jack/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infra/roles/base/tasks/users.yml
jack d2d5f12d5a
Some checks failed
CI/CD / syntax-check (push) Failing after 12s
Details
CI/CD / deploy (push) Has been skipped
Details
Add Forgejo Actions CI/CD with act_runner 
- Add gitea/act_runner:0.3.0 to docker-compose stack on runner-jobs network
- Add act_runner config template and directory provisioning
- Add FORGEJO_RUNNER_TOKEN to env template
- Add CI deploy SSH public key to authorized_keys via base role
- Create .forgejo/workflows/deploy.yml: syntax-check on PR, deploy on push to master
- Add .claude/launch.json with ansible-playbook configurations

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-21 21:28:15 +07:00

28 lines
724 B
YAML
Raw Permalink Blame History

---
- name: Ensure deploy group exists
ansible.builtin.group:
name: "{{ deploy_group }}"
state: present
- name: Ensure deploy user exists
ansible.builtin.user:
name: "{{ deploy_user }}"
group: "{{ deploy_group }}"
groups: sudo
shell: /bin/bash
create_home: true
state: present
- name: Ensure deploy user has passwordless sudo
ansible.builtin.lineinfile:
path: "/etc/sudoers.d/{{ deploy_user }}"
line: "{{ deploy_user }} ALL=(ALL) NOPASSWD:ALL"
create: true
mode: "0440"
validate: "visudo -cf %s"
- name: Add CI deploy public key to authorized_keys
ansible.posix.authorized_key:
user: "{{ deploy_user }}"
state: present
key: "{{ ci_deploy_pubkey }}"
Reference in a new issue View git blame Copy permalink