~xenrox/ansible: .build.yml

image: archlinux
packages:
  - ansible
  - ansible-lint
  - python-hvac
  - python-pip
  - terraform
  - yamllint
secrets:
  - 333ce0ce-fd54-492d-a8b2-508d7deaa8f0
  - b9d3386d-f3fb-41dc-9412-f5dfd7206c3c
sources:
  - https://git.xenrox.net/~xenrox/ansible
environment:
  ANSIBLE_FORCE_COLOR: True
  PY_COLORS: 1
triggers:
  - action: email
    condition: failure
    to: Thorben Günther <admin@xenrox.net>
tasks:
  - ansible-lint: |
      cd ansible
      ansible-lint
  - terraform: |
      cd ansible/terraform_hetzner
      terraform init -backend=false
      terraform validate
      cd ../terraform_vault
      terraform init -backend=false
      terraform validate
      cd ../terraform_keycloak
      terraform init -backend=false
      terraform validate
  - prepare: |
      mkdir -p ~/.ssh
      cat ansible/ssh_host_keys/* > ~/.ssh/known_hosts
      cat .ansible-secrets >> .buildenv
      pip install ansible-runner
      echo 'export PATH="$PATH:$HOME/.local/bin"' >> ~/.buildenv
  - avalon: |
      cd ansible
      python misc/run.py avalon
  - fenrir: |
      cd ansible
      python misc/run.py fenrir