Compare commits
5 Commits
47593d5001
...
main
| Author | SHA1 | Date | |
|---|---|---|---|
|
19917b04cd | ||
|
|
ec25f02bad | ||
|
|
1b3b0fed3e | ||
|
|
c62000112f | ||
|
|
1652c9181f |
@@ -51,15 +51,15 @@ steps:
|
|||||||
- cd /opt/dtrack && docker compose config
|
- cd /opt/dtrack && docker compose config
|
||||||
- echo "=== pull ==="
|
- echo "=== pull ==="
|
||||||
- cd /opt/dtrack && docker compose pull --no-parallel
|
- cd /opt/dtrack && docker compose pull --no-parallel
|
||||||
- echo "=== up ==="
|
- echo "=== stop (deregistre Registrator avant challenge ACME) ==="
|
||||||
- cd /opt/dtrack && docker compose up -d --remove-orphans
|
- cd /opt/dtrack && docker compose stop
|
||||||
- cd /opt/dtrack && docker compose ps
|
|
||||||
- |
|
- |
|
||||||
PROJECT=$(grep '^COMPOSE_PROJECT_NAME=' /opt/dtrack/.env | cut -d= -f2)
|
|
||||||
DOMAIN=$(grep '^DTRACK_DOMAIN=' /opt/dtrack/.env | cut -d= -f2)
|
DOMAIN=$(grep '^DTRACK_DOMAIN=' /opt/dtrack/.env | cut -d= -f2)
|
||||||
|
|
||||||
# --- Certificat TLS (acme.sh via sonic-acme-1) ---
|
# --- Certificat TLS ---
|
||||||
# Exit 0 = emis/renouvele, exit 2 = skip (domaine inchange), autres = erreur
|
# Apres docker compose stop : Registrator a deregistre les conteneurs de Fabio.
|
||||||
|
# La route globale */.well-known/acme-challenge/* peut repondre sans interference.
|
||||||
|
# Exit 0 = emis/renouvele, exit 2 = skip (cert valide), autres = erreur
|
||||||
ACME_EXIT=0
|
ACME_EXIT=0
|
||||||
docker exec sonic-acme-1 /app/acme.sh \
|
docker exec sonic-acme-1 /app/acme.sh \
|
||||||
--home /etc/acme.sh \
|
--home /etc/acme.sh \
|
||||||
@@ -74,8 +74,10 @@ steps:
|
|||||||
docker exec sonic-acme-1 cp /etc/acme.sh/$DOMAIN/fullchain.cer /host/certs/$DOMAIN-cert.pem
|
docker exec sonic-acme-1 cp /etc/acme.sh/$DOMAIN/fullchain.cer /host/certs/$DOMAIN-cert.pem
|
||||||
docker exec sonic-acme-1 cp /etc/acme.sh/$DOMAIN/$DOMAIN.key /host/certs/$DOMAIN-key.pem
|
docker exec sonic-acme-1 cp /etc/acme.sh/$DOMAIN/$DOMAIN.key /host/certs/$DOMAIN-key.pem
|
||||||
echo "Cert TLS: /host/certs/$DOMAIN-cert.pem OK (acme exit $ACME_EXIT)"
|
echo "Cert TLS: /host/certs/$DOMAIN-cert.pem OK (acme exit $ACME_EXIT)"
|
||||||
|
- echo "=== up ==="
|
||||||
# Fabio routing gere automatiquement par Registrator via les labels SERVICE_* du compose
|
- cd /opt/dtrack && docker compose up -d --remove-orphans
|
||||||
|
- cd /opt/dtrack && docker compose ps
|
||||||
|
# Fabio routing gere automatiquement par Registrator via les labels SERVICE_* du compose
|
||||||
|
|
||||||
# TEST deploy : verifie que les conteneurs sont running
|
# TEST deploy : verifie que les conteneurs sont running
|
||||||
# NOTE: pas de ${VAR} (substitue par Woodpecker) — utiliser $VAR sans accolades
|
# NOTE: pas de ${VAR} (substitue par Woodpecker) — utiliser $VAR sans accolades
|
||||||
|
|||||||
@@ -9,10 +9,8 @@ services:
|
|||||||
restart: always
|
restart: always
|
||||||
environment:
|
environment:
|
||||||
# Stockage H2 interne — suffisant pour une team, pas de PostgreSQL requis
|
# Stockage H2 interne — suffisant pour une team, pas de PostgreSQL requis
|
||||||
# Les deux formes sont supportees selon la version (< 4.12 vs >= 4.12)
|
|
||||||
ALPINE_DATABASE_MODE: internal
|
ALPINE_DATABASE_MODE: internal
|
||||||
ALPINE_DATA_DIRECTORY: /data
|
ALPINE_DATA_DIRECTORY: /data
|
||||||
EXTRA_JAVA_OPTIONS: "-Xmx4g"
|
|
||||||
volumes:
|
volumes:
|
||||||
- dtrack_data:/data
|
- dtrack_data:/data
|
||||||
healthcheck:
|
healthcheck:
|
||||||
@@ -42,7 +40,7 @@ services:
|
|||||||
API_BASE_URL: https://${DTRACK_DOMAIN}
|
API_BASE_URL: https://${DTRACK_DOMAIN}
|
||||||
depends_on:
|
depends_on:
|
||||||
apiserver:
|
apiserver:
|
||||||
condition: service_healthy
|
condition: service_started
|
||||||
networks:
|
networks:
|
||||||
- dtrack-net
|
- dtrack-net
|
||||||
- sonic
|
- sonic
|
||||||
|
|||||||
Reference in New Issue
Block a user