feat: Lab v1 (#36)

homecentr · Oct 10, 2024 · 408aac7 · 408aac7
1 parent 0d5e839
commit 408aac7
Show file tree

Hide file tree

Showing 120 changed files with 2,266 additions and 3,414 deletions.
diff --git a/.ansible-lint b/.ansible-lint
@@ -3,7 +3,9 @@ exclude_paths:
   - .github/
   - node_modules/
   - "**/*.sops.yml"
+  - "**/*.sops.yaml"
   - ".sops.yaml"
+  - "**/inventory/hosts.yaml"
 
 use_default_rules: true
 

diff --git a/.ansible-lint-ignore b/.ansible-lint-ignore
@@ -5,4 +5,4 @@ roles/gluster_server/tasks/create-volume-quota.yml var-naming[no-role-prefix]
 roles/gluster_client/tasks/main.yml var-naming[no-role-prefix]
 roles/pve_virtual_machines/tasks/main.yml var-naming[no-role-prefix]
 roles/pve_virtual_machines/tasks/vm.yml var-naming[no-role-prefix]
-playbooks/nvidia.yml name[casing]
+playbooks/nvidia.yml name[casing]
diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -11,57 +11,13 @@ jobs:
 
       - name: Install pre-requisites
         run: |
-          yarn
           sudo wget -q -O /usr/bin/sops https://github.com/mozilla/sops/releases/download/v3.7.3/sops-v3.7.3.linux.amd64
           sudo chmod a+x /usr/bin/sops
           sudo pip install --upgrade pip
           sudo pip uninstall -y ansible-core
           pip install --force-reinstall ansible==7.6.0
           pip install --force-reinstall ansible-lint==6.17.0
+          SKIP_PLAYBOOKS=1 yarn install
 
       - name: Lint Ansible files
         run: yarn lint
-
-      - name: Compare values across environments
-        run: yarn validate-values
-        env:
-          SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
-
-  deploy-lab:
-    runs-on: self-hosted
-    needs:
-      - validate
-    steps:
-      - name: Checkout code
-        uses: actions/checkout@master
-
-      - name: Write ssh key
-        run: |
-          echo "${{ secrets.SSH_KEY }}" > ${{ runner.temp }}/ssh.key
-          chmod 0600 ${{ runner.temp }}/ssh.key
-
-      - name: Run Ansible playbooks
-        run: yarn lab:apply _all -e ansible_user=github-runner --private-key ${{ runner.temp }}/ssh.key
-        env:
-          SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
-          ANSIBLE_HOST_KEY_CHECKING: "false"
-
-  e2e-lab-local:
-    uses: homecentr/e2e/.github/workflows/run-e2e.yml@master
-    needs:
-      - deploy-lab
-    with:
-      environment: lab
-      client: local
-    secrets:
-      sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
-
-  e2e-lab-remote:
-    uses: homecentr/e2e/.github/workflows/run-e2e.yml@master
-    needs:
-      - deploy-lab
-    with:
-      environment: lab
-      client: remote
-    secrets:
-      sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
diff --git a/.gitignore b/.gitignore
@@ -1,3 +1,6 @@
+**/tests_output
+**/screenshots
+
 *.key
 *.crt
 .images

diff --git a/.sops.yaml b/.sops.yaml
@@ -1,5 +1,5 @@
 creation_rules:
-  - path_regex: ".*environments.*\\.sops\\.ya?ml$"
+  - path_regex: ".*inventory.*\\.sops\\.ya?ml$"
     # Workaround for https://github.com/mozilla/sops/issues/1103 where sops does not currently work correctly with age via YubiKey
     pgp: 2D1D9C803F35BBC24014C3906601E1EB2454827F # lholota
     age: >  # GitHub

diff --git a/ansible.cfg b/ansible.cfg
@@ -1,3 +1,3 @@
 [defaults]
 vars_plugins_enabled = host_group_vars,community.sops.sops
-timeout = 30
+timeout = 30
diff --git a/environments/lab/group_vars/all/general.yml b/environments/lab/group_vars/all/general.yml
diff --git a/environments/lab/group_vars/all/node-exporter.yml b/environments/lab/group_vars/all/node-exporter.yml
diff --git a/environments/lab/group_vars/all/ups.sops.yml b/environments/lab/group_vars/all/ups.sops.yml
diff --git a/environments/lab/group_vars/all/ups.yml b/environments/lab/group_vars/all/ups.yml
diff --git a/environments/lab/group_vars/all/users.sops.yml b/environments/lab/group_vars/all/users.sops.yml