Logan
9fdcad1c46
- Terraform: e2-micro VM (us-east1-b, free tier), static IP, SSH/web
firewall rules, IAM bindings for Firestore + GCS; imports existing
drb-calls bucket and c2-server Firestore database into state
- Gitea CI: build c2-core, discord-bot, frontend images and push to
git.vpn.cusano.net registry; SSH deploy pulls pre-built images (no
build on VM)
- Ansible: first-time setup only — git clone, env files from vault,
Caddyfile, docker login + compose pull + up; no rsync or on-VM builds
- docker-compose: add image: ${REGISTRY}/name:latest alongside build:
so local dev and CI registry both work
- gitignore: add Terraform state, lock, tfvars, ansible secrets
11 lines
409 B
Bash
11 lines
409 B
Bash
# Top-level docker-compose environment — MQTT credentials and registry prefix.
|
|
# Managed by Ansible. Do not edit manually.
|
|
|
|
MQTT_C2_USER={{ vault_mqtt_c2_user }}
|
|
MQTT_C2_PASS={{ vault_mqtt_c2_pass }}
|
|
MQTT_NODE_USER={{ vault_mqtt_node_user }}
|
|
MQTT_NODE_PASS={{ vault_mqtt_node_pass }}
|
|
|
|
# Container registry prefix — docker compose uses this for image: ${REGISTRY}/name:latest
|
|
REGISTRY={{ vault_registry }}
|