - GITEA_RUNNER_LABELS=node-docker:docker://homyakspace/wedding:${TAG}