kadet.net/servers
1
0
Fork 0
Code Releases Activity

Add gitea service config

Browse Source
This commit is contained in:
Kacper Donat 2021-03-12 22:33:50 +01:00
parent a90296fa41
commit ad30e792d5
9 changed files with 94 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
services/gitea/bin/gitea-ssh-forward Executable file
View File

@ -0,0 +1,2 @@
#!/bin/sh
ssh -p 2222 -o StrictHostKeyChecking=no git@127.0.0.1 "SSH_ORIGINAL_COMMAND=\"$SSH_ORIGINAL_COMMAND\" $0 $@"

44
services/gitea/stack.yml Normal file
View File

@ -0,0 +1,44 @@
version: "{{ compose_version }}"
volumes:
db_data: ~
services:
server:
image: gitea/gitea:1.13.4
environment:
- USER_UID={{ git_user.uid }}
- USER_GID={{ git_user.group }}
- ROOT_URL=http://git.kadet.local/
- DB_TYPE=mysql
- DB_HOST=db:3306
- DB_NAME=gitea
- DB_USER=gitea
- DB_PASSWD=gitea
ports:
- 127.0.0.1:2222:22
networks:
- "{{ ingress_network }}"
- default
depends_on: ['db']
volumes:
- "{{ repositories_path }}:/data"
- "{{ git_user.home }}/.ssh:/data/git/.ssh"
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
deploy:
labels:
- traefik.enable=true
- traefik.http.routers.{{ service }}.rule=Host(`git.kadet.local`)
- traefik.http.services.{{ service }}.loadbalancer.server.port=3000
db:
image: mysql:5.7
restart: always
environment:
- MYSQL_ROOT_PASSWORD=gitea
- MYSQL_USER=gitea
- MYSQL_PASSWORD=gitea
- MYSQL_DATABASE=gitea
volumes:
- db_data:/var/lib/mysql

34
services/gitea/tasks/setup.yml Normal file
View File

@ -0,0 +1,34 @@
---
- name: 'Ensure repositories directory exists'
file:
path: "{{ repositories_path }}"
state: directory
owner: "{{ ansible_user }}"
- name: 'Create git user for ssh access'
user:
name: git
shell: /bin/bash
system: yes
password: '!'
state: present
generate_ssh_key: yes
register: git_user
- name: 'Add host key for gitea SSH passthrough'
ansible.posix.authorized_key:
user: "{{ git_user.name }}"
key: "{{ git_user.ssh_public_key }}"
state: present
manage_dir: False
- name: 'Ensure /app/gitea exists'
file:
path: "/app/gitea"
state: directory
- name: 'Copy gitea-ssh-forward script to remote'
copy:
src: "{{ service_path }}/bin/gitea-ssh-forward"
dest: "/app/gitea/gitea"

2
services/gitea/vars/main.yml Normal file
View File

@ -0,0 +1,2 @@
---
repositories_path: /var/repositories

13
services/helloworld/stack.yml
View File

@ -1,13 +0,0 @@
version: "{{ compose_version }}"
services:
rest:
image: thomaspoignant/hello-world-rest-json
deploy:
labels:
- traefik.enable=true
- traefik.http.routers.{{ service }}.rule=Host(`kadet.local`) && PathPrefix(`/hello/`)
- traefik.http.routers.{{ service }}.middlewares={{ service }}-strip
- traefik.http.services.{{ service }}.loadbalancer.server.port=8080
- traefik.http.middlewares.{{ service }}-strip.stripprefix.prefixes=/hello/
networks: ['traefik']

2
services/helloworld/vars/main.yml
View File

@ -1,2 +0,0 @@
---
service_port: 80

15
services/traefik/config/traefik.yaml
View File

@ -37,13 +37,13 @@ entryPoints:
# #
# Optional # Optional
# #
#log: log:
# Log level # Log level
# #
# Optional # Optional
# Default: "ERROR" # Default: "ERROR"
# #
# level: DEBUG level: DEBUG
# Sets the filepath for the traefik log. If not specified, stdout will be used. # Sets the filepath for the traefik log. If not specified, stdout will be used.
# Intermediate directories are created if necessary. # Intermediate directories are created if necessary.
@ -51,14 +51,14 @@ entryPoints:
# Optional # Optional
# Default: os.Stdout # Default: os.Stdout
# #
# filePath: log/traefik.log filePath: os.Stdout
# Format is either "json" or "common". # Format is either "json" or "common".
# #
# Optional # Optional
# Default: "common" # Default: "common"
# #
# format: json format: common
################################################################ ################################################################
# Access logs configuration # Access logs configuration
@ -70,21 +70,21 @@ entryPoints:
# #
# Optional # Optional
# #
#accessLog: accessLog:
# Sets the file path for the access log. If not specified, stdout will be used. # Sets the file path for the access log. If not specified, stdout will be used.
# Intermediate directories are created if necessary. # Intermediate directories are created if necessary.
# #
# Optional # Optional
# Default: os.Stdout # Default: os.Stdout
# #
# filePath: /path/to/log/log.txt filePath: os.Stdout
# Format is either "json" or "common". # Format is either "json" or "common".
# #
# Optional # Optional
# Default: "common" # Default: "common"
# #
# format: json format: common
################################################################ ################################################################
# API and dashboard configuration # API and dashboard configuration
@ -134,3 +134,4 @@ providers:
endpoint: "unix:///var/run/docker.sock" endpoint: "unix:///var/run/docker.sock"
swarmMode: true swarmMode: true
exposedByDefault: false exposedByDefault: false
network: "traefik"

4
services/traefik/stack.yml
View File

@ -1,7 +1,7 @@
version: "{{ compose_version }}" version: "{{ compose_version }}"
services: services:
traefik: ingress:
image: traefik:v2.4 image: traefik:v2.4
ports: ports:
- 80:80 - 80:80
@ -14,4 +14,4 @@ services:
placement: placement:
constraints: constraints:
- node.role == manager - node.role == manager
networks: ['traefik'] networks: ['{{ ingress_network }}']

2
vars/services.yml
View File

@ -8,3 +8,5 @@ remote_services_root: /var/services
remote_service_path: "{{ remote_services_root }}/{{ service }}" remote_service_path: "{{ remote_services_root }}/{{ service }}"
compose_version: "3.7" compose_version: "3.7"
ingress_network: traefik