From 50d4daa9de57ecfe2d6629867d7ed933dd8b00a1 Mon Sep 17 00:00:00 2001 From: Marcus Bohessef Date: Thu, 11 Dec 2025 21:35:11 -0300 Subject: [PATCH] ajuste no drone.yml --- .drone.yml | 82 ++++++++++++++++++++++++++++-------------------------- 1 file changed, 43 insertions(+), 39 deletions(-) diff --git a/.drone.yml b/.drone.yml index c6a35ba..25db01c 100644 --- a/.drone.yml +++ b/.drone.yml @@ -2,24 +2,29 @@ kind: pipeline type: kubernetes name: deploy-backend +# --------------------------------------------- +# ETAPA 1 - BUILD E PUSH PARA O HARBOR (KANIKO) +# --------------------------------------------- steps: - name: build-and-push-backend image: gcr.io/kaniko-project/executor:latest + environment: DOCKER_CONFIG: /kaniko/.docker/ + + # IMPORTANTE: os secrets abaixo DEVEM existir no Infisical Prod HARBOR_USERNAME: from_secret: HARBOR_USERNAME HARBOR_PASSWORD: from_secret: HARBOR_PASSWORD + volumes: - name: docker-config path: /kaniko/.docker - settings: - repo: in.gohorsejobs.com/gohorsejobs-backend - tags: latest commands: - echo "Configuring Kaniko auth…" + - | cat < /kaniko/.docker/config.json { @@ -31,16 +36,25 @@ steps: } } EOF - - echo "Running Kaniko build..." + + - echo "Running Kaniko build and push..." - /kaniko/executor \ --context ./backend \ --dockerfile ./backend/Dockerfile \ --destination in.gohorsejobs.com/gohorsejobs-backend:latest \ - --skip-tls-verify + --skip-tls-verify \ + --insecure \ + --insecure-pull +# --------------------------------------------- +# ETAPA 2 – DEPLOY NO K3S +# --------------------------------------------- - name: deploy-backend image: bitnami/kubectl:latest + environment: + + # --- Secrets do K3s --- KUBERNETES_SERVER: from_secret: K3S_SERVER KUBERNETES_CA: @@ -50,44 +64,31 @@ steps: KUBERNETES_CLIENT_KEY: from_secret: K3S_CLIENT_KEY - DB_HOST: - from_secret: DB_HOST - DB_PORT: - from_secret: DB_PORT - DB_USER: - from_secret: DB_USER - DB_PASSWORD: - from_secret: DB_PASSWORD - DB_NAME: - from_secret: DB_NAME - DB_SSLMODE: - from_secret: DB_SSLMODE + # --- Secrets da aplicação --- + DB_HOST: { from_secret: DB_HOST } + DB_PORT: { from_secret: DB_PORT } + DB_USER: { from_secret: DB_USER } + DB_PASSWORD: { from_secret: DB_PASSWORD } + DB_NAME: { from_secret: DB_NAME } + DB_SSLMODE: { from_secret: DB_SSLMODE } - AWS_REGION: - from_secret: AWS_REGION - AWS_ACCESS_KEY_ID: - from_secret: AWS_ACCESS_KEY_ID - AWS_SECRET_ACCESS_KEY: - from_secret: AWS_SECRET_ACCESS_KEY - AWS_ENDPOINT: - from_secret: AWS_ENDPOINT - S3_BUCKET: - from_secret: S3_BUCKET + AWS_REGION: { from_secret: AWS_REGION } + AWS_ACCESS_KEY_ID: { from_secret: AWS_ACCESS_KEY_ID } + AWS_SECRET_ACCESS_KEY: { from_secret: AWS_SECRET_ACCESS_KEY } + AWS_ENDPOINT: { from_secret: AWS_ENDPOINT } + S3_BUCKET: { from_secret: S3_BUCKET } - JWT_SECRET: - from_secret: JWT_SECRET - ENV: - from_secret: ENV - CORS_ORIGINS: - from_secret: CORS_ORIGINS - MAX_UPLOAD_SIZE: - from_secret: MAX_UPLOAD_SIZE - UPLOAD_DIR: - from_secret: UPLOAD_DIR + JWT_SECRET: { from_secret: JWT_SECRET } + ENV: { from_secret: ENV } + CORS_ORIGINS: { from_secret: CORS_ORIGINS } + MAX_UPLOAD_SIZE: { from_secret: MAX_UPLOAD_SIZE } + UPLOAD_DIR: { from_secret: UPLOAD_DIR } commands: - - echo "Configuring kubeconfig…" + - echo "Creating kubeconfig…" + - mkdir -p ~/.kube + - | cat < ~/.kube/config apiVersion: v1 @@ -111,10 +112,13 @@ steps: current-context: drone-context EOF - - echo "Applying backend K8s manifests…" + - echo "Applying manifests..." - kubectl apply -f k8s/backend-deployment.yaml - kubectl apply -f k8s/backend-service.yaml +# --------------------------------------------- +# VOLUMES +# --------------------------------------------- volumes: - name: docker-config emptyDir: {}