92548920c2
Some checks failed
CI / sonarqube (push) Failing after 5m27s
- .env, .env.test, ansible/env.local.j2: point SONARQUBE_URL to https://sn.e-cosplay.fr - ansible/vault.yml, .env: rotate sonarqube_badge_token to new value - .gitea/workflows/ci.yml, sonarqube.yml: remove OWASP Dependency-Check steps and force sonar.host.url via CLI args - sonar-project.properties: drop dependencyCheck report paths - .gitea/workflows/deploy.yml: switch SSH target from 34.90.187.4 to 152.228.222.133 Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
21 lines
594 B
YAML
21 lines
594 B
YAML
name: Deploy to production
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: '0 1,22 * * *'
|
|
|
|
jobs:
|
|
deploy:
|
|
runs_on: ubuntu-latest
|
|
steps:
|
|
- name: Setup SSH key
|
|
run: |
|
|
mkdir -p ~/.ssh
|
|
echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/id_ed25519
|
|
chmod 600 ~/.ssh/id_ed25519
|
|
ssh-keyscan 152.228.222.133 >> ~/.ssh/known_hosts
|
|
|
|
- name: Deploy
|
|
run: ssh bot@152.228.222.133 "cd /var/www/e-ticket && ansible-playbook ansible/deploy.yml -i ansible/hosts.ini --vault-password-file <(echo '${{ secrets.ANSIBLE_VAULT_PASSWORD }}')"
|