d9

d8
g
2024-01-25 21:00:05 +01:00 · 2024-01-25 20:59:25 +01:00 · 2024-01-25 20:57:36 +01:00 · 2024-01-25 20:55:45 +01:00 · 2024-01-25 20:46:41 +01:00 · 2024-01-25 20:43:59 +01:00
10 changed files with 57 additions and 54 deletions
--- a/.ansible-lint
+++ b/.ansible-lint
@ -6,21 +6,3 @@ skip_list:
  - name[play]
  - var-naming[no-role-prefix]
 quiet: true
-exclude_paths:
-  - .cache/ # implicit unless exclude_paths is defined in config
-  - collections/
-  - .gitlab-ci.yml
-  - friedhof/
-  - playbooks/on-off
-  - roles/geerlingguy-ansible-role-pip
-  - roles/pyratlabs-ansible-role-k3s
-  - roles/robertdebock-ansible-role-bootstrap
-  - roles/gantsign-ansible-role-ctop
-  - roles/geerlingguy-ansible-role-docker
-  - roles/geerlingguy-ansible-role-helm
-  - roles/geerlingguy-ansible-role-nfs
-  - roles/hifis-net-ansible-role-unattended-upgrades
-  - roles/mrlesmithjr-ansible-manage-lvm
-  - roles/oefenweb-ansible-ufw
-  - roles/pandemonium1986-ansible-role-k9s
-  - roles/pyratlabs-ansible-role-gitea
--- a/.gitea/workflows/lint.yml
+++ b/.gitea/workflows/lint.yml
@ -0,0 +1,31 @@
+---
+name: lint
+on:
+  push
+
+jobs:
+  clone:
+    steps:
+      - name: Check out repository
+        uses: actions/checkout@v3
+
+  gitleaks:
+    container:
+      image: zricethezav/gitleaks:latest
+    steps:
+      - run: ls -lah
+      - name: gitleaks
+        run: gitleaks detect --no-git --verbose --source $GITHUB_WORKSPACE
+
+  ansible-lint:
+    container:
+      image: quay.io/ansible/creator-ee
+      env:
+        VAULT-PASS: ${{ secrets.vault_pass }} # Repo-Secret
+    steps:
+      - run: ansible-lint --version
+      - run: echo $VAULT-PASS > ./vault-pass.yml # nach des Secret in Großschreibung
+      - run: ls -lah
+
+      - run: ansible-galaxy install -r ./requirements.yml
+      - run: ansible-lint --force-color --format pep8
--- a/.gitignore
+++ b/.gitignore
@ -15,3 +15,4 @@ roles/oefenweb-ansible-ufw
 roles/pandemonium1986-ansible-role-k9s
 roles/pyratlabs-ansible-role-gitea
 collections/
+plugins/lookup/__pycache__/
--- a/.woodpecker/ansible-lint.yml
+++ b/.woodpecker/ansible-lint.yml
@ -1,19 +0,0 @@
---
-kind: pipeline
-type: docker
-name: ansible-lint
-depends_on:
-  - gitleaks
-steps:
-  ansible-lint:
-    image: quay.io/ansible/creator-ee
-    commands:
-      - ansible-lint --version
-      - echo $VAULT-PASS > ./vault-pass.yml # nach des Secret in Großschreibung
-      - ansible-galaxy install -r requirements.yml
-      - ansible-lint --force-color --format pep8
-    when:
-      event:
-        exclude:
-          - tag
-    secret: [vault-pass] #dieses Secret darf verwendet werden
--- a/.woodpecker/gitleaks.yml
+++ b/.woodpecker/gitleaks.yml
@ -1,13 +0,0 @@
---
-kind: pipeline
-type: docker
-name: gitleaks
-steps:
-  gitleaks:
-    image: zricethezav/gitleaks:latest
-    commands:
-      - gitleaks detect --no-git --verbose --source $CI_WORKSPACE
-    when:
-      event:
-        exclude:
-          - tag
--- a/docker-compose/gitea-act-runner/docker-compose.yml.j2
