feat(Drone): Add more configuration and split it

drone/server/.env

@@ -0,0 +1,65 @@
+########
+# DOCKER
+
+#DOCKER_CONTEXT=
+#DOCKER_HOST=
+SERVICES_DIR=../..
+COMPOSE_FILE=${SERVICES_DIR}/drone/server/docker-compose.yml:${SERVICES_DIR}/drone/server/docker-compose.user.yml:${SERVICES_DIR}/drone/server/docker-compose.traefik.yml:${SERVICES_DIR}/drone/server/docker-compose.postgres.yml:${SERVICES_DIR}/drone/server/docker-compose.header.yml:${SERVICES_DIR}/drone/server/docker-compose.gitea.yml:${SERVICES_DIR}/drone/server/docker-compose.cookie.yml:${SERVICES_DIR}/postgres/docker-compose.yml
+#COMPOSE_PROJECT_NAME=
+
+
+## DRONE SERVER
+# https://docs.drone.io/server/reference/
+
+### Docker
+# https://hub.docker.com/r/drone/drone/tags
+DRONE_SERVER_IMAGE=drone/drone:2.8.0
+DRONE_SERVER_VOLUME_NAME=drone-server
+DRONE_SERVER_CONTAINER_NAME=drone-server
+
+### Drone
+
+DRONE_RPC_SECRET=change-me
+DRONE_SERVER_HOST=ci.cool.life
+DRONE_SERVER_PROTO=https
+
+### User
+DRONE_ADMIN_USER=resilien
+DRONE_ADMIN_TOKEN=change-me
+DRONE_USER_FILTER=resilien
+DRONE_REGISTRATION_CLOSED=true
+
+### Gitea
+# https://docs.drone.io/server/provider/gitea/
+#DRONE_GIT_ALWAYS_AUTH=
+DRONE_GITEA_SERVER=gitea.cool.life
+DRONE_GITEA_CLIENT_ID=UI76T78G-HDZ8-7CSD-6SDZ-YUIDG8Z7DSQ8
+DRONE_GITEA_CLIENT_SECRET=change-me
+
+## Header
+# https://docs.drone.io/server/headers/
+#DRONE_HTTP_SSL_REDIRECT=
+#DRONE_HTTP_SSL_TEMPORARY_REDIRECT=
+#DRONE_HTTP_SSL_HOST=
+#DRONE_HTTP_STS_SECONDS=
+
+### Cookie
+# https://docs.drone.io/server/cookie/
+DRONE_COOKIE_SECRET=change-me
+#DRONE_COOKIE_TIMEOUT=720h
+
+### POSTGRES
+# https://docs.drone.io/server/storage/encryption/
+DRONE_DATABASE_SECRET=change-me
+POSTGRES_USER=user
+POSTGRES_PASSWORD=password
+POSTGRES_VOLUME_NAME=postgres
+POSTGRES_CONTAINER_NAME=postgres
+POSTGRES_DB=drone
+
+#########
+# TRAEFIK
+
+#TRAEFIK_NETWORK_NAME=
+#TRAEFIK_ROUTER_NAME=                                       # Don't use char '.'
+#TRAEFIK_ENTRYPOINTS=

