gitea-admin
/
hetzner-ansible
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

DEV-1027 add environments to build pipeline and use environment specific awx image

Browse Source
main
Hans-Peter Wissenbach 2 years ago committed by Michael Hähnel
parent 32d07f3ad6
commit 1bafb5af5d
2 changed files with 134 additions and 58 deletions
Show Stats Download Patch File Download Diff File

171
.gitlab-ci.yml
Unescape Escape View File

@ -22,6 +22,17 @@ stages:
- run-patchday-all
- run-hcloud-firewall
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=lint
### _ _ _
### | (_) | |
### | |_ _ __ | |_
### | | | '_ \| __|
### | | | | | | |_
### |_|_|_| |_|\__|
###
###############################################################################
lint-job:
stage: lint
script:
@ -34,13 +45,26 @@ lint-job:
tags:
- dind
###############################################################################
### https://patorjk.com/software/taag/#p=display&f=Doom&t=ansible-builder
### _ _ _ _ _ _ _
### (_) | | | | | (_) | | |
### __ _ _ __ ___ _| |__ | | ___ ______| |__ _ _ _| | __| | ___ _ __
### / _` | '_ \/ __| | '_ \| |/ _ \______| '_ \| | | | | |/ _` |/ _ \ '__|
### | (_| | | | \__ \ | |_) | | __/ | |_) | |_| | | | (_| | __/ |
### \__,_|_| |_|___/_|_.__/|_|\___| |_.__/ \__,_|_|_|\__,_|\___|_|
###
###############################################################################
.builder-job:
stage: ansible-builder
before_script:
- echo "CI_ENVIRONMENT_NAME=$CI_ENVIRONMENT_NAME"
script:
- cp $SSH_KEY_GITLAB_CI_BUILDER_FILE ansible-builder/context/id_ed25519
- echo "Running docker build to build awx execution environment"
- docker build -f ansible-builder/context/Dockerfile -t ${STAGE}-$AWX_EE_DOCKER_IMAGE_EXTERN:latest .
- docker push ${STAGE}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest
- docker build -f ansible-builder/context/Dockerfile -t ${CI_ENVIRONMENT_NAME}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest .
- docker push ${CI_ENVIRONMENT_NAME}-${AWX_EE_DOCKER_IMAGE_EXTERN}:latest
except:
- schedules
tags:
@ -49,6 +73,7 @@ lint-job:
.builder-job-devnso:
extends: .builder-job
environment: devnso
resource_group: devnso
before_script:
- export STAGE=devnso
@ -70,6 +95,7 @@ builder-job-devnso-manual:
.builder-job-qanso:
extends: .builder-job
environment: qanso
resource_group: qanso
before_script:
- export STAGE=qanso
@ -91,6 +117,7 @@ builder-job-qanso-manual:
.builder-job-prodnso:
extends: .builder-job
environment: prodnso
resource_group: prodnso
before_script:
- export STAGE=prodnso
@ -110,18 +137,16 @@ builder-job-prodnso-manual:
extends: .builder-job-prodnso
when: manual
##################################################################################
###############################################################################
# Environment specific AWX image from predefined variable $CI_ENVIRONMENT_NAME
.run-ansible:
image: devnso-$AWX_EE_DOCKER_IMAGE_EXTERN:latest # hardcoded DEV Stage Image, couldn't find better option for now, since image name cant be set dynamically
image: $CI_ENVIRONMENT_NAME-$AWX_EE_DOCKER_IMAGE_EXTERN:latest
tags:
- dind
- harbor # 05.02.22 TODO some runners run into timeouts
########
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=setup.yml
###
### _ _
### | | | |
### ___ ___| |_ _ _ _ __ _ _ _ __ ___ | |
@ -130,10 +155,14 @@ builder-job-prodnso-manual:
### |___/\___|\__|\__,_| .__(_)__, |_| |_| |_|_|
### | | __/ |
### |_| |___/
###
###############################################################################
.run-setup:
extends: .run-ansible
stage: run-setup
before_script:
- echo "CI_ENVIRONMENT_NAME=$CI_ENVIRONMENT_NAME"
script:
- "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )"
- eval $(ssh-agent -s)
@ -151,28 +180,31 @@ builder-job-prodnso-manual:
run-setup-devnso:
extends: .run-setup
environment: devnso
resource_group: devnso
before_script:
- export STAGE=devnso
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
only:
- main
run-setup-devscr:
extends: .run-setup
environment: devnso
resource_group: devscr
before_script:
- export STAGE=devscr
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVSCR}" > /tmp/vault-pass
only:
- main
run-setup-qanso:
extends: .run-setup
environment: qanso
resource_group: qanso
before_script:
- export STAGE=qanso
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
only:
- qanso