+++ b/docker-compose/gitea-act-runner/docker-compose.yml.j2
@ -0,0 +1,18 @@
+version: '3'
+services:
+  runner:
+    container_name: "gitea-act-runner"
+    image: gitea/act_runner:latest
+    restart: always
+    volumes:
+      - data:/data
+      - /var/run/docker.sock:/var/run/docker.sock
+    environment:
+      GITEA_INSTANCE_URL: "https://git.mgrote.net"
+      GITEA_RUNNER_REGISTRATION_TOKEN: {{ lookup('keepass', 'gitea_runner_token', 'password') }} # muss für jeden Runner neu generiert werden, wird nur einmal benötigt
+    labels:
+      com.centurylinklabs.watchtower.enable: true
+
+
+volumes:
+  data:
--- a/group_vars/docker.yml
+++ b/group_vars/docker.yml
@ -50,7 +50,7 @@ docker_users:
  - mg
  - docker-user
 docker_install_compose: true
-docker_add_repo: false # erstelle kein Repo-Eintrag unter /etc/apt/sources.list.d/, steht explizit unter "repos_override"
+docker_add_repo: false # erstelle kein Repo-Eintrag unter /etc/apt/sources.list.d/, steht explizit unter "repos_override", wird nur zum installieren benötigt

 ### mgrote_docker-compose-deploy
 docker_compose_base_dir: /home/docker-user
--- a/group_vars/gitea.yml
+++ b/group_vars/gitea.yml
@ -54,7 +54,7 @@ gitea_show_user_email: false
 gitea_disable_gravatar: true
 gitea_enable_captcha: true
 gitea_only_allow_external_registration: false
-gitea_enable_notify_mail: false
+gitea_enable_notify_mail: true
 gitea_force_private: false
 gitea_oauth2_enabled: true
 gitea_repo_indexer_enabled: true
@ -96,6 +96,7 @@ gitea_fail2ban_jail_bantime: 600
 gitea_extra_config: |
  [webhook]
  ALLOWED_HOST_LIST = *.mgrote.net
-
+  [actions]
+  ENABLED=true
 gitea_backup_on_upgrade: false
 gitea_backup_location: "{{ gitea_home }}/backups/"
--- a/host_vars/docker10.mgrote.net.yml
+++ b/host_vars/docker10.mgrote.net.yml
@ -76,7 +76,9 @@ compose_files:
    network: traefik
  - name: statping-ng
    state: present
-
+  - name: gitea-act-runner
+    state: present
+    
 ### oefenweb.ufw
 ufw_rules:
  - rule: allow
--- a/keepass_db.kdbx
+++ b/keepass_db.kdbx
Author	SHA1	Message	Date
Michael Grote	65dc8f43a1	d9	2024-01-25 21:00:05 +01:00
Michael Grote	fe223d75e6	d8	2024-01-25 20:59:25 +01:00
Michael Grote	8bbb9a6a9c	g	2024-01-25 20:57:36 +01:00
Michael Grote	4086efea9e	d7	2024-01-25 20:55:45 +01:00
Michael Grote	cb49bb51c8	d6	2024-01-25 20:46:41 +01:00
Michael Grote	dabf332abd	d5	2024-01-25 20:43:59 +01:00
Michael Grote	574f9c7338	clone d4	2024-01-25 20:43:16 +01:00
Michael Grote	2283b3efe7	d3	2024-01-25 20:41:06 +01:00
Michael Grote	44f006ee7c	d2	2024-01-25 20:39:26 +01:00
Michael Grote	cf6d9d53b1	debug	2024-01-25 20:37:28 +01:00
Michael Grote	9a4b2f8a0f	f	2024-01-25 20:36:13 +01:00
Michael Grote	add939d434	d	2024-01-25 20:34:35 +01:00
Michael Grote	fd311282f0	test ci	2024-01-25 20:26:34 +01:00
Michael Grote	d049b8db4c	d	2024-01-25 20:16:29 +01:00
Michael Grote	956d0bc6ed	g	2024-01-25 20:14:08 +01:00
Michael Grote	2a2c20478e	d	2024-01-25 20:12:48 +01:00
Michael Grote	41e7e7371c	d	2024-01-25 20:08:53 +01:00
