Go to file

tobiasd d50cf9b465 Merge pull request 'Update inventory digest to 9dc978c' (#37 ) from renovate/inventory-digest into master

Reviewed-on: #37

2025-04-08 08:24:04 +00:00

group_vars

Bump drone-server

2022-07-18 12:34:53 +02:00

inventory @ 9dc978ce6f

Update inventory digest to 9dc978c

2025-04-08 00:31:52 +00:00

LICENSES

make REUSE compliant

2021-12-16 17:10:49 +01:00

roles

Update roles/certbot digest to 4be771f

2024-06-06 13:46:12 +00:00

.drone.yml

adding drone CI for docs sync

2023-01-12 14:32:28 +01:00

.gitignore

add tobiasd's GPG key to the vaultpw.gpg file

2024-09-02 11:07:24 +02:00

.gitmodules

fix ssh error

2024-08-14 12:43:39 +02:00

ansible.cfg

make REUSE compliant

2021-12-16 17:10:49 +01:00

playbook.yml

move drone-runner to separate role, set up prune cronjob, and make firewall more universal

2022-01-18 10:47:39 +01:00

README.md

added docs.fsfe.org badge to the README

2023-01-12 14:35:58 +01:00

renovate.json

update renovate

2023-11-04 23:09:05 +01:00

vaultpw.gpg

add tobiasd's GPG key to the vaultpw.gpg file

2024-09-02 11:07:24 +02:00

vaultpw.gpg.license

make REUSE compliant

2021-12-16 17:10:49 +01:00

vaultpw.sh

make REUSE compliant

2021-12-16 17:10:49 +01:00

README.md

Drone deployment

This playbook is used to deploy drone. This is a Continuous Integration and Continuous Delivery software used to deploy all dockerised FSFE services.

There is one runner on the same host the Drone server is deployed to. Additionally, there are runner on each FSFE container server.

How to deploy Drone?

Run the following command from the computer where your GPG private key is:

ansible-playbook playbook.yml

The vault passphrase vault passphrase is encrypted to some of the FSFE's system hackers.

The file vaultpw.sh decrypts the passphrase required to open the vault.

Configuration

Most of the configuration happens in the drone_server group vars. Here, you can also enter new versions of the drone server, runner, and cli.