stuff

2023-09-04 19:59:57 +01:00
parent 13bb62fe61
commit 381ae8bcf3
5 changed files with 134 additions and 8 deletions
--- a/.github/workflows/infra.yaml
+++ b/.github/workflows/infra.yaml
@@ -4,14 +4,15 @@ on:
    branches:
      - main
    paths:
-      - infra/**-playbook.yaml
+      - infra/**playbook.yaml
      - .github/workflows/infra.yaml
  push:
    branches:
      - main

 env:
-  DEPLOY: ${{ github.ref == 'refs/heads/main' && ((startsWith(github.event.head_commit.message, '[deploy-all]') && 'all') || ('some')) || 'none' }}
+  # DEPLOY: ${{ github.ref == 'refs/heads/main' && ((startsWith(github.event.head_commit.message, '[deploy-all]') && 'all') || ('some')) || 'none' }}
+  DEPLOY: all

 jobs:
  ansible-playbooks:
@@ -35,8 +36,8 @@ jobs:

      - name: Check playbooks
        run: |
-          for file in $(find . -wholename "*/infra/*-playbook.yaml" -type f); do
-            ansible-playbook --inventory ./inventory --check "$file"
+          for file in $(find . -wholename "*/infra/*playbook.yaml" -type f); do
+            ansible-playbook --inventory ./inventory --syntax-check "$file"
          done

      - name: Get changed playbooks
@@ -44,7 +45,7 @@ jobs:
        if: env.DEPLOY == 'some'
        uses: tj-actions/changed-files@v38
        with:
-          files: infra/**/*-playbook.yaml
+          files: infra/**/*playbook.yaml

      - name: Get playbooks
        id: playbooks
@@ -53,12 +54,19 @@ jobs:
          if [[ "${{ env.DEPLOY }}" == "some" ]]; then
            export TO_RUN="${{ steps.files.outputs.all_changed_files }}"
          else
-            export TO_RUN="$(find . -wholename './infra/*-playbook.yaml' -type f)"
+            export TO_RUN="$(find . -wholename './infra/*playbook.yaml' -type f)"
          fi
          export TO_RUN="$( echo -n $TO_RUN | tr ' ' '\n' | sort | tr '\n' ' ' )" # run things in order :)
          echo "will run playbooks: $TO_RUN"
          echo "to_run=$TO_RUN" >> "$GITHUB_OUTPUT"

+      - name: Setup environment
+        if: env.DEPLOY != 'none' && steps.playbooks.outputs.to_run != ''
+        run: |
+          mkdir -p -m 700 ~/.ssh
+          echo "${{ secrets.SSH_PRIVATE }}" > ~/.ssh/id_rsa
+          chmod 600 ~/.ssh/id_rsa
+
      - name: Run playbooks
        if: env.DEPLOY != 'none' && steps.playbooks.outputs.to_run != ''
        env:
@@ -66,4 +74,5 @@ jobs:
          PROXMOX_USER: ${{ secrets.PROXMOX_USER }}
          PROXMOX_TOKEN_ID: ${{ secrets.PROXMOX_TOKEN_ID }}
          PROXMOX_TOKEN_SECRET: ${{ secrets.PROXMOX_TOKEN_SECRET }}
+          SSH_PUBLIC: ${{ secrets.SSH_PUBLIC }}
        run: ansible-playbook --inventory ./inventory ${{ steps.playbooks.outputs.to_run }}