rede5/gohorsejobs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

ajuste no drone.yml

Browse source
This commit is contained in:
Marcus Bohessef 2025-12-12 09:27:40 -03:00
parent 832798b9e8
commit ff99d9ce4e
1 changed files with 48 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

53
.drone.yml
View file

@ -20,11 +20,9 @@ steps:
password: password:
from_secret: HARBOR_PASSWORD from_secret: HARBOR_PASSWORD
- name: export-infisical-to-k8s - name: export-envs-to-k8s
image: infisical/infisical:latest image: bitnami/kubectl:latest
environment: environment:
INFISICAL_TOKEN:
from_secret: INFISICAL_TOKEN
KUBERNETES_SERVER: KUBERNETES_SERVER:
from_secret: K3S_SERVER from_secret: K3S_SERVER
KUBERNETES_CA: KUBERNETES_CA:
@ -33,8 +31,31 @@ steps:
from_secret: K3S_CLIENT_CERT from_secret: K3S_CLIENT_CERT
KUBERNETES_CLIENT_KEY: KUBERNETES_CLIENT_KEY:
from_secret: K3S_CLIENT_KEY from_secret: K3S_CLIENT_KEY
# Todas as variáveis do seu sistema:
AWS_ACCESS_KEY_ID: { from_secret: AWS_ACCESS_KEY_ID }
AWS_ENDPOINT: { from_secret: AWS_ENDPOINT }
AWS_REGION: { from_secret: AWS_REGION }
AWS_SECRET_ACCESS_KEY: { from_secret: AWS_SECRET_ACCESS_KEY }
CORS_ORIGINS: { from_secret: CORS_ORIGINS }
DB_HOST: { from_secret: DB_HOST }
DB_NAME: { from_secret: DB_NAME }
DB_PASSWORD: { from_secret: DB_PASSWORD }
DB_PORT: { from_secret: DB_PORT }
DB_SSLMODE: { from_secret: DB_SSLMODE }
DB_USER: { from_secret: DB_USER }
ENV: { from_secret: ENV }
JWT_SECRET: { from_secret: JWT_SECRET }
MAX_UPLOAD_CAD_SIZE: { from_secret: MAX_UPLOAD_CAD_SIZE }
PORT: { from_secret: PORT }
S3_BUCKET: { from_secret: S3_BUCKET }
UPLOAD_DIR: { from_secret: UPLOAD_DIR }
# Harbor/Docker
HARBOR_USERNAME: { from_secret: HARBOR_USERNAME }
HARBOR_PASSWORD: { from_secret: HARBOR_PASSWORD }
commands: commands:
- infisical export --env=production --format=dotenv > .env.k8s
- echo "$KUBERNETES_CA" | base64 -d > /tmp/ca.crt - echo "$KUBERNETES_CA" | base64 -d > /tmp/ca.crt
- echo "$KUBERNETES_CLIENT_CERT" | base64 -d > /tmp/client.crt - echo "$KUBERNETES_CLIENT_CERT" | base64 -d > /tmp/client.crt
- echo "$KUBERNETES_CLIENT_KEY" | base64 -d > /tmp/client.key - echo "$KUBERNETES_CLIENT_KEY" | base64 -d > /tmp/client.key
@ -42,6 +63,28 @@ steps:
- kubectl config set-credentials drone --client-certificate=/tmp/client.crt --client-key=/tmp/client.key - kubectl config set-credentials drone --client-certificate=/tmp/client.crt --client-key=/tmp/client.key
- kubectl config set-context drone-context --cluster=k3s --namespace=gohorsejobs --user=drone - kubectl config set-context drone-context --cluster=k3s --namespace=gohorsejobs --user=drone
- kubectl config use-context drone-context - kubectl config use-context drone-context
- |
cat <<EOF > .env.k8s
AWS_ACCESS_KEY_ID=$AWS_ACCESS_KEY_ID
AWS_ENDPOINT=$AWS_ENDPOINT
AWS_REGION=$AWS_REGION
AWS_SECRET_ACCESS_KEY=$AWS_SECRET_ACCESS_KEY
CORS_ORIGINS=$CORS_ORIGINS
DB_HOST=$DB_HOST
DB_NAME=$DB_NAME
DB_PASSWORD=$DB_PASSWORD
DB_PORT=$DB_PORT
DB_SSLMODE=$DB_SSLMODE
DB_USER=$DB_USER
ENV=$ENV
JWT_SECRET=$JWT_SECRET
MAX_UPLOAD_CAD_SIZE=$MAX_UPLOAD_CAD_SIZE
PORT=$PORT
S3_BUCKET=$S3_BUCKET
UPLOAD_DIR=$UPLOAD_DIR
HARBOR_USERNAME=$HARBOR_USERNAME
HARBOR_PASSWORD=$HARBOR_PASSWORD
EOF
- kubectl -n gohorsejobs delete secret backend-secrets --ignore-not-found - kubectl -n gohorsejobs delete secret backend-secrets --ignore-not-found
- kubectl -n gohorsejobs create secret generic backend-secrets --from-env-file=.env.k8s - kubectl -n gohorsejobs create secret generic backend-secrets --from-env-file=.env.k8s