|
|
|
@ -57,18 +57,6 @@ builder-job:
|
|
|
|
|
|
|
|
|
|
|
|
.run-ansible:
|
|
|
|
.run-ansible:
|
|
|
|
image: $AWX_EE_DOCKER_IMAGE_EXTERN:latest
|
|
|
|
image: $AWX_EE_DOCKER_IMAGE_EXTERN:latest
|
|
|
|
script:
|
|
|
|
|
|
|
|
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
|
|
|
|
|
|
|
|
- eval $(ssh-agent -s)
|
|
|
|
|
|
|
|
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
|
|
|
|
|
|
|
|
- mkdir -p ~/.ssh
|
|
|
|
|
|
|
|
- chmod 0700 ~/.ssh
|
|
|
|
|
|
|
|
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
|
|
|
|
|
|
|
|
- ssh-add -L
|
|
|
|
|
|
|
|
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
|
|
|
|
|
|
|
|
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
|
|
|
|
|
|
|
|
after_script:
|
|
|
|
|
|
|
|
- rm /tmp/vault-pass
|
|
|
|
|
|
|
|
tags:
|
|
|
|
tags:
|
|
|
|
- dind
|
|
|
|
- dind
|
|
|
|
- harbor # 05.02.22 TODO some runners run into timeouts
|
|
|
|
- harbor # 05.02.22 TODO some runners run into timeouts
|
|
|
|
@ -89,7 +77,18 @@ builder-job:
|
|
|
|
extends: .run-ansible
|
|
|
|
extends: .run-ansible
|
|
|
|
stage: run-setup
|
|
|
|
stage: run-setup
|
|
|
|
script:
|
|
|
|
script:
|
|
|
|
|
|
|
|
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
|
|
|
|
|
|
|
|
- eval $(ssh-agent -s)
|
|
|
|
|
|
|
|
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
|
|
|
|
|
|
|
|
- mkdir -p ~/.ssh
|
|
|
|
|
|
|
|
- chmod 0700 ~/.ssh
|
|
|
|
|
|
|
|
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
|
|
|
|
|
|
|
|
- ssh-add -L
|
|
|
|
|
|
|
|
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
|
|
|
|
|
|
|
|
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml setup.yml --vault-password-file /tmp/vault-pass -t common -u gitlabci
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml setup.yml --vault-password-file /tmp/vault-pass -t common -u gitlabci
|
|
|
|
|
|
|
|
after_script:
|
|
|
|
|
|
|
|
- rm /tmp/vault-pass
|
|
|
|
|
|
|
|
|
|
|
|
run-kubernetes-dev:
|
|
|
|
run-kubernetes-dev:
|
|
|
|
extends: .run-setup
|
|
|
|
extends: .run-setup
|
|
|
|
@ -134,7 +133,18 @@ run-kubernetes-prodnso:
|
|
|
|
extends: .run-ansible
|
|
|
|
extends: .run-ansible
|
|
|
|
stage: run-kubernetes
|
|
|
|
stage: run-kubernetes
|
|
|
|
script:
|
|
|
|
script:
|
|
|
|
|
|
|
|
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
|
|
|
|
|
|
|
|
- eval $(ssh-agent -s)
|
|
|
|
|
|
|
|
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
|
|
|
|
|
|
|
|
- mkdir -p ~/.ssh
|
|
|
|
|
|
|
|
- chmod 0700 ~/.ssh
|
|
|
|
|
|
|
|
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
|
|
|
|
|
|
|
|
- ssh-add -L
|
|
|
|
|
|
|
|
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
|
|
|
|
|
|
|
|
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml kubernetes.yml --vault-password-file /tmp/vault-pass -u gitlabci
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml kubernetes.yml --vault-password-file /tmp/vault-pass -u gitlabci
|
|
|
|
|
|
|
|
after_script:
|
|
|
|
|
|
|
|
- rm /tmp/vault-pass
|
|
|
|
|
|
|
|
|
|
|
|
run-kubernetes-dev:
|
|
|
|
run-kubernetes-dev:
|
|
|
|
extends: .run-kubernetes
|
|
|
|
extends: .run-kubernetes
|
|
|
|
@ -179,7 +189,18 @@ run-kubernetes-prodnso:
|
|
|
|
extends: .run-ansible
|
|
|
|
extends: .run-ansible
|
|
|
|
stage: run-management-update
|
|
|
|
stage: run-management-update
|
|
|
|
script:
|
|
|
|
script:
|
|
|
|
|
|
|
|
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
|
|
|
|
|
|
|
|
- eval $(ssh-agent -s)
|
|
|
|
|
|
|
|
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
|
|
|
|
|
|
|
|
- mkdir -p ~/.ssh
|
|
|
|
|
|
|
|
- chmod 0700 ~/.ssh
|
|
|
|
|
|
|
|
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
|
|
|
|
|
|
|
|
- ssh-add -L
|
|
|
|
|
|
|
|
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
|
|
|
|
|
|
|
|
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
|
|
|
|
- ansible-playbook -i stage-$STAGE smardigo.yml --vault-password-file=/tmp/vault-pass -l management -t update_configurations -u gitlabci
|
|
|
|
- ansible-playbook -i stage-$STAGE smardigo.yml --vault-password-file=/tmp/vault-pass -l management -t update_configurations -u gitlabci
|
|
|
|
|
|
|
|
after_script:
|
|
|
|
|
|
|
|
- rm /tmp/vault-pass
|
|
|
|
only:
|
|
|
|
only:
|
|
|
|
changes:
|
|
|
|
changes:
|
|
|
|
- smardigo/**/*
|
|
|
|
- smardigo/**/*
|
|
|
|
@ -227,7 +248,18 @@ run-management-update-prodnso:
|
|
|
|
extends: .run-ansible
|
|
|
|
extends: .run-ansible
|
|
|
|
stage: run-patchday
|
|
|
|
stage: run-patchday
|
|
|
|
script:
|
|
|
|
script:
|
|
|
|
|
|
|
|
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
|
|
|
|
|
|
|
|
- eval $(ssh-agent -s)
|
|
|
|
|
|
|
|
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
|
|
|
|
|
|
|
|
- mkdir -p ~/.ssh
|
|
|
|
|
|
|
|
- chmod 0700 ~/.ssh
|
|
|
|
|
|
|
|
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
|
|
|
|
|
|
|
|
- ssh-add -L
|
|
|
|
|
|
|
|
- echo "${ANSIBLE_VAULT_PASS_DEV}" > /tmp/vault-pass
|
|
|
|
|
|
|
|
- export HETZNER_LABEL_SELECTOR="stage=${STAGE}"
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci
|
|
|
|
- ansible-playbook -i stage-${STAGE}-netgo-hcloud.yml patchday.yml patchday.yml --vault-password-file=/tmp/vault-pass -u gitlabci
|
|
|
|
|
|
|
|
after_script:
|
|
|
|
|
|
|
|
- rm /tmp/vault-pass
|
|
|
|
when: manual
|
|
|
|
when: manual
|
|
|
|
|
|
|
|
|
|
|
|
run-patchday-dev:
|
|
|
|
run-patchday-dev:
|
|
|
|
|
Sven Ketelsen
4 years ago