Michael Grote	65a50a3033	d	2024-01-25 20:05:47 +01:00
Michael Grote	07894c2300	d	2024-01-25 19:56:15 +01:00
Michael Grote	2ebaed8551	g	2024-01-25 19:55:22 +01:00
Michael Grote	59d0e13f05	[actions] ENABLED=true	2024-01-25 19:48:11 +01:00
Michael Grote	2e183480fe	g	2024-01-25 19:47:31 +01:00
Michael Grote	0ad6b6ccf4	s	2024-01-25 19:44:50 +01:00
Michael Grote	ea053bf386	inventory	2024-01-25 19:41:15 +01:00
Michael Grote	bb25b39a05	f	2024-01-25 19:39:41 +01:00
Michael Grote	d0de5a5a4b	f	2024-01-25 19:39:41 +01:00
Michael Grote	78d47c0319	d	2024-01-25 19:39:41 +01:00
Michael Grote	d173d12982	d	2024-01-25 19:39:41 +01:00
Michael Grote	86e53fe7a2	gg	2024-01-25 19:39:41 +01:00
Michael Grote	3a8899e9c0	f	2024-01-25 19:39:41 +01:00
Michael Grote	82758c84e8	f	2024-01-25 19:39:41 +01:00
Michael Grote	910f035529	f	2024-01-25 19:39:41 +01:00
Michael Grote	63d2abc3c7	d	2024-01-25 19:39:41 +01:00
Michael Grote	d92af3101f	f	2024-01-25 19:39:40 +01:00
Michael Grote	9f69e9e0bd	deug	2024-01-25 19:39:40 +01:00
Michael Grote	c18716a9eb	f	2024-01-25 19:39:40 +01:00
Michael Grote	4ba62a4550	f	2024-01-25 19:39:40 +01:00
Michael Grote	49fddb443d	g	2024-01-25 19:39:40 +01:00
Michael Grote	ffbe5713b8	t	2024-01-25 19:39:40 +01:00
Michael Grote	a651bfbdfc	h	2024-01-25 19:39:40 +01:00
Michael Grote	5b541db6d3	f	2024-01-25 19:39:40 +01:00
Michael Grote	32103dc55c	recipients_only	2024-01-25 19:39:40 +01:00
Michael Grote	0d9fc50863	g	2024-01-25 19:39:39 +01:00
Michael Grote	8f27c81b6c	g	2024-01-25 19:39:39 +01:00
Michael Grote	0df26403ca	runs_on: [ success, failure ]	2024-01-25 19:39:39 +01:00
Michael Grote	9ca53e02f6	g	2024-01-25 19:39:39 +01:00
Michael Grote	8e87c4cfee	f	2024-01-25 19:39:39 +01:00
Michael Grote	8601b7a6b9	f	2024-01-25 19:39:39 +01:00
Michael Grote	fd2229d998	s	2024-01-25 19:39:39 +01:00
Michael Grote	d803a2982f	g	2024-01-25 19:39:39 +01:00
Michael Grote	51b69a1500	f	2024-01-25 19:39:38 +01:00
Michael Grote	292f8f4edb	g	2024-01-25 19:39:38 +01:00
Michael Grote	6187a3b3a7	e	2024-01-25 19:39:38 +01:00
Michael Grote	96d8958bf1	m	2024-01-25 19:39:38 +01:00
Michael Grote	138ce9ac17	f	2024-01-25 19:39:38 +01:00
Michael Grote	2f373d09fb	body	2024-01-25 19:39:38 +01:00
Michael Grote	a00e9fa892	g	2024-01-25 19:39:38 +01:00
Michael Grote	95b7e24488	g	2024-01-25 19:39:38 +01:00
Michael Grote	97107c62d3	g	2024-01-25 19:39:38 +01:00
Michael Grote	92930e20cb	f	2024-01-25 19:39:38 +01:00
Michael Grote	1efc46ce05	t	2024-01-25 19:39:38 +01:00
Michael Grote	124713bb39	g	2024-01-25 19:39:37 +01:00
Michael Grote	96abd42788	g	2024-01-25 19:39:37 +01:00
Michael Grote	060449c82a	t	2024-01-25 19:39:37 +01:00
Michael Grote	2adc529cd3	t	2024-01-25 19:39:37 +01:00
Michael Grote	3e6213458b	t	2024-01-25 19:39:37 +01:00
Michael Grote	bb2964e13a	vars	2024-01-25 19:39:37 +01:00
Michael Grote	57b3ebe75e	remove exlude paths	2024-01-25 19:39:37 +01:00
Michael Grote	5df65653d2	add mail	2024-01-25 19:39:37 +01:00
Michael Grote	0bc5ebea1a	mail	2024-01-25 19:39:36 +01:00
Michael Grote	e80c3a2f8d	ci	2024-01-25 19:39:36 +01:00