Compare commits
21 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
bc87393fba | ||
|
|
f9d43d43f9 | ||
| ee0b103593 | |||
| 6cd309eb9a | |||
| 93aebc5251 | |||
|
|
513b3f9f6a | ||
|
|
dd9f1a1c2f | ||
|
|
de3896d5ca | ||
|
|
6bc1120a64 | ||
|
|
f7c6ce03ea | ||
|
|
e1e69d5212 | ||
|
|
ca0fbeea73 | ||
| f2c82d24e2 | |||
| 0fdbac0ea8 | |||
| 638f51eaa6 | |||
| 0f9850d6f8 | |||
| c26a2f6efb | |||
| 5af97a3714 | |||
| 6d73464c70 | |||
|
|
ea9c55b6bf | ||
| 3088f3904f |
44
.drone.yml
44
.drone.yml
@@ -3,7 +3,7 @@ type: kubernetes
|
||||
name: default
|
||||
|
||||
node_selector:
|
||||
physical-node: dev2
|
||||
physical-node: dev1
|
||||
|
||||
trigger:
|
||||
event:
|
||||
@@ -14,26 +14,6 @@ workspace:
|
||||
path: /drone/src
|
||||
|
||||
steps:
|
||||
- name: build multiarch from dev
|
||||
image: docker.io/owncloudci/drone-docker-buildx:4
|
||||
privileged: true
|
||||
settings:
|
||||
cache-from: [ "registry.dev.format.hu/framework-scheduler" ]
|
||||
registry: registry.dev.format.hu
|
||||
repo: registry.dev.format.hu/framework-scheduler
|
||||
tags: latest
|
||||
dockerfile: Dockerfile
|
||||
username:
|
||||
from_secret: dev-hu-registry-username
|
||||
password:
|
||||
from_secret: dev-hu-registry-password
|
||||
platforms:
|
||||
- linux/amd64
|
||||
- linux/arm64
|
||||
when:
|
||||
event:
|
||||
- push
|
||||
|
||||
- name: pull image to dockerhub
|
||||
image: docker.io/owncloudci/drone-docker-buildx:4
|
||||
privileged: true
|
||||
@@ -51,3 +31,25 @@ steps:
|
||||
when:
|
||||
event:
|
||||
- tag
|
||||
|
||||
- name: build multiarch from dev
|
||||
image: docker.io/owncloudci/drone-docker-buildx:4
|
||||
privileged: true
|
||||
#environment:
|
||||
# DOCKER_PLUGIN_MIRROR: "https://mirror.dev.format.hu"
|
||||
settings:
|
||||
cache-from: [ "registry.dev.format.hu/framework-scheduler" ]
|
||||
registry: registry.dev.format.hu
|
||||
repo: registry.dev.format.hu/framework-scheduler
|
||||
tags: latest
|
||||
dockerfile: Dockerfile
|
||||
username:
|
||||
from_secret: dev-hu-registry-username
|
||||
password:
|
||||
from_secret: dev-hu-registry-password
|
||||
platforms:
|
||||
- linux/amd64
|
||||
- linux/arm64
|
||||
when:
|
||||
event:
|
||||
- push
|
||||
@@ -14,7 +14,7 @@ FROM alpine:latest
|
||||
# COPY --from=redis-source /usr/src/redis/src/redis-cli /usr/bin/redis-cli
|
||||
# RUN chmod +x /usr/bin/redis-cli
|
||||
|
||||
RUN apk add --update --no-cache docker-cli wget curl dos2unix jq openssl git coreutils inotify-tools acl
|
||||
RUN apk add --update --no-cache docker-cli wget curl dos2unix jq openssl git coreutils inotify-tools acl apache2-utils
|
||||
|
||||
COPY scripts/scheduler/*.sh /scripts/
|
||||
RUN find ./scripts -name "*.sh" | xargs dos2unix
|
||||
|
||||
@@ -30,6 +30,7 @@ REDIS_VERSION=${REDIS_VERSION:-latest}
|
||||
|
||||
SOURCE=${SOURCE:-user-config}
|
||||
SMARTHOST_PROXY_PATH=$SMARTHOST_PROXY_PATH
|
||||
HTPASSWD_FILE=${HTPASSWD_FILE:-/etc/system/config/smarthost-proxy/nginx/htpasswd}
|
||||
|
||||
GIT_URL=${GIT_URL:-git.format.hu}
|
||||
REPO=$REPO
|
||||
@@ -99,6 +100,19 @@ if [ -d /etc/user/config/services ]; then
|
||||
done
|
||||
fi
|
||||
|
||||
create_htpasswd_file() {
|
||||
|
||||
local USER="$1"
|
||||
local PASSWD="$2"
|
||||
|
||||
if [ ! -f "$HTPASSWD_FILE" ]; then
|
||||
install -m 664 -g 65534 /dev/null $HTPASSWD_FILE
|
||||
htpasswd -cb $HTPASSWD_FILE $USER $PASSWD
|
||||
fi
|
||||
}
|
||||
|
||||
install -m 664 -g 65534 /dev/null
|
||||
