xoxys.droneci/index.md
Robert Kaussow 41c108e063 commit 4de260c357
Author: Robert Kaussow <mail@geeklabor.de>
Date:   Thu Jan 14 11:26:06 2021 +0100

    add option DRONE_DATABASE_SECRET to enable secrets encryption in db
2021-01-14 10:31:17 +00:00

7.4 KiB

title type
droneci docs

Source Code Build Status License: MIT

Setup Drone CI base server. Drone is a Continuous Delivery system built on container technology. Drone uses a simple YAML configuration file, a superset of docker-compose, to define and execute Pipelines inside Docker containers.


Default Variables

droneci_admin_user

Default value

droneci_admin_user: _unset_

droneci_container_name

Default value

droneci_container_name: droneci

droneci_db_name

Default value

droneci_db_name: droneci

droneci_db_password

Default value

droneci_db_password: secure

droneci_db_port

Default value

droneci_db_port: 5432

droneci_db_secret

Drone supports aesgcm encryption of secrets stored in the database. You must enable encryption before any secrets are stored in the database! You can generate an encryption key with e.g. openssl rand -hex 16.

Default value

droneci_db_secret: _unset_

Example usage

droneci_db_secret: 0c549fd39ae397333761d2cb0c53c219

droneci_db_server

Default value

droneci_db_server: localhost

droneci_db_ssl_mode

Default value

droneci_db_ssl_mode: disable

droneci_db_type

Default value

droneci_db_type: sqlite

droneci_db_user

Default value

droneci_db_user: pgdroneci

droneci_docker_socket_path

Default value

droneci_docker_socket_path: /var/run/docker.sock

droneci_exposed_ports

Default value

droneci_exposed_ports:
  - 127.0.0.1:8080:80

droneci_extra_hosts

Default value

droneci_extra_hosts: []

droneci_gitea_oauth_client_id

Default value

droneci_gitea_oauth_client_id: _unset_

Example usage

droneci_gitea_oauth_client_id: 1111-222-33333-44444

droneci_gitea_oauth_client_secret

Default value

droneci_gitea_oauth_client_secret: _unset_

Example usage

droneci_gitea_oauth_client_secret: 1234abcd5678efgh

droneci_gitea_server

Default value

droneci_gitea_server: http://my-git.example.com

droneci_gitea_skip_verify

Default value

droneci_gitea_skip_verify: false

droneci_github_client_id

Default value

droneci_github_client_id: _unset_

droneci_github_client_secret

Default value

droneci_github_client_secret: _unset_

droneci_host

Default value

droneci_host: http://localhost

droneci_http_proxy

Default value

droneci_http_proxy: _unset_

droneci_https_proxy

Default value

droneci_https_proxy: _unset_

droneci_image

Default value

droneci_image: drone/drone:{{ droneci_version }}

droneci_license_key

Default value

droneci_license_key: _unset_

droneci_memory_limit

Default value

droneci_memory_limit: _unset_

Example usage

droneci_memory_limit: 512m

droneci_memory_reservation

Default value

droneci_memory_reservation: _unset_

Example usage

droneci_memory_reservation: 256m

droneci_networks

Default value

droneci_networks:
  - name: default

Example usage

droneci_networks:
  - name: default
    # optional network driver, defaults to 'bride'
    driver: host

droneci_networks_applied

Default value

droneci_networks_applied:
  - default

droneci_no_proxy

Default value

droneci_no_proxy:
  - drone-server
  - drone-agent

droneci_prometheus_anonymous_access

Default value

droneci_prometheus_anonymous_access: false

droneci_restart_policy

Default value

droneci_restart_policy: always

droneci_scm_provider

SCM provider to use with Drone (gitea|github)

Default value

droneci_scm_provider: none

droneci_secret

Default value

droneci_secret: myveryownsecret

droneci_service_directory

Default value

droneci_service_directory: /var/lib/docker/services/droneci

droneci_service_stopped

Default value

droneci_service_stopped: false

droneci_user_filter

Default value

droneci_user_filter: []

droneci_version

Default value

droneci_version: 1.6.0

droneci_volumes

Define required docker volumes.

Default value

droneci_volumes:
  - name: data
    dest: /var/lib/drone
    bind: false

Example usage

droneci_volumes:
  # Instead of the name you could specify a path on the container host system,
  # but you also have to enable bind mount for this volume
  - name: data
    # target location inside the container
    dest: /var/lib/drone
    # enable bind mount, if false volume will be configured as named volume
    # keep in mind you MUST set bind in any case
    bind: True

Dependencies

None.