clemo/valtrix-website
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ae6d0e28a387a2637e259ca825bd6efb491a2865
valtrix-website/.gitea/workflows/deploy.yaml
Clemens Hering ae6d0e28a3
Some checks failed
Build and Deploy Container / build_and_deploy (push) Failing after 1m9s
Details
test local clone
2025-11-09 17:56:30 +01:00

86 lines
3.6 KiB
YAML
Raw Blame History

name: Build and Deploy Container
env:
TARGET_HOST: host.containers.internal
#TARGET_HOST: www.valtrix.systems
TARGET_USER: traefik
APP_DIR: /home/traefik/valtrix-website
CONTAINER_NAME: valtrix-website
QUADLET_FILE: valtrix-website.container
SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
SSH_KNOWN_HOSTS: ${{ secrets.SSH_KNOWN_HOSTS }}
on:
push:
branches:
- main
- develop
jobs:
build_and_deploy:
runs-on: ubuntu-latest
steps:
- name: Pre-clean Git global config (avoid https→ssh rewrite)
shell: bash
run: |
set -euo pipefail
git --version || true
echo "Global git config before:" || true
git config --global --list || true
# Remove any url.*.insteadof rules that force SSH for gitea.smb-corp.de
for key in $(git config --global --get-regexp '^url\\..*\\.insteadof$' 2>/dev/null | awk '{print $1}'); do
if echo "$key" | grep -qi 'gitea\\.smb-corp\\.de'; then
echo "Removing global mapping: $key"
git config --global --unset-all "$key" || true
fi
done
# Ensure no global sshCommand forces SSH
git config --global --unset-all core.sshCommand || true
echo "Global git config after:" || true
git config --global --list || true
- name: Setup SSH for git/scp
shell: bash
run: |
install -m 700 -d ~/.ssh
printf "%s\n" "$SSH_PRIVATE_KEY" > ~/.ssh/id_ed25519
chmod 600 ~/.ssh/id_ed25519
printf "%s\n" "$SSH_KNOWN_HOSTS" > ~/.ssh/known_hosts || true
chmod 644 ~/.ssh/known_hosts
# Ensure host keys are present to avoid interactive prompts
(ssh-keygen -F "$TARGET_HOST" >/dev/null || ssh-keyscan -H "$TARGET_HOST" >> ~/.ssh/known_hosts) || true
(ssh-keygen -F gitea.smb-corp.de >/dev/null || ssh-keyscan -H gitea.smb-corp.de >> ~/.ssh/known_hosts) || true
- name: Checkout Repository
uses: actions/checkout@v4
- name: Copy entire repository to target host (scp, overwrite)
shell: bash
run: |
set -euo pipefail
# Ensure target directory exists
ssh -o BatchMode=yes -i ~/.ssh/id_ed25519 $TARGET_USER@$TARGET_HOST "mkdir -p $APP_DIR"
echo "Copying repository files to $TARGET_HOST:$APP_DIR via scp (overwrites existing files)"
# Enable dotglob so hidden files are included in the glob
shopt -s dotglob
# Copy all files and directories in the repo root to the remote host
scp -r -o BatchMode=yes -i ~/.ssh/id_ed25519 ./* $TARGET_USER@$TARGET_HOST:$APP_DIR/
echo "Copy finished"
- name: Build container on target host
run: |
# Expand $APP_DIR locally so the remote shell receives the concrete path
ssh $TARGET_USER@$TARGET_HOST "set -euo pipefail; cd '$APP_DIR' && echo 'PWD:' \$(pwd) && ls -la . && podman build -t $CONTAINER_NAME:latest ."
- name: Backup Quadlet file
run: |
ssh $TARGET_USER@$TARGET_HOST '
test -f ~/.config/containers/systemd/$CONTAINER_NAME.container && \
cp ~/.config/containers/systemd/$CONTAINER_NAME.container ~/.config/containers/systemd/$CONTAINER_NAME.container.bak || true
'
- name: Replace Quadlet file
run: |
scp ./$QUADLET_FILE $TARGET_USER@$TARGET_HOST:~/.config/containers/systemd/
ssh $TARGET_USER@$TARGET_HOST '
systemctl --user daemon-reload
systemctl --user restart $CONTAINER_NAME.service
'
Reference in New Issue View Git Blame Copy Permalink