diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index d634450..046dea4 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -22,6 +22,17 @@ stages: - run-patchday-all - run-hcloud-firewall +############################################################################### +### http://patorjk.com/software/taag/#p=display&f=Doom&t=lint +### _ _ _ +### | (_) | | +### | |_ _ __ | |_ +### | | | '_ \| __| +### | | | | | | |_ +### |_|_|_| |_|\__| +### +############################################################################### + lint-job: stage: lint script: @@ -34,13 +45,26 @@ lint-job: tags: - dind +############################################################################### +### https://patorjk.com/software/taag/#p=display&f=Doom&t=ansible-builder +### _ _ _ _ _ _ _ +### (_) | | | | | (_) | | | +### __ _ _ __ ___ _| |__ | | ___ ______| |__ _ _ _| | __| | ___ _ __ +### / _` | '_ \/ __| | '_ \| |/ _ \______| '_ \| | | | | |/ _` |/ _ \ '__| +### | (_| | | | \__ \ | |_) | | __/ | |_) | |_| | | | (_| | __/ | +### \__,_|_| |_|___/_|_.__/|_|\___| |_.__/ \__,_|_|_|\__,_|\___|_| +### +############################################################################### + .builder-job: stage: ansible-builder + before_script: + - echo "CI_ENVIRONMENT_NAME=$CI_ENVIRONMENT_NAME" script: - cp $SSH_KEY_GITLAB_CI_BUILDER_FILE ansible-builder/context/id_ed25519 - echo "Running docker build to build awx execution environment" - - docker build -f ansible-builder/context/Dockerfile -t ${STAGE}-$AWX_EE_DOCKER_IMAGE_EXTERN:latest . - - docker push ${STAGE}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest + - docker build -f ansible-builder/context/Dockerfile -t ${CI_ENVIRONMENT_NAME}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest . + - docker push ${CI_ENVIRONMENT_NAME}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest except: - schedules tags: @@ -49,6 +73,7 @@ lint-job: .builder-job-devnso: extends: .builder-job + environment: devnso resource_group: devnso before_script: - export STAGE=devnso @@ -70,6 +95,7 @@ builder-job-devnso-manual: .builder-job-qanso: extends: .builder-job + environment: qanso resource_group: qanso before_script: - export STAGE=qanso @@ -91,6 +117,7 @@ builder-job-qanso-manual: .builder-job-prodnso: extends: .builder-job + environment: prodnso resource_group: prodnso before_script: - export STAGE=prodnso @@ -110,30 +137,32 @@ builder-job-prodnso-manual: extends: .builder-job-prodnso when: manual -################################################################################## - +############################################################################### +# Environment specific AWX image from predefined variable $CI_ENVIRONMENT_NAME .run-ansible: - image: devnso-$AWX_EE_DOCKER_IMAGE_EXTERN:latest # hardcoded DEV Stage Image, couldn't find better option for now, since image name cant be set dynamically + image: $CI_ENVIRONMENT_NAME-$AWX_EE_DOCKER_IMAGE_EXTERN:latest tags: - dind - harbor # 05.02.22 TODO some runners run into timeouts - -######## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=setup.yml -### -### _ _ +### _ _ ### | | | | ### ___ ___| |_ _ _ _ __ _ _ _ __ ___ | | ### / __|/ _ \ __| | | | '_ \| | | | '_ ` _ \| | ### \__ \ __/ |_| |_| | |_) | |_| | | | | | | | ### |___/\___|\__|\__,_| .__(_)__, |_| |_| |_|_| -### | | __/ | -### |_| |___/ +### | | __/ | +### |_| |___/ +### +############################################################################### .run-setup: extends: .run-ansible stage: run-setup + before_script: + - echo "CI_ENVIRONMENT_NAME=$CI_ENVIRONMENT_NAME" script: - "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )" - eval $(ssh-agent -s) @@ -151,28 +180,31 @@ builder-job-prodnso-manual: run-setup-devnso: extends: .run-setup + environment: devnso resource_group: devnso before_script: - export STAGE=devnso - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass only: - main run-setup-devscr: extends: .run-setup + environment: devnso resource_group: devscr before_script: - export STAGE=devscr - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVSCR}" > /tmp/vault-pass only: - main run-setup-qanso: extends: .run-setup + environment: qanso resource_group: qanso before_script: - export STAGE=qanso - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass only: - qanso @@ -187,6 +219,7 @@ run-setup-prodnso: run-setup-prodwork01: extends: .run-setup + environment: prodnso resource_group: prodwork01 before_script: - export