@ -187,6 +219,7 @@ run-setup-prodnso:
run-setup-prodwork01:
extends: .run-setup
environment: prodnso
resource_group: prodwork01
before_script:
- export STAGE=prodwork01
@ -196,6 +229,7 @@ run-setup-prodwork01:
run-setup-demompmx:
extends: .run-setup
environment: prodnso
resource_group: demompmx
before_script:
- export STAGE=demompmx
@ -204,7 +238,7 @@ run-setup-demompmx:
- prodnso
##################################################################################
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=vpn.yml
### _
### | |
@ -215,6 +249,7 @@ run-setup-demompmx:
### | | __/ |
### |_| |___/
###
###############################################################################
.vpn-config-update:
extends: .run-ansible
@ -241,26 +276,29 @@ run-setup-demompmx:
run-vpn-update-devnso:
extends: .vpn-config-update
environment: devnso
# A resource group ensures a job is mutually exclusive across different pipelines for the same project.
resource_group: devnso
before_script:
- export STAGE=devnso
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
only:
- main
run-vpn-update-qanso:
extends: .vpn-config-update
environment: qanso
# A resource group ensures a job is mutually exclusive across different pipelines for the same project.
resource_group: qanso
before_script:
- export STAGE=qanso
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
only:
- qanso
run-vpn-update-prodnso:
extends: .vpn-config-update
environment: prodnso
# A resource group ensures a job is mutually exclusive across different pipelines for the same project.
resource_group: prodnso
before_script:
@ -270,7 +308,7 @@ run-vpn-update-prodnso:
- prodnso
########
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=smardigo.yml
###
### _ _ _
@ -281,6 +319,8 @@ run-vpn-update-prodnso:
### |___/_| |_| |_|\__,_|_| \__,_|_|\__, |\___(_)__, |_| |_| |_|_|
### __/ | __/ |
### |___/ |___/
###
###############################################################################
.run-management-update:
extends: .run-ansible
@ -305,24 +345,27 @@ run-vpn-update-prodnso:
run-management-update-devnso:
extends: .run-management-update
environment: devnso
resource_group: devnso
before_script:
- export STAGE=devnso
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
only:
- main
run-management-update-qanso:
extends: .run-management-update
environment: qanso
resource_group: qanso
before_script:
- export STAGE=qanso
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
only:
- qanso
run-management-update-prodnso:
extends: .run-management-update
environment: prodnso
resource_group: prodnso
before_script:
- export STAGE=prodnso
@ -332,6 +375,7 @@ run-management-update-prodnso:
run-management-update-demompmx:
extends: .run-management-update
environment: prodnso
resource_group: demompmx
before_script:
- export STAGE=demompmx
@ -339,10 +383,8 @@ run-management-update-demompmx:
only:
- prodnso
########
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=patchday.yml
###
### _ _ _ _
### | | | | | | | |
### _ __ __ _| |_ ___| |__ __| | __ _ _ _ _ _ _ __ ___ | |
@ -351,6 +393,8 @@ run-management-update-demompmx:
### | .__/ \__,_|\__\___|_| |_|\__,_|\__,_|\__, (_)__, |_| |_| |_|_|
### | | __/ | __/ |
### |_| |___/ |___/
###
###############################################################################
.run-patchday:
extends: .run-ansible
@ -366,12 +410,13 @@ run-management-update-demompmx:
run-patchday-harbor-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-harbor
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'harbor'
after_script:
- rm /tmp/vault-pass
@ -380,12 +425,13 @@ run-patchday-harbor-devnso:
run-patchday-elastic-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-elastic
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'elastic'
after_script:
- rm /tmp/vault-pass
@ -394,12 +440,13 @@ run-patchday-elastic-devnso:
run-patchday-database-postgres-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-database
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'postgres'
after_script:
- rm /tmp/vault-pass
@ -408,12 +455,13 @@ run-patchday-database-postgres-devnso:
run-patchday-database-maria-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-database
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'maria'
after_script:
- rm /tmp/vault-pass
@ -422,12 +470,13 @@ run-patchday-database-maria-devnso:
