vault-wrap: правка скриптов запуска.

This commit is contained in:
svkalinin 2024-07-10 15:26:15 +03:00
parent e22936cce4
commit ef9e11993a

View File

@ -63,8 +63,10 @@ vault_wrap_deploy:
stage: deploy
script:
- docker volume create vault-wrap_vault-wrap-conf
- cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
- cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
- docker run --rm -it -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/certs/:/files alpine cp files/runner1-prod.corp.samsonopt.ru.crt /temporary
- docker run --rm -it -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/private/:/files alpine cp big-data/runner1-prod.corp.samsonopt.ru.key /temporary
# -cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
# - cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
- export TLS_CERT_FILE=runner1-prod.corp.samsonopt.ru.crt
- export TLS_KEY_FILE=runner1-prod.corp.samsonopt.ru.key
- if [ -e .ci_status/vault_wrap_release ]; then docker-compose -f docker-compose.yml up -d vault-wrap; fi
@ -72,21 +74,21 @@ vault_wrap_deploy:
refs:
- main
traefik_deploy:
<<: *dedicated-runner
stage: deploy
script:
- mkdir -p /usr/local/etc/traefik
- docker volume create traefik_traefik-ssl
- docker volume create traefik_traefik-dynamic-conf
- cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/traefik-traefik-ssl/_data
- cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/traefik_traefik-ssl/_data
- cp traefik-files/traefik.yml /usr/local/etc/traefik/traefik.yml
- cp traefik-files/certificates.yml /srv/docker/volumes/traefik_traefik-dynamic-conf/_data/certificates.yml
- export TLS_CERT_FILE=runner1-prod.corp.samsonopt.ru.crt
- export TLS_KEY_FILE=runner1-prod.corp.samsonopt.ru.key
- if [ -e .ci_status/vault_wrap_release ]; then docker-compose -f docker-compose.yml up -d traefik; fi
only:
refs:
- main
# traefik_deploy:
# <<: *dedicated-runner
# stage: deploy
# script:
# - mkdir -p /usr/local/etc/traefik
# - docker volume create traefik_traefik-ssl
# - docker volume create traefik_traefik-dynamic-conf
# - cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/traefik_traefik-ssl/_data
# - cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/traefik_traefik-ssl/_data
# - cp traefik-files/traefik.yml /usr/local/etc/traefik/traefik.yml
# - cp traefik-files/certificates.yml /srv/docker/volumes/traefik_traefik-dynamic-conf/_data/certificates.yml
# - export TLS_CERT_FILE=runner1-prod.corp.samsonopt.ru.crt
# - export TLS_KEY_FILE=runner1-prod.corp.samsonopt.ru.key
# - if [ -e .ci_status/vault_wrap_release ]; then docker-compose -f docker-compose.yml up -d traefik; fi
# only:
# refs:
# - main
#