STAGE=prodwork01 @@ -196,6 +229,7 @@ run-setup-prodwork01: run-setup-demompmx: extends: .run-setup + environment: prodnso resource_group: demompmx before_script: - export STAGE=demompmx @@ -204,7 +238,7 @@ run-setup-demompmx: - prodnso -################################################################################## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=vpn.yml ### _ ### | | @@ -215,6 +249,7 @@ run-setup-demompmx: ### | | __/ | ### |_| |___/ ### +############################################################################### .vpn-config-update: extends: .run-ansible @@ -241,26 +276,29 @@ run-setup-demompmx: run-vpn-update-devnso: extends: .vpn-config-update + environment: devnso # A resource group ensures a job is mutually exclusive across different pipelines for the same project. resource_group: devnso before_script: - export STAGE=devnso - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass only: - main run-vpn-update-qanso: extends: .vpn-config-update + environment: qanso # A resource group ensures a job is mutually exclusive across different pipelines for the same project. resource_group: qanso before_script: - export STAGE=qanso - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass only: - qanso run-vpn-update-prodnso: extends: .vpn-config-update + environment: prodnso # A resource group ensures a job is mutually exclusive across different pipelines for the same project. resource_group: prodnso before_script: @@ -270,7 +308,7 @@ run-vpn-update-prodnso: - prodnso -######## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=smardigo.yml ### ### _ _ _ @@ -281,6 +319,8 @@ run-vpn-update-prodnso: ### |___/_| |_| |_|\__,_|_| \__,_|_|\__, |\___(_)__, |_| |_| |_|_| ### __/ | __/ | ### |___/ |___/ +### +############################################################################### .run-management-update: extends: .run-ansible @@ -305,24 +345,27 @@ run-vpn-update-prodnso: run-management-update-devnso: extends: .run-management-update + environment: devnso resource_group: devnso before_script: - export STAGE=devnso - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass only: - main run-management-update-qanso: extends: .run-management-update + environment: qanso resource_group: qanso before_script: - export STAGE=qanso - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass only: - qanso run-management-update-prodnso: extends: .run-management-update + environment: prodnso resource_group: prodnso before_script: - export STAGE=prodnso @@ -332,6 +375,7 @@ run-management-update-prodnso: run-management-update-demompmx: extends: .run-management-update + environment: prodnso resource_group: demompmx before_script: - export STAGE=demompmx @@ -339,10 +383,8 @@ run-management-update-demompmx: only: - prodnso - -######## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=patchday.yml -### ### _ _ _ _ ### | | | | | | | | ### _ __ __ _| |_ ___| |__ __| | __ _ _ _ _ _ _ __ ___ | | @@ -351,6 +393,8 @@ run-management-update-demompmx: ### | .__/ \__,_|\__\___|_| |_|\__,_|\__,_|\__, (_)__, |_| |_| |_|_| ### | | __/ | __/ | ### |_| |___/ |___/ +### +############################################################################### .run-patchday: extends: .run-ansible @@ -366,12 +410,13 @@ run-management-update-demompmx: run-patchday-harbor-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-harbor resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'harbor' after_script: - rm /tmp/vault-pass @@ -380,12 +425,13 @@ run-patchday-harbor-devnso: run-patchday-elastic-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-elastic resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'elastic' after_script: - rm /tmp/vault-pass @@ -394,12 +440,13 @@ run-patchday-elastic-devnso: run-patchday-database-postgres-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-database resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'postgres' after_script: - rm /tmp/vault-pass @@ -408,12 +455,13 @@ run-patchday-database-postgres-devnso: run-patchday-database-maria-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-database resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'maria' after_script: - rm /tmp/vault-pass @@ -422,12 +470,13 @@ run-patchday-database-maria-devnso: run-patchday-all-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-all resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!harbor:!elastic:!postgres:!maria:!k8s_cluster' after_script: - rm /tmp/vault-pass @@ -436,12 +485,13 @@ run-patchday-all-devnso: run-patchday-all-k8s-devnso: extends: .run-patchday + environment: devnso stage: run-patchday-all resource_group: devnso script: - export STAGE=devnso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster' after_script: - rm /tmp/vault-pass @@ -450,6 +500,7 @@ run-patchday-all-k8s-devnso: run-patchday-all-k8s-devscr: extends: .run-patchday + environment: devnso stage: run-patchday-all resource_group: devscr script: @@ -464,12 +515,13 @@ run-patchday-all-k8s-devscr: run-patchday-harbor-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-harbor resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'harbor' after_script: - rm /tmp/vault-pass @@ -478,12 +530,13 @@ run-patchday-harbor-qanso: run-patchday-elastic-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-elastic resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'elastic' after_script: - rm /tmp/vault-pass @@ -492,12 +545,13 @@ run-patchday-elastic-qanso: run-patchday-database-postgres-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-database resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'postgres' after_script: - rm /tmp/vault-pass @@ -506,12 +560,13 @@ run-patchday-database-postgres-qanso: run-patchday-database-maria-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-database resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'maria' after_script: - rm /tmp/vault-pass @@ -520,12 +575,13 @@ run-patchday-database-maria-qanso: run-patchday-all-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-all resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!harbor:!elastic:!postgres:!maria:!k8s_cluster' after_script: - rm /tmp/vault-pass @@ -534,12 +590,13 @@ run-patchday-all-qanso: run-patchday-all-k8s-qanso: extends: .run-patchday + environment: qanso stage: run-patchday-all resource_group: qanso script: - export STAGE=qanso - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster' after_script: - rm /tmp/vault-pass @@ -548,6 +605,7 @@ run-patchday-all-k8s-qanso: run-patchday-harbor-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-harbor resource_group: prodnso script: @@ -562,6 +620,7 @@ run-patchday-harbor-prodnso: run-patchday-elastic-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-elastic resource_group: prodnso script: @@ -576,6 +635,7 @@ run-patchday-elastic-prodnso: run-patchday-database-postgres-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-database resource_group: prodnso script: @@ -590,6 +650,7 @@ run-patchday-database-postgres-prodnso: run-patchday-database-maria-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-database resource_group: prodnso script: @@ -604,6 +665,7 @@ run-patchday-database-maria-prodnso: run-patchday-all-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: prodnso script: @@ -618,6 +680,7 @@ run-patchday-all-prodnso: run-patchday-all-k8s-prodnso: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: prodnso script: @@ -632,12 +695,13 @@ run-patchday-all-k8s-prodnso: run-patchday-all-prodwork01: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: prodwork01 script: - export STAGE=prodwork01 - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_PRODNSO}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_PRODWORK01}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!k8s_cluster' after_script: - rm /tmp/vault-pass @@ -646,12 +710,13 @@ run-patchday-all-prodwork01: run-patchday-all-k8s-prodwork01: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: prodwork01 script: - export STAGE=prodwork01 - export HETZNER_LABEL_SELECTOR="stage=${STAGE}" - - echo "${ANSIBLE_VAULT_PASS_PRODNSO}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_PRODWORK01}" > /tmp/vault-pass - ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster' after_script: - rm /tmp/vault-pass @@ -660,6 +725,7 @@ run-patchday-all-k8s-prodwork01: run-patchday-database-postgres-demompmx: extends: .run-patchday + environment: prodnso stage: run-patchday-database resource_group: demompmx script: @@ -674,6 +740,7 @@ run-patchday-database-postgres-demompmx: run-patchday-database-maria-demompmx: extends: .run-patchday + environment: prodnso stage: run-patchday-database resource_group: demompmx script: @@ -688,6 +755,7 @@ run-patchday-database-maria-demompmx: run-patchday-all-demompmx: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: demompmx script: @@ -702,6 +770,7 @@ run-patchday-all-demompmx: run-patchday-all-k8s-demompmx: extends: .run-patchday + environment: prodnso stage: run-patchday-all resource_group: demompmx script: @@ -714,19 +783,19 @@ run-patchday-all-k8s-demompmx: rules: - if: $CI_PIPELINE_SOURCE == "schedule" && $CI_COMMIT_BRANCH == "prodnso" - -######## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=hcloud-firewall.yml ### -### _ _ _ __ _ _ _ _ -### | | | | | | / _(_) | | | | | -### | |__ ___| | ___ _ _ __| | | |_ _ _ __ _____ ____ _| | | _ _ _ __ ___ | | -### | '_ \ / __| |/ _ \| | | |/ _` | | _| | '__/ _ \ \ /\ / / _` | | || | | | '_ ` _ \| | -### | | | | (__| | (_) | |_| | (_| | | | | | | | __/\ V V / (_| | | || |_| | | | | | | | -### |_| |_|\___|_|\___/ \__,_|\__,_| |_| |_|_| \___| \_/\_/ \__,_|_|_(_)__, |_| |_| |_|_| -### ______ __/ | -### |______| |___/ +### _ _ _ __ _ _ _ _ +### | | | | | | / _(_) | | | | | +### | |__ ___| | ___ _ _ __| |______| |_ _ _ __ _____ ____ _| | | _ _ _ __ ___ | | +### | '_ \ / __| |/ _ \| | | |/ _` |______| _| | '__/ _ \ \ /\ / / _` | | || | | | '_ ` _ \| | +### | | | | (__| | (_) | |_| | (_| | | | | | | | __/\ V V / (_| | | || |_| | | | | | | | +### |_| |_|\___|_|\___/ \__,_|\__,_| |_| |_|_| \___| \_/\_/ \__,_|_|_(_)__, |_| |_| |_|_| +### __/ | +### |___/ ### +############################################################################### .run-hcloud-firewall: extends: .run-ansible @@ -740,33 +809,37 @@ run-patchday-all-k8s-demompmx: run-hcloud-firewall-devnso: extends: .run-hcloud-firewall + environment: devnso resource_group: devnso before_script: - export STAGE=devnso - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass only: - main run-hcloud-firewall-devscr: extends: .run-hcloud-firewall + environment: devnso resource_group: devscr before_script: - export STAGE=devscr - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVSCR}" > /tmp/vault-pass only: - main run-hcloud-firewall-qanso: extends: .run-hcloud-firewall + environment: qanso resource_group: qanso before_script: - export STAGE=qanso - - echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass only: - qanso run-hcloud-firewall-prodnso: extends: .run-hcloud-firewall + environment: prodnso resource_group: prodnso before_script: - export STAGE=prodnso @@ -776,6 +849,7 @@ run-hcloud-firewall-prodnso: run-hcloud-firewall-prodwork01: extends: .run-hcloud-firewall + environment: prodnso resource_group: prodwork01 before_script: - export STAGE=prodwork01 @@ -785,6 +859,7 @@ run-hcloud-firewall-prodwork01: run-hcloud-firewall-demompmx: extends: .run-hcloud-firewall + environment: prodnso resource_group: demompmx before_script: - export STAGE=demompmx @@ -792,8 +867,7 @@ run-hcloud-firewall-demompmx: only: - prodnso - -######## +############################################################################### ### http://patorjk.com/software/taag/#p=display&f=Doom&t=Digitialocean ### ### ______ _ _ _ _ _ @@ -804,13 +878,15 @@ run-hcloud-firewall-demompmx: ### |___/ |_|\__, |_|\__|_|\__,_|_|\___/ \___\___|\__,_|_| |_| ### __/ | ### |___/ +### +############################################################################### run-setup-digitalocean: extends: .run-ansible stage: run-setup before_script: - export STAGE=devnso - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass script: - "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )" - eval $(ssh-agent -s) @@ -830,9 +906,10 @@ run-setup-digitalocean: run-patchday-devnso-digitalocean: extends: .run-ansible + environment: devnso stage: run-patchday-all before_script: - - echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass + - echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass script: - "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )" - eval $(ssh-agent -s) diff --git a/ansible-builder/README.md b/ansible-builder/README.md index 4a9fadf..6c2792b 100644 --- a/ansible-builder/README.md +++ b/ansible-builder/README.md @@ -1,6 +1,5 @@ # Execution Environment for AWX - ansible-builder build --tag dev-harbor-01.smardigo.digital/awx/awx-custom-ee:latest - docker login dev-harbor-01.smardigo.digital - docker tag XXXXXXXX dev-harbor-01.smardigo.digital/awx/awx-custom-ee:latest - docker push dev-harbor-01.smardigo.digital/awx/awx-custom-ee + ansible-builder build --tag $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital/awx/awx-custom-ee:latest + docker login $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital + docker push $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital/awx/awx-custom-ee:latest