uids
puller 2000 certbot 2001 haproxy 2002 wiki 2003
github puller
Set the secret from an env var in ansible, write to file, mount file in container, read file from the webhook main Create /var/run/repos , owner/group 2000, mod 755 Push the github-webhook container to docker hub. github-webhook-pull-master or someshit. Deploy priv key mounted at /etc/id_github_deploy - get contents from ~/.ssh/id_github_deploy docker run –mount type=bind,source=/etc/id_github_deploy,target=/etc/id_github_deploy –mount type=bind,source=/var/run/repos,target=/repos -p 80:8000 –user 2000:2000 8df9557df0da & Private network Config haproxy to direct /postdeploy to the container
certbot
Run manually once with a creates directive via docker, mounting /etc/letsencrypt Cat the files for haproxy pem chain
Wiki
Filter everything except GET at haproxy with the appropriate acl Run gollum with –no-edit Mount the /var/run/repos/wiki dir at /wiki
createdroplet -t permanent -t wiki -i centos-7-x64 -r lon1 -n wiki-lon1 Gollum-in-docker here https://github.com/gollum/gollum/wiki/Gollum-via-Docker