drone/server/README.md

@@ -0,0 +1,41 @@
+# Drone CI Server
+
+## Installation
+
+L'installation de la partie serveur a été coupée en plusieurs fichiers dont les noms sont assez explicites. De nombreux liens vers la documentation officielle ont été mis dans les fichiers _Docker Compose_.
+
+## Configuration
+
+Une fois un Drone installé il faut le configurer avec l'utilisation du CLI.
+
+### Installation du CLI
+
+Voir la [documentation officielle](https://docs.drone.io/cli/install/#install-on-linux).
+
+### Configuration du CLI en local
+
+Il faut :
+- l'url de l'instance (`DRONE_SERVER_HOST`)
+- le protocol de l'instance (`DRONE_SERVER_PROTO`)
+- le token de l'administrateur (`DRONE_ADMIN_TOKEN`)
+
+```
+export DRONE_SERVER=${DRONE_SERVER_PROTO}://${DRONE_SERVER_HOST}
+export DRONE_TOKEN=${DRONE_ADMIN_TOKEN}
+```
+
+[Documentation officielle](https://docs.drone.io/cli/configure/)
+
+### Les utilisateurs
+
+Il faut ajouter les utilisateurs non admin :
+
+```
+drone user add kosssi
+drone user add killian
+drone user add prometheus --machine --token=${PROMETHEUS_TOKEN}
+```
+
+En n'oubliant pas au moment de l'installation d'identifier précisément les utilisateurs ayant le droit d'exécuter Drone avec la variable `DRONE_USER_FILTER=kosssi,killian,prometheus,${DRONE_ADMIN_USER}`
+
+[Documentation officielle](https://docs.drone.io/cli/user/drone-user-add/)

drone/server/docker-compose.cookie.yml

@@ -0,0 +1,13 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/cookie/
+
+services:
+  drone-server:
+    environment:
+      # https://docs.drone.io/server/reference/drone-cookie-secret/
+      DRONE_COOKIE_SECRET: ${DRONE_COOKIE_SECRET:?err}
+      # https://docs.drone.io/server/reference/drone-cookie-timeout/
+      DRONE_COOKIE_TIMEOUT: ${DRONE_COOKIE_TIMEOUT:-720h} # Default value 30 days

drone/server/docker-compose.gitea.yml

@@ -0,0 +1,17 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/provider/gitea/
+
+services:
+  drone-server:
+    environment:
+      # https://docs.drone.io/server/reference/drone-git-always-auth/
+      DRONE_GIT_ALWAYS_AUTH: ${DRONE_GIT_ALWAYS_AUTH:-true}
+      # https://docs.drone.io/server/reference/drone-gitea-server/
+      DRONE_GITEA_SERVER: ${DRONE_GITEA_SERVER:?err}
+      # https://docs.drone.io/server/reference/drone-gitea-client-id/
+      DRONE_GITEA_CLIENT_ID: ${DRONE_GITEA_CLIENT_ID:?err}
+      # https://docs.drone.io/server/reference/drone-gitea-client-secret/
+      DRONE_GITEA_CLIENT_SECRET: ${DRONE_GITEA_CLIENT_SECRET:?err}

drone/server/docker-compose.header.yml

@@ -0,0 +1,13 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/headers/
+
+services:
+  drone-server:
+    environment:
+      DRONE_HTTP_SSL_REDIRECT: ${DRONE_HTTP_SSL_REDIRECT:-true}
+      DRONE_HTTP_SSL_TEMPORARY_REDIRECT: ${DRONE_HTTP_SSL_TEMPORARY_REDIRECT:-true}
+      DRONE_HTTP_SSL_HOST: ${DRONE_SERVER_HOST}
+      DRONE_HTTP_STS_SECONDS: ${DRONE_HTTP_STS_SECONDS:-315360000}

drone/server/docker-compose.local.yml

@@ -0,0 +1,8 @@
+---
+
+version: "3.8"
+
+services:
+  drone-server:
+    ports:
+      - "3000:3000"

drone/server/docker-compose.logging.yml

@@ -0,0 +1,19 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/logging/
+
+services:
+  drone-server:
+    environment:
+      # https://docs.drone.io/server/reference/drone-logs-debug/
+      DRONE_LOGS_DEBUG: ${DRONE_LOGS_DEBUG:-true}
+      # https://docs.drone.io/server/reference/drone-logs-text/
+      DRONE_LOGS_TEXT: ${DRONE_LOGS_TEXT:-true}
+      # https://docs.drone.io/server/reference/drone-logs-pretty/
+      DRONE_LOGS_PRETTY: ${DRONE_LOGS_PRETTY:-true}
+      # https://docs.drone.io/server/reference/drone-logs-color/
+      DRONE_LOGS_COLOR: ${DRONE_LOGS_COLOR:-true}
+      # https://docs.drone.io/server/reference/drone-logs-trace/
+      DRONE_LOGS_TRACE: ${DRONE_LOGS_TRACE:-false}

drone/server/docker-compose.postgres.yml

@@ -0,0 +1,16 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/storage/database/
+# https://docs.drone.io/server/storage/encryption/
+
+services:
+  drone-server:
+    environment:
+      # https://docs.drone.io/server/reference/drone-database-secret/
+      DRONE_DATABASE_SECRET: ${DRONE_DATABASE_SECRET}
+      # https://docs.drone.io/server/reference/drone-database-driver/
+      DRONE_DATABASE_DRIVER: postgres
+      # https://docs.drone.io/server/reference/drone-database-datasource/
+      DRONE_DATABASE_DATASOURCE: postgres://${POSTGRES_USER:?err}:${POSTGRES_PASSWORD:?err}@${POSTGRES_CONTAINER_NAME:-postgres}:5432/${POSTGRES_DB:?err}?sslmode=disable

drone/server/docker-compose.traefik.yml

@@ -0,0 +1,15 @@
+---
+
+version: "3.8"
+
+networks:
+  default:
+    name: ${TRAEFIK_NETWORK_NAME}
+
+services:
+  drone-server:
+    labels:
+      - traefik.enable=true
+      - traefik.docker.network=${TRAEFIK_NETWORK_NAME:-traefik}
+      - traefik.http.routers.${TRAEFIK_ROUTER_NAME:-drone-server}.rule=Host(`${DRONE_SERVER_HOST:?err}`)
+      - traefik.http.routers.${TRAEFIK_ROUTER_NAME:-drone-server}.entrypoints=${TRAEFIK_ENTRYPOINTS:-web}

drone/server/docker-compose.user.yml

@@ -0,0 +1,15 @@
+---
+
+version: "3.8"
+
+# https://docs.drone.io/server/user/registration/
+
+services:
+  drone-server:
+    environment:
+      # https://docs.drone.io/server/reference/drone-user-create/
+      DRONE_USER_CREATE: username:${DRONE_ADMIN_USER:?err},machine:false,admin:true,token:${DRONE_ADMIN_TOKEN:?err}
+      # https://docs.drone.io/server/reference/drone-user-filter/
+      DRONE_USER_FILTER: ${DRONE_USER_FILTER:?err}
+      # https://docs.drone.io/server/reference/drone-registration-closed/
+      DRONE_REGISTRATION_CLOSED: ${DRONE_REGISTRATION_CLOSED:-true}

drone/server/docker-compose.yml

@@ -0,0 +1,24 @@
+---
+
+version: "3.8"
+
+volumes:
+  drone-server:
+    name: ${DRONE_SERVER_VOLUME_NAME:-drone-server}
+
+services:
+  drone-server:
+    container_name: ${DRONE_SERVER_CONTAINER_NAME:-drone-server}
+    image: ${DRONE_SERVER_IMAGE:-drone/drone:2.8.0}
+    restart: always
+    environment:
+      # https://docs.drone.io/server/reference/drone-rpc-secret/
+      DRONE_RPC_SECRET: ${DRONE_RPC_SECRET}
+      # https://docs.drone.io/server/reference/drone-server-host/
+      DRONE_SERVER_HOST: ${DRONE_SERVER_HOST}
+      # https://docs.drone.io/server/reference/drone-server-proto/
+      DRONE_SERVER_PROTO: ${DRONE_SERVER_PROTO:-https}
+    volumes:
+      - drone-server:/data
+      - /etc/timezone:/etc/timezone:ro
+      - /etc/localtime:/etc/localtime:ro