9 Commits

Author SHA1 Message Date
vbevdev 66ee081c80 healthcehck for git-runner 2026-07-06 00:52:20 +03:00
vbevdev a2fc1ed141 deploy dry run regulated via var 2026-07-05 02:02:59 +03:00
vbevdev 3a0e3d419c deploy backup step is now skipable 2026-07-05 01:54:23 +03:00
vbevdev 77ba40f657 fixed password trasfer on sudo backup 2026-07-04 21:00:29 +03:00
vbevdev 5f86776b83 create backup on deploy as sudo to prevent "permission denied" errors 2026-07-04 20:53:53 +03:00
vbevdev bd292c4e84 deploy dir moved from secrets to vars 2026-07-04 20:06:00 +03:00
vbevdev db7d350df5 ideas moved to repo wiki 2026-07-04 19:27:54 +03:00
vbevdev 8f860d5fe0 deleted unused action 2026-07-04 19:27:54 +03:00
vbevdev 0e278211ca deploy on gitea workflow
Reviewed-on: #3
2026-07-04 16:20:41 +00:00
4 changed files with 22 additions and 40 deletions
@@ -1,26 +0,0 @@
name: '🧼 Telegram message escape'
description: 'Automatically escapes dots, dashes, and exclamation marks for Telegram MarkdownV2'
inputs:
message:
description: 'The raw text string to escape'
required: true
outputs:
escaped_message:
description: 'The safely escaped string ready for Telegram'
value: ${{ steps.escape.outputs.result }}
runs:
using: 'composite'
steps:
- id: escape
shell: bash
run: |
RAW_MESSAGE="${{ inputs.message }}"
ESCAPED_MESSAGE=$(echo "$RAW_MESSAGE" | sed "s/-/\\\\-/g" | sed "s/\./\\\\./g" | sed "s/!/\\\\!/g")
echo "result<<EOF" >> $GITHUB_OUTPUT
echo "$ESCAPED_MESSAGE" >> $GITHUB_OUTPUT
echo "EOF" >> $GITHUB_OUTPUT
+16 -8
View File
@@ -23,11 +23,12 @@ jobs:
ssh_host: ${{ secrets.SSH_HOST }}
- name: 📦 Create backup of data/ folder
if: ${{ vars.DEPLOY_BACKUP_ENABLED == 'true' }}
env:
SSHPASS: ${{ secrets.SSH_PASSWORD }}
SSH_USERNAME: ${{ secrets.SSH_USERNAME }}
SSH_HOST: ${{ secrets.SSH_HOST }}
DEPLOY_DIRECTORY: ${{ secrets.DEPLOY_DIRECTORY }}
DEPLOY_DIRECTORY: ${{ vars.DEPLOY_DIRECTORY }}
REF_NAME: ${{ env.CLEAN_REF_NAME }}
run: |
sshpass -e ssh -p 22 "$SSH_USERNAME@$SSH_HOST" bash -s << EOT
@@ -42,13 +43,13 @@ jobs:
echo "Creating backup of data/ into \${BACKUP_FILE}..."
if [ -d "data" ]; then
tar -czf "\${BACKUP_FILE}" data
echo "$SSHPASS" | sudo -S tar -czf "\${BACKUP_FILE}" data
echo "✅ Backup created successfully!"
else
echo "⚡️ No data/ folder, backup creation skipped."