run-patchday-all-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-all
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!harbor:!elastic:!postgres:!maria:!k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -436,12 +485,13 @@ run-patchday-all-devnso:
run-patchday-all-k8s-devnso:
extends: .run-patchday
environment: devnso
stage: run-patchday-all
resource_group: devnso
script:
- export STAGE=devnso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -450,6 +500,7 @@ run-patchday-all-k8s-devnso:
run-patchday-all-k8s-devscr:
extends: .run-patchday
environment: devnso
stage: run-patchday-all
resource_group: devscr
script:
@ -464,12 +515,13 @@ run-patchday-all-k8s-devscr:
run-patchday-harbor-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-harbor
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'harbor'
after_script:
- rm /tmp/vault-pass
@ -478,12 +530,13 @@ run-patchday-harbor-qanso:
run-patchday-elastic-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-elastic
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'elastic'
after_script:
- rm /tmp/vault-pass
@ -492,12 +545,13 @@ run-patchday-elastic-qanso:
run-patchday-database-postgres-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-database
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'postgres'
after_script:
- rm /tmp/vault-pass
@ -506,12 +560,13 @@ run-patchday-database-postgres-qanso:
run-patchday-database-maria-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-database
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'maria'
after_script:
- rm /tmp/vault-pass
@ -520,12 +575,13 @@ run-patchday-database-maria-qanso:
run-patchday-all-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-all
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!harbor:!elastic:!postgres:!maria:!k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -534,12 +590,13 @@ run-patchday-all-qanso:
run-patchday-all-k8s-qanso:
extends: .run-patchday
environment: qanso
stage: run-patchday-all
resource_group: qanso
script:
- export STAGE=qanso
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -548,6 +605,7 @@ run-patchday-all-k8s-qanso:
run-patchday-harbor-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-harbor
resource_group: prodnso
script:
@ -562,6 +620,7 @@ run-patchday-harbor-prodnso:
run-patchday-elastic-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-elastic
resource_group: prodnso
script:
@ -576,6 +635,7 @@ run-patchday-elastic-prodnso:
run-patchday-database-postgres-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-database
resource_group: prodnso
script:
@ -590,6 +650,7 @@ run-patchday-database-postgres-prodnso:
run-patchday-database-maria-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-database
resource_group: prodnso
script:
@ -604,6 +665,7 @@ run-patchday-database-maria-prodnso:
run-patchday-all-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: prodnso
script:
@ -618,6 +680,7 @@ run-patchday-all-prodnso:
run-patchday-all-k8s-prodnso:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: prodnso
script:
@ -632,12 +695,13 @@ run-patchday-all-k8s-prodnso:
run-patchday-all-prodwork01:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: prodwork01
script:
- export STAGE=prodwork01
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_PRODNSO}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_PRODWORK01}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'all:!k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -646,12 +710,13 @@ run-patchday-all-prodwork01:
run-patchday-all-k8s-prodwork01:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: prodwork01
script:
- export STAGE=prodwork01
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
- echo "${ANSIBLE_VAULT_PASS_PRODNSO}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_PRODWORK01}" > /tmp/vault-pass
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci --limit 'k8s_cluster'
after_script:
- rm /tmp/vault-pass
@ -660,6 +725,7 @@ run-patchday-all-k8s-prodwork01:
run-patchday-database-postgres-demompmx:
extends: .run-patchday
environment: prodnso
stage: run-patchday-database
resource_group: demompmx
script:
@ -674,6 +740,7 @@ run-patchday-database-postgres-demompmx:
run-patchday-database-maria-demompmx:
extends: .run-patchday
environment: prodnso
stage: run-patchday-database
resource_group: demompmx
script:
