From ed4c4e1b409052505767b0aac5b64a9cead54c40 Mon Sep 17 00:00:00 2001 From: "Torsten Schulz (local)" Date: Mon, 30 Mar 2026 11:35:34 +0200 Subject: [PATCH] refactor(deploy.yml): improve SSH deployment process - Added steps to prepare SSH keys and known hosts for secure connections. - Implemented a test for the SSH connection to ensure successful deployment. - Updated the deployment step to use SSH for executing the deployment script on the production server. --- .gitea/workflows/deploy.yml | 29 ++++++++++++++++++++--------- 1 file changed, 20 insertions(+), 9 deletions(-) diff --git a/.gitea/workflows/deploy.yml b/.gitea/workflows/deploy.yml index a2c9f77..c067e98 100644 --- a/.gitea/workflows/deploy.yml +++ b/.gitea/workflows/deploy.yml @@ -10,12 +10,23 @@ jobs: runs-on: ubuntu-latest steps: - - name: Run deployment on production server - uses: appleboy/ssh-action@v1.0.3 - with: - host: ${{ secrets.PROD_HOST }} - username: ${{ secrets.PROD_USER }} - key: ${{ secrets.PROD_SSH_KEY }} - port: ${{ secrets.PROD_PORT }} - script: | - /home/tsschulz/actualize-yourpart.sh \ No newline at end of file + - name: Prepare SSH + run: | + mkdir -p ~/.ssh + printf "%s" "${{ secrets.PROD_SSH_KEY }}" > ~/.ssh/id_ed25519 + chmod 600 ~/.ssh/id_ed25519 + ssh-keyscan -p "${{ secrets.PROD_PORT }}" "${{ secrets.PROD_HOST }}" >> ~/.ssh/known_hosts + + - name: Test SSH connection + run: | + ssh -i ~/.ssh/id_ed25519 \ + -p "${{ secrets.PROD_PORT }}" \ + "${{ secrets.PROD_USER }}@${{ secrets.PROD_HOST }}" \ + "echo SSH OK" + + - name: Run deployment script + run: | + ssh -i ~/.ssh/id_ed25519 \ + -p "${{ secrets.PROD_PORT }}" \ + "${{ secrets.PROD_USER }}@${{ secrets.PROD_HOST }}" \ + "/home/tsschulz/actualize-yourpart.sh" \ No newline at end of file