fi
find backups/ -type f -name "backup-*.tar.gz" -mtime +7 -delete
echo "$SSHPASS" | sudo -S find backups/ -type f -name "backup-*.tar.gz" -mtime +7 -delete
EOT
- name: 🏗️ Create docker-compose file
@@ -56,7 +57,7 @@ jobs:
SSHPASS: ${{ secrets.SSH_PASSWORD }}
SSH_USERNAME: ${{ secrets.SSH_USERNAME }}
SSH_HOST: ${{ secrets.SSH_HOST }}
DEPLOY_DIRECTORY: ${{ secrets.DEPLOY_DIRECTORY }}
DEPLOY_DIRECTORY: ${{ vars.DEPLOY_DIRECTORY }}
REF_NAME: ${{ env.CLEAN_REF_NAME }}
run: |
sshpass -e ssh -p 22 "$SSH_USERNAME@$SSH_HOST" \
@@ -71,7 +72,7 @@ jobs:
SSHPASS: ${{ secrets.SSH_PASSWORD }}
SSH_USERNAME: ${{ secrets.SSH_USERNAME }}
SSH_HOST: ${{ secrets.SSH_HOST }}
DEPLOY_DIRECTORY: ${{ secrets.DEPLOY_DIRECTORY }}
DEPLOY_DIRECTORY: ${{ vars.DEPLOY_DIRECTORY }}
BESZEL_AGENT_KEY: ${{ secrets.BESZEL_AGENT_KEY }}
BESZEL_AGENT_TOKEN: ${{ secrets.BESZEL_AGENT_TOKEN }}
BESZEL_HUB_URL: ${{ vars.BESZEL_HUB_URL }}
@@ -117,7 +118,9 @@ jobs:
SSHPASS: ${{ secrets.SSH_PASSWORD }}
SSH_USERNAME: ${{ secrets.SSH_USERNAME }}
SSH_HOST: ${{ secrets.SSH_HOST }}
DEPLOY_DIRECTORY: ${{ secrets.DEPLOY_DIRECTORY }}
DEPLOY_DIRECTORY: ${{ vars.DEPLOY_DIRECTORY }}
DEPLOY_LOG_FILE: /tmp/deploy-${{ env.CLEAN_REF_NAME }}.log
DRY_RUN_ENABLED: ${{ vars.DEPLOY_DRY_RUN_ENABLED }}
REF_NAME: ${{ env.CLEAN_REF_NAME }}
TELEGRAM_TOKEN: ${{ secrets.TELEGRAM_DEPLOY_BOT_TOKEN }}
TELEGRAM_CHAT: ${{ secrets.TELEGRAM_DEPLOY_CHAT_ID }}
@@ -128,7 +131,6 @@ jobs:
FAILURE_MESSAGE: |-
❌ <b>Ошибка деплоя!</b>
Релиз: <code>${{ gitea.ref_name }}</code>
DEPLOY_LOG_FILE: /tmp/deploy-${{ env.CLEAN_REF_NAME }}.log
run: |
sshpass -e ssh -p 22 "$SSH_USERNAME@$SSH_HOST" bash -s << EOT
set -e
@@ -137,7 +139,13 @@ jobs:
nohup bash -c '
sleep 5
if docker compose --dry-run -f "docker-compose-${REF_NAME}.yml" up -d --remove-orphans > ${DEPLOY_LOG_FILE} 2>&1; then
if [ "${DRY_RUN_ENABLED}" = "true" ]; then
DRY_RUN_FLAG="--dry-run"
else
DRY_RUN_FLAG=""
fi
if docker compose \${DRY_RUN_FLAG} -f "docker-compose-${REF_NAME}.yml" up -d --remove-orphans > ${DEPLOY_LOG_FILE} 2>&1; then
curl -s -X POST "https://api.telegram.org/bot${TELEGRAM_TOKEN}/sendMessage" \
--proxy "${PROXY_URL}" \
-d "chat_id=${TELEGRAM_CHAT}" \
-6
View File
@@ -1,6 +0,0 @@
1. Backup data/ before rerun containers
2. Auto run on new realese
3. Разделение докер сетей
4. Notifications
5. Bot for server operations
6. multi device copy-paste
+6
View File
@@ -99,6 +99,12 @@ services:
- /var/run/docker.sock:/var/run/docker.sock
secrets:
- gitea_runner_registration_token
healthcheck:
test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://127.0.0.1:9101/healthz"]
interval: 30s
timeout: 5s
retries: 3
start_period: 10s
networks:
default: