admin/rustycms
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
634ba8d494e14f07bf404674ccd3f94800614dae
rustycms/.gitea/workflows/deploy.yml
Peter Meier b432621919
All checks were successful
Deploy to Server / deploy (push) Successful in 1m55s
Details
Add proper login to Admin UI, replace Caddy basic_auth 
- iron-session for encrypted httpOnly session cookies
- POST /api/auth/login: verifies ADMIN_USERNAME/ADMIN_PASSWORD, sets session, returns API key
- POST /api/auth/logout: destroys session
- middleware.ts: protects all routes, redirects to /login if unauthenticated
- Login page: username + password form (no more browser popup)
- Sidebar: logout calls API route and clears session
- docker-compose.prod.yml: admin-ui reads /opt/rustycms/.env.admin
- deploy.yml: generates .env.admin from Gitea secrets
- Caddy: basic_auth removed from /admin* block

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-15 21:49:32 +01:00

56 lines
1.9 KiB
YAML
Raw Blame History

name: Deploy to Server
on:
push:
branches:
- main
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Build API image
run: |
docker build -t rustycms-api:latest .
- name: Build Admin UI image
run: |
docker build \
--build-arg NEXT_PUBLIC_RUSTYCMS_API_URL=https://cms.pm86.de \
-t rustycms-admin:latest \
./admin-ui
- name: Deploy
run: |
apt-get update -qq && apt-get install -y rsync
echo "${{ secrets.SSH_DEPLOY_KEY }}" > /tmp/deploy_key
chmod 600 /tmp/deploy_key
SSH="ssh -o StrictHostKeyChecking=no -i /tmp/deploy_key root@167.86.74.105"
# API .env aus Secrets generieren
$SSH "cat > /opt/rustycms/.env" << 'ENVEOF'
RUSTYCMS_API_KEY=${{ secrets.RUSTYCMS_API_KEY }}
RUSTYCMS_BASE_URL=${{ secrets.RUSTYCMS_BASE_URL }}
RUSTYCMS_CORS_ORIGIN=${{ secrets.RUSTYCMS_CORS_ORIGIN }}
RUSTYCMS_LOCALES=${{ secrets.RUSTYCMS_LOCALES }}
RUSTYCMS_CACHE_TTL_SECS=${{ secrets.RUSTYCMS_CACHE_TTL_SECS }}
RUSTYCMS_STORE=${{ secrets.RUSTYCMS_STORE }}
ENVEOF
# Admin UI .env aus Secrets generieren
$SSH "cat > /opt/rustycms/.env.admin" << 'ENVEOF'
RUSTYCMS_API_KEY=${{ secrets.RUSTYCMS_API_KEY }}
ADMIN_USERNAME=${{ secrets.ADMIN_USERNAME }}
ADMIN_PASSWORD=${{ secrets.ADMIN_PASSWORD }}
SESSION_SECRET=${{ secrets.SESSION_SECRET }}
ENVEOF
rsync -avz --delete \
-e "ssh -o StrictHostKeyChecking=no -i /tmp/deploy_key" \
./types/ root@167.86.74.105:/opt/rustycms/types/
$SSH "docker compose -f /opt/rustycms/docker-compose.yml up -d && docker image prune -f"
rm /tmp/deploy_key
Reference in New Issue View Git Blame Copy Permalink