Use Ansible for deployment
This commit is contained in:
parent
3213e10b88
commit
a4b914d576
2 changed files with 54 additions and 14 deletions
37
.deploy.yml
Normal file
37
.deploy.yml
Normal file
|
|
@ -0,0 +1,37 @@
|
|||
---
|
||||
- name: Geekbot Deploy
|
||||
hosts: all
|
||||
remote_user: geekbot
|
||||
vars:
|
||||
ansible_port: 65432
|
||||
ansible_python_interpreter: /usr/bin/python3
|
||||
tasks:
|
||||
- name: Login to Gitlab Docker Registry
|
||||
docker_login:
|
||||
registry_url: "{{ lookup('env', 'CI_REGISTRY') }}"
|
||||
username: "{{ lookup('env', 'CI_REGISTRY_USER') }}"
|
||||
password: "{{ lookup('env', 'CI_REGISTRY_PASSWORD') }}"
|
||||
reauthorize: yes
|
||||
- name: Replace Prod Container
|
||||
docker_container:
|
||||
name: GeekbotProd
|
||||
image: "{{ lookup('env', 'IMAGE_TAG') }}"
|
||||
recreate: yes
|
||||
pull: yes
|
||||
restart_policy: always
|
||||
keep_volumes: no
|
||||
ports:
|
||||
- "12995:12995"
|
||||
env:
|
||||
GEEKBOT_DB_HOST: "{{ lookup('env', 'GEEKBOT_DB_HOST') }}"
|
||||
GEEKBOT_DB_USER: "{{ lookup('env', 'GEEKBOT_DB_USER') }}"
|
||||
GEEKBOT_DB_PASSWORD: "{{ lookup('env', 'GEEKBOT_DB_PASSWORD') }}"
|
||||
GEEKBOT_DB_PORT: "{{ lookup('env', 'GEEKBOT_DB_PORT') }}"
|
||||
GEEKBOT_DB_DATABASE: "{{ lookup('env', 'GEEKBOT_DB_DATABASE') }}"
|
||||
GEEKBOT_DB_REQUIRE_SSL: "true"
|
||||
GEEKBOT_DB_TRUST_CERT: "true"
|
||||
GEEKBOT_SUMOLOCIG: "{{ lookup('env', 'GEEKBOT_SUMOLOCIG') }}"
|
||||
GEEKBOT_SENTRY: "{{ lookup('env', 'GEEKBOT_SENTRY') }}"
|
||||
- name: Cleanup Old Container
|
||||
docker_prune:
|
||||
images: yes
|
||||
|
|
@ -4,6 +4,8 @@ stages:
|
|||
- deploy
|
||||
- ops
|
||||
|
||||
.imageTag: &IMAGE_TAG $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_SLUG
|
||||
|
||||
Build:
|
||||
stage: build
|
||||
image: mcr.microsoft.com/dotnet/core/sdk:5.0-focal
|
||||
|
|
@ -19,12 +21,13 @@ Build:
|
|||
Package:
|
||||
stage: docker
|
||||
image: docker
|
||||
# only:
|
||||
# - master
|
||||
only:
|
||||
- master
|
||||
- docker
|
||||
services:
|
||||
- docker:stable-dind
|
||||
variables:
|
||||
IMAGE_TAG: $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_SLUG
|
||||
IMAGE_TAG: *IMAGE_TAG
|
||||
script:
|
||||
- docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
|
||||
- docker build -t $IMAGE_TAG .
|
||||
|
|
@ -32,21 +35,21 @@ Package:
|
|||
|
||||
Deploy:
|
||||
stage: deploy
|
||||
image: runebaas/rsync-ssh-git
|
||||
image: ansible/ansible-runner
|
||||
only:
|
||||
- master
|
||||
environment:
|
||||
name: Production
|
||||
url: https://discordapp.com/oauth2/authorize?client_id=171249478546882561&scope=bot&permissions=1416834054
|
||||
- docker
|
||||
variables:
|
||||
ANSIBLE_NOCOWS: 1
|
||||
IMAGE_TAG: *IMAGE_TAG
|
||||
before_script:
|
||||
- eval $(ssh-agent -s)
|
||||
- mkdir -p ~/.ssh
|
||||
- '[[ -f /.dockerenv ]] && echo -e "Host *\n StrictHostKeyChecking no" > ~/.ssh/config'
|
||||
- echo "$SSH_PRIVATE_KEY" | tr -d '\r' | ssh-add - > /dev/null
|
||||
- chmod 700 ~/.ssh
|
||||
- mkdir /root/.ssh
|
||||
- cp $SSH_PRIVATE_KEY /root/.ssh/id_ed25519
|
||||
- cp $SSH_PUBLIC_KEY /root/.ssh/id_ed25519.pub
|
||||
- chmod -R 600 /root/.ssh
|
||||
- ssh-keyscan -p 65432 $PROD_IP > /root/.ssh/known_hosts
|
||||
script:
|
||||
- rsync -rav -e "ssh -p 65432" ./Geekbot.net/Binaries/* geekbot@$DEPIP:$DEPPATH
|
||||
- ssh -p 65432 geekbot@$DEPIP "sudo systemctl restart geekbot.service"
|
||||
- ansible-playbook -i $PROD_IP, .deploy.yml
|
||||
|
||||
Sentry:
|
||||
stage: ops
|
||||
|
|
|
|||
Loading…
Reference in a new issue