d
Some checks failed
ci/woodpecker/push/gitleaks Pipeline was successful
ci/woodpecker/push/ansible-lint Pipeline failed
ci/woodpecker/push/ansible-playbook unknown status
ci/woodpecker/pr/gitleaks Pipeline was successful
ci/woodpecker/pr/ansible-lint Pipeline failed
ci/woodpecker/pr/ansible-playbook unknown status
ci/woodpecker/pull_request_closed/gitleaks Pipeline was successful
ci/woodpecker/pull_request_closed/ansible-lint Pipeline failed
ci/woodpecker/pull_request_closed/ansible-playbook unknown status
Some checks failed
ci/woodpecker/push/gitleaks Pipeline was successful
ci/woodpecker/push/ansible-lint Pipeline failed
ci/woodpecker/push/ansible-playbook unknown status
ci/woodpecker/pr/gitleaks Pipeline was successful
ci/woodpecker/pr/ansible-lint Pipeline failed
ci/woodpecker/pr/ansible-playbook unknown status
ci/woodpecker/pull_request_closed/gitleaks Pipeline was successful
ci/woodpecker/pull_request_closed/ansible-lint Pipeline failed
ci/woodpecker/pull_request_closed/ansible-playbook unknown status
This commit is contained in:
parent
7345b422fd
commit
0d349aa886
2 changed files with 14 additions and 5 deletions
|
|
@ -6,9 +6,14 @@ steps:
|
|||
ansible-lint:
|
||||
image: quay.io/ansible/creator-ee:v24.2.0
|
||||
commands:
|
||||
- pip install 'pykeepass==4.0.3' --user
|
||||
# Secrets
|
||||
- echo $${SSHKEY} | base64 -d > ./id_ed25519 # woodpecker verschluckt linebreakes, daher mit base64 -w0 "kodiert"
|
||||
- echo $${VAULTPASS} | base64 -d > ./vault-pass.yml # Name des Secrets in Großschreibung
|
||||
- chmod 0400 ./id_ed25519
|
||||
# Abhängigkeiten
|
||||
- pip install 'pykeepass==4.0.3' --user
|
||||
- ansible-galaxy install -r requirements.yaml
|
||||
# Doing
|
||||
- ansible-lint --version
|
||||
- ansible-lint --force-color --format pep8
|
||||
# https://woodpecker-ci.org/docs/usage/secrets#use-secrets-in-commands
|
||||
|
|
|
|||
|
|
@ -6,12 +6,16 @@ steps:
|
|||
ansible-playbook:
|
||||
image: quay.io/ansible/creator-ee:v24.2.0
|
||||
commands:
|
||||
- pip install 'pykeepass==4.0.3' --user
|
||||
- echo $${VAULTPASS} | base64 -d > ./vault-pass.yml # Name des Secrets in Großschreibung
|
||||
- ansible localhost -m debug -a "var={{ lookup('keepass', 'restic_repository_password', 'password') }}"
|
||||
- ansible-galaxy install -r requirements.yaml
|
||||
# Secrets
|
||||
- echo $${SSHKEY} | base64 -d > ./id_ed25519 # woodpecker verschluckt linebreakes, daher mit base64 -w0 "kodiert"
|
||||
- echo $${VAULTPASS} | base64 -d > ./vault-pass.yml # Name des Secrets in Großschreibung
|
||||
- chmod 0400 ./id_ed25519
|
||||
# Abhängigkeiten
|
||||
- pip install 'pykeepass==4.0.3' --user
|
||||
- ansible-galaxy install -r requirements.yaml
|
||||
# Debug
|
||||
- ansible localhost -m debug -a "var={{ lookup('keepass', 'restic_repository_password', 'password') }}"
|
||||
# Doing
|
||||
- ansible-playbook playbooks/2_all.yml playbooks/3_service/* --limit production
|
||||
# https://woodpecker-ci.org/docs/usage/secrets#use-secrets-in-commands
|
||||
secrets: [vaultpass, sshkey]
|
||||
|
|
|
|||
Loading…
Reference in a new issue