@ -688,6 +755,7 @@ run-patchday-database-maria-demompmx:
run-patchday-all-demompmx:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: demompmx
script:
@ -702,6 +770,7 @@ run-patchday-all-demompmx:
run-patchday-all-k8s-demompmx:
extends: .run-patchday
environment: prodnso
stage: run-patchday-all
resource_group: demompmx
script:
@ -714,19 +783,19 @@ run-patchday-all-k8s-demompmx:
rules:
- if: $CI_PIPELINE_SOURCE == "schedule" && $CI_COMMIT_BRANCH == "prodnso"
########
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=hcloud-firewall.yml
###
### _ _ _ __ _ _ _ _
### | | | | | | / _(_) | | | | |
### | |__ ___| | ___ _ _ __| | | |_ _ _ __ _____ ____ _| | | _ _ _ __ ___ | |
### | '_ \ / __| |/ _ \| | | |/ _` | | _| | '__/ _ \ \ /\ / / _` | | || | | | '_ ` _ \| |
### | |__ ___| | ___ _ _ __| |______| |_ _ _ __ _____ ____ _| | | _ _ _ __ ___ | |
### | '_ \ / __| |/ _ \| | | |/ _` |______| _| | '__/ _ \ \ /\ / / _` | | || | | | '_ ` _ \| |
### | | | | (__| | (_) | |_| | (_| | | | | | | | __/\ V V / (_| | | || |_| | | | | | | |
### |_| |_|\___|_|\___/ \__,_|\__,_| |_| |_|_| \___| \_/\_/ \__,_|_|_(_)__, |_| |_| |_|_|
### ______ __/ |
### |______| |___/
### __/ |
### |___/
###
###############################################################################
.run-hcloud-firewall:
extends: .run-ansible
@ -740,33 +809,37 @@ run-patchday-all-k8s-demompmx:
run-hcloud-firewall-devnso:
extends: .run-hcloud-firewall
environment: devnso
resource_group: devnso
before_script:
- export STAGE=devnso
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
only:
- main
run-hcloud-firewall-devscr:
extends: .run-hcloud-firewall
environment: devnso
resource_group: devscr
before_script:
- export STAGE=devscr
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVSCR}" > /tmp/vault-pass
only:
- main
run-hcloud-firewall-qanso:
extends: .run-hcloud-firewall
environment: qanso
resource_group: qanso
before_script:
- export STAGE=qanso
- echo "${ANSIBLE_VAULT_PASS_QA}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_QANSO}" > /tmp/vault-pass
only:
- qanso
run-hcloud-firewall-prodnso:
extends: .run-hcloud-firewall
environment: prodnso
resource_group: prodnso
before_script:
- export STAGE=prodnso
@ -776,6 +849,7 @@ run-hcloud-firewall-prodnso:
run-hcloud-firewall-prodwork01:
extends: .run-hcloud-firewall
environment: prodnso
resource_group: prodwork01
before_script:
- export STAGE=prodwork01
@ -785,6 +859,7 @@ run-hcloud-firewall-prodwork01:
run-hcloud-firewall-demompmx:
extends: .run-hcloud-firewall
environment: prodnso
resource_group: demompmx
before_script:
- export STAGE=demompmx
@ -792,8 +867,7 @@ run-hcloud-firewall-demompmx:
only:
- prodnso
########
###############################################################################
### http://patorjk.com/software/taag/#p=display&f=Doom&t=Digitialocean
###
### ______ _ _ _ _ _
@ -804,13 +878,15 @@ run-hcloud-firewall-demompmx:
### |___/ |_|\__, |_|\__|_|\__,_|_|\___/ \___\___|\__,_|_| |_|
### __/ |
### |___/
###
###############################################################################
run-setup-digitalocean:
extends: .run-ansible
stage: run-setup
before_script:
- export STAGE=devnso
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
script:
- "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )"
- eval $(ssh-agent -s)
@ -830,9 +906,10 @@ run-setup-digitalocean:
run-patchday-devnso-digitalocean:
extends: .run-ansible
environment: devnso
stage: run-patchday-all
before_script:
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
- echo "${ANSIBLE_VAULT_PASS_DEVNSO}" > /tmp/vault-pass
script:
- "command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )"
- eval $(ssh-agent -s)

7
ansible-builder/README.md
Unescape Escape View File

@ -1,6 +1,5 @@
# Execution Environment for AWX
ansible-builder build --tag dev-harbor-01.smardigo.digital/awx/awx-custom-ee:latest
docker login dev-harbor-01.smardigo.digital
docker tag XXXXXXXX dev-harbor-01.smardigo.digital/awx/awx-custom-ee:latest
docker push dev-harbor-01.smardigo.digital/awx/awx-custom-ee
ansible-builder build --tag $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital/awx/awx-custom-ee:latest
docker login $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital
docker push $CI_ENVIRONMENT_NAME-harbor-01.smardigo.digital/awx/awx-custom-ee:latest

Write Preview
Loading…
Cancel
Save