This commit is contained in:
@@ -7,18 +7,27 @@ jobs:
|
|||||||
deploy:
|
deploy:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
env:
|
env:
|
||||||
K3S_HOST: 121.37.117.181
|
# 从组织级Secrets读取,不用在仓库重复配置
|
||||||
|
K3S_HOST: ${{ secrets.K3S_HOST }}
|
||||||
APP_NAME: ${{ gitea.repo_name }}
|
APP_NAME: ${{ gitea.repo_name }}
|
||||||
steps:
|
steps:
|
||||||
# 修正:使用正确的 checkout 动作
|
|
||||||
- name: 拉取代码
|
- name: 拉取代码
|
||||||
uses: actions/checkout@v4
|
uses: actions/checkout@v4
|
||||||
|
|
||||||
- name: SSH部署K3s
|
- name: SSH部署K3s
|
||||||
run: |
|
run: |
|
||||||
mkdir -p ~/.ssh
|
mkdir -p ~/.ssh
|
||||||
echo "${{ secrets.K3S_PEM_KEY }}" > k3s.pem
|
# 写入组织配置的SSH私钥
|
||||||
|
echo "${{ secrets.K3S_SSH_KEY }}" > k3s.pem
|
||||||
chmod 600 k3s.pem
|
chmod 600 k3s.pem
|
||||||
|
# 调试:验证私钥是否正确写入
|
||||||
|
echo "私钥文件权限:"
|
||||||
|
ls -l k3s.pem
|
||||||
|
echo "私钥头部(仅前5行):"
|
||||||
|
head -5 k3s.pem
|
||||||
|
# 测试连接(会输出服务器主机名和kubectl版本)
|
||||||
|
ssh -i k3s.pem -o StrictHostKeyChecking=no -o ConnectTimeout=10 root@${K3S_HOST} "hostname && kubectl version --client"
|
||||||
|
# 正式执行部署命令
|
||||||
ssh -i k3s.pem -o StrictHostKeyChecking=no root@${K3S_HOST} << CMD
|
ssh -i k3s.pem -o StrictHostKeyChecking=no root@${K3S_HOST} << CMD
|
||||||
kubectl apply -f /k8s/deploy.yaml
|
kubectl apply -f /k8s/deploy.yaml
|
||||||
kubectl rollout restart deployment ${APP_NAME}
|
kubectl rollout restart deployment ${APP_NAME}
|
||||||
|
|||||||
Reference in New Issue
Block a user