|
||||
deploy_additionals() {
|
||||
|
||||
local DIR="$1"
|
||||
@@ -542,21 +556,22 @@ upgrade() {
|
||||
|
||||
else
|
||||
|
||||
debug "$service_exec service-$NAME.json start info"
|
||||
$service_exec service-$NAME.json stop force
|
||||
$service_exec service-$NAME.json start info &
|
||||
debug "$service_exec $NAME.json start info"
|
||||
$service_exec $NAME.json stop force
|
||||
$service_exec $NAME.json start info &
|
||||
fi
|
||||
}
|
||||
|
||||
|
||||
execute_task() {
|
||||
TASK="$1"
|
||||
B64_JSON="$2"
|
||||
DATE=$(date +"%Y%m%d%H%M")
|
||||
|
||||
# Executing task
|
||||
debug "TASK: $(echo $TASK | cut -d ':' -f1)"
|
||||
TASK_NAME=$(echo $TASK | cut -d ':' -f1)
|
||||
if [ "$TASK_NAME" != "check_vpn" ]; then
|
||||
debug "TASK: $(echo $TASK_NAME | cut -d ':' -f1)"
|
||||
fi
|
||||
|
||||
# checking sytem status
|
||||
SYSTEM_STATUS=$(ls /etc/user/config/services/*.json | grep -v service-framework.json)
|
||||
@@ -579,6 +594,17 @@ execute_task() {
|
||||
#fi;
|
||||
JSON_TARGET=$(echo '{ "DATE": "'$DATE'", "INSTALL_STATUS": "'$INSTALL_STATUS'" }' | jq -r . | base64 -w0)
|
||||
|
||||
elif [ "$TASK_NAME" == "letsencrypt" ]; then
|
||||
DOMAINS=$(echo $B64_JSON | base64 -d | jq -r 'keys[]')
|
||||
for DOMAIN in $(echo $DOMAINS); do
|
||||
REQUEST=$(echo $B64_JSON | base64 -d | jq -r ".[\"$DOMAIN\"].status")
|
||||
|
||||
if [ "$REQUEST" == "requested" ]; then
|
||||
echo "New certificate for $DOMAIN is requested."
|
||||
touch /etc/system/data/ssl/keys/$DOMAIN/new_certificate
|
||||
fi
|
||||
done
|
||||
|
||||
elif [ "$TASK_NAME" == "system" ]; then
|
||||
#SYSTEM_LIST="core-dns.json cron.json domain-local-backend.json firewall-letsencrypt.json firewall-local-backend.json firewall-localloadbalancer-dns.json firewall-localloadbalancer-to-smarthostbackend.json firewall-smarthost-backend-dns.json firewall-smarthost-loadbalancer-dns.json firewall-smarthost-to-backend.json firewall-smarthostloadbalancer-from-publicbackend.json letsencrypt.json local-backend.json local-proxy.json service-framework.json smarthost-proxy-scheduler.json smarthost-proxy.json"
|
||||
SYSTEM_LIST="core-dns.json cron.json letsencrypt.json local-proxy.json service-framework.json smarthost-proxy-scheduler.json smarthost-proxy.json"
|
||||
@@ -788,6 +814,7 @@ execute_task() {
|
||||
|
||||
TEMPLATE=$(echo "$TEMPLATE" | base64 -w0)
|
||||
JSON_TARGET=$(echo '{ "DATE": "'$DATE'", "STATUS": "0", "TEMPLATE": "'$TEMPLATE'" }' | jq -r . | base64 -w0)
|
||||
|
||||
elif [ "$DEPLOY_ACTION" == "deploy" ]; then
|
||||
JSON_TARGET=""
|
||||
#JSON_TARGET=$(echo '{ "DATE": "'$DATE'", "STATUS": "1" }' | jq -r . | base64 -w0) # deployment has started
|
||||
@@ -887,7 +914,9 @@ execute_task() {
|
||||
fi
|
||||
fi
|
||||
|
||||
if [ "$TASK_NAME" != "check_vpn" ]; then
|
||||
debug "JSON_TARGET: $JSON_TARGET"
|
||||
fi
|
||||
|
||||
if [ "$JSON_TARGET" != "" ]; then
|
||||
#redis-cli -h $REDIS_SERVER -p $REDIS_PORT SET $TASK "$JSON_TARGET"
|
||||
@@ -1049,7 +1078,9 @@ unset IFS
|
||||
inotifywait --exclude "\.(swp|tmp)" -m -e CREATE,CLOSE_WRITE,DELETE,MOVED_TO -r $DIR |
|
||||
while read dir op file; do
|
||||
if [ "${op}" == "CLOSE_WRITE,CLOSE" ]; then
|
||||
if [ "$file" != "check_vpn.json" ]; then
|
||||
echo "new file created: $file"
|
||||
fi
|
||||
B64_JSON=$(cat $DIR/$file | base64 -w0)
|
||||
TASK=$(echo $file | cut -d '.' -f1)
|
||||
execute_task "$TASK" "$B64_JSON"
|
||||
|
||||
Reference in New Issue
Block a user