gitea_admin/qvest-task
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3821f45d63
qvest-task/terraform/outputs.tf
aviyadeveloper 890a23e8d5
Some checks failed
Update Automation Tests / Integration Tests (pull_request) Failing after 40s
Details
feat: complete CI/CD automation and fix deployment issues 
Infrastructure & Permissions:
- Set recovery_window_in_days=0 on secrets for immediate deletion on destroy
- Add secretsmanager:UpdateSecret permission to EC2 IAM role
- Move SES secret definition from ses.tf to secrets.tf for better organization
- Create scripts/empty-s3-bucket.sh to handle versioned S3 object deletion
- Update Makefile to use S3 cleanup script in full-destroy target

Gitea Admin User Automation:
- Remove non-functional GITEA_ADMIN_* environment variables from docker-compose.yml
- Add CLI-based admin user creation via docker exec in deploy-gitea.yml
- Add database update to disable must_change_password requirement
- Fix runner token API call to use GET instead of POST

Runner Setup Fixes:
- Change runner gitea_instance to http://localhost:3000 (was failing with public URL)
- Fix registration to work from same host as Gitea

Domain Migration:
- Change domain from gitea.poll-streams.com to git.poll-streams.com
- Update DNS, docker-compose, nginx configs, ansible inventory, and SSL setup
- Enables fresh SSL certificate (avoids Let's Encrypt rate limit)

All changes enable zero-to-one deployment: make full-destroy && make full-deploy
2026-06-11 17:16:51 +02:00

61 lines
1.7 KiB
HCL
Raw Blame History

# Outputs
output "ec2_public_ip" {
description = "Public IP address of the EC2 instance"
value = aws_instance.gitea.public_ip
}
output "ec2_instance_id" {
description = "EC2 instance ID"
value = aws_instance.gitea.id
}
output "s3_bucket_name" {
description = "Name of the S3 backup bucket"
value = aws_s3_bucket.backups.id
}
output "ssh_private_key_path" {
description = "Path to the SSH private key"
value = local_file.private_key.filename
}
output "ssh_connection_command" {
description = "Command to SSH into the EC2 instance"
value = "ssh -i ${local_file.private_key.filename} -o StrictHostKeyChecking=accept-new ubuntu@${aws_instance.gitea.public_ip}"
}
output "ssh_connection_via_domain" {
description = "SSH command using domain name (use after DNS propagates)"
value = "ssh -i ${local_file.private_key.filename} -o StrictHostKeyChecking=accept-new ubuntu@git.poll-streams.com"
}
output "gitea_domain" {
description = "Gitea domain name"
value = "git.poll-streams.com"
}
output "gitea_url" {
description = "Gitea URL (will be HTTPS after SSL setup)"
value = "https://git.poll-streams.com"
}
output "db_secret_arn" {
description = "ARN of the database credentials secret in Secrets Manager"
value = aws_secretsmanager_secret.db_credentials.arn
}
output "db_secret_name" {
description = "Name of the database credentials secret"
value = aws_secretsmanager_secret.db_credentials.name
}
output "ses_smtp_secret_name" {
description = "Name of the SES SMTP credentials secret"
value = aws_secretsmanager_secret.ses_smtp_credentials.name
}
output "alert_email" {
description = "Email address for alerts"
value = var.alert_email
}
Reference in New Issue View Git Blame Copy Permalink