GHP publish

2021-01-09 20:54:42 +03:00
commit b4b740a239
173 changed files with 5392 additions and 0 deletions
--- a/roles/gitea/tasks/main.yaml
+++ b/roles/gitea/tasks/main.yaml
@ -0,0 +1,50 @@
+- name: Import secret.yaml to obtain secrets
+  include_tasks: secrets.yaml
+  when: 
+    - gitea_use_external_db
+    - postgres_enable
+
+- set_fact:
+    gitea_combined_values: "{{ gitea_default_values | combine(gitea_values, recursive=true) }}"
+
+- set_fact:
+    gitea_dns_combined_values: "{{ gitea_dns_default_values | combine(gitea_dns_values, recursive=true) }}"
+
+- set_fact:
+    gitea_ingress_nginx_combined_values: "{{ gitea_ingress_nginx_default_values | combine(gitea_ingress_nginx_values, recursive=true) }}"
+
+- set_fact:
+    gitea_ingress_nginx_combined_values: "{{ gitea_ingress_nginx_combined_values | combine(gitea_publush_ingress_nginx_values, recursive=true) }}"
+    when: gitea_publish_web
+
+- name: Deploy Nginx Ingress for Gitea
+  community.kubernetes.helm:
+    create_namespace: true
+    release_namespace: "{{ gitea_ingress_nginx_namespace | default(namespace) }}"
+    release_name: "{{ gitea_ingress_nginx_name | default(namespace + '-gitea-ingress-nginx') }}"
+    chart_ref: "{{ gitea_ingress_nginx_chart | default('ingress-nginx/ingress-nginx') }}"
+    chart_version: "{{ gitea_ingress_nginx_version | default(omit) }}"
+    release_values: "{{ gitea_ingress_nginx_combined_values | from_yaml }}"
+    wait: true
+
+- name: Deploy DNS for Gitea
+  community.kubernetes.helm:
+    create_namespace: true
+    release_namespace: "{{ gitea_dns_namespace | default(namespace) }}"
+    release_name: "{{ gitea_dns_name | default('gitea-internal-dns') }}"
+    chart_ref: "{{ gitea_dns_chart | default('bitnami/external-dns') }}"
+    chart_version: "{{ gitea_dns_version | default(omit) }}"
+    release_values: "{{ gitea_dns_combined_values | from_yaml }}"
+    wait: true
+  when: gitea_publish_web == false 
+
+- name: Deploy Gitea
+  community.kubernetes.helm:
+    create_namespace: true
+    release_namespace: "{{ gitea_namespace | default(namespace) }}"
+    release_name: "{{ gitea_name | default('gitea') }}"
+    chart_ref: "{{ gitea_chart | default('ghp/gitea') }}"
+    chart_version: "{{ gitea_version | default(omit) }}"
+    release_values: "{{ gitea_combined_values | from_yaml }}"
+    wait: true
+
--- a/roles/gitea/tasks/secrets.yaml
+++ b/roles/gitea/tasks/secrets.yaml
@ -0,0 +1,25 @@
+- block:
+  - name: Set DB namespace for secret lookup
+    set_fact:
+      db_namespace: "{{ gitea_db_namespace | default(postgres_db_namespace) | default(postgres_namespace) | default(postgres_operator_namespace) | default(namespace) }}"
+
+  - name: Set DB secret name for lookup
+    set_fact:
+      db_secret_name: "gitea.{{ postgres_db_team | default(namespace) }}-postgres.credentials.postgresql.acid.zalan.do"
+
+  - name: Lookup Gitea DB secret
+    set_fact:
+      gitea_db_secret: "{{ lookup('k8s', kind='Secret', namespace=db_namespace, resource_name=db_secret_name) }}"
+
+  - debug:
+      msg: "{{ gitea_db_secret }}"
+      verbosity: 2
+
+  - name: Set Gitea DB username
+    set_fact:
+      gitea_db_username: "{{ gitea_db_secret.data.username | b64decode }}"
+
+  - name: Set Gitea DB password
+    set_fact:
+      gitea_db_password: "{{ gitea_db_secret.data.password | b64decode }}"
+