feat: 集成 OpenTofu + Ansible + Gitea CI/CD

- 重构项目目录结构 - 添加 OpenTofu 多云支持 - 配置 Ansible 自动化部署 - 集成 Gitea Actions CI/CD 流水线 - 添加 Docker Swarm 管理 - 完善监控和安全配置
2025-09-20 10:48:41 +00:00
parent d755f237a0
commit 7eb4a33523
55 changed files with 3745 additions and 1921 deletions
--- a/configuration/inventories/production/inventory.ini
+++ b/configuration/inventories/production/inventory.ini
@@ -0,0 +1,60 @@
+[dev]
+dev1 ansible_host=dev1 ansible_user=ben ansible_become=yes ansible_become_pass=3131
+dev2 ansible_host=dev2 ansible_user=ben ansible_become=yes ansible_become_pass=3131
+
+[oci_kr]
+ch2 ansible_host=ch2 ansible_user=ben ansible_become=yes ansible_become_pass=3131
+ch3 ansible_host=ch3 ansible_user=ben ansible_become=yes ansible_become_pass=3131
+master ansible_host=master ansible_port=60022 ansible_user=ben ansible_become=yes ansible_become_pass=3131
+
+[oci_us]
+ash1d ansible_host=ash1d ansible_user=ben ansible_become=yes ansible_become_pass=3131
+ash2e ansible_host=ash2e ansible_user=ben ansible_become=yes ansible_become_pass=3131
+ash3c ansible_host=ash3c ansible_user=ben ansible_become=yes ansible_become_pass=3131
+[huawei]
+hcs ansible_host=hcs ansible_user=ben ansible_become=yes ansible_become_pass=3131
+[google]
+benwork ansible_host=benwork ansible_user=ben ansible_become=yes ansible_become_pass=3131
+
+[ditigalocean]
+syd ansible_host=syd ansible_user=ben ansible_become=yes ansible_become_pass=3131
+[aws]
+#aws linux dnf
+awsirish ansible_host=awsirish ansible_user=ben ansible_become=yes ansible_become_pass=3131
+
+[proxmox]
+pve ansible_host=pve ansible_user=root ansible_become=yes ansible_become_pass=Aa313131@ben
+xgp ansible_host=xgp ansible_user=root ansible_become=yes ansible_become_pass=Aa313131@ben
+nuc12 ansible_host=nuc12 ansible_user=root ansible_become=yes ansible_become_pass=Aa313131@ben
+
+[lxc]
+#集中在三台机器，不要同时upgrade 会死掉，顺序调度来 (Debian/Ubuntu containers using apt)
+warden ansible_host=warden ansible_user=ben ansible_become=yes ansible_become_pass=3131
+gitea ansible_host=gitea ansible_user=root ansible_become=yes ansible_become_pass=313131
+influxdb ansible_host=influxdb1 ansible_user=root ansible_become=yes ansible_become_pass=313131
+mysql ansible_host=mysql ansible_user=root ansible_become=yes ansible_become_pass=313131
+postgresql ansible_host=postgresql ansible_user=root ansible_become=yes ansible_become_pass=313131
+
+[alpine]
+#Alpine Linux containers using apk package manager
+redis ansible_host=redis ansible_user=root ansible_become=yes ansible_become_pass=313131
+authentik ansible_host=authentik ansible_user=root ansible_become=yes ansible_become_pass=313131
+calibreweb ansible_host=calibreweb ansible_user=root ansible_become=yes ansible_become_pass=313131
+
+[vm]
+kali ansible_host=kali ansible_user=ben ansible_become=yes ansible_become_pass=3131
+
+[hcp]
+hcp1 ansible_host=hcp1 ansible_user=root ansible_become=yes ansible_become_pass=313131
+hcp2 ansible_host=hcp2 ansible_user=root ansible_become=yes ansible_become_pass=313131
+
+[feiniu]
+snail ansible_host=snail ansible_user=houzhongxu ansible_ssh_pass=Aa313131@ben ansible_become=yes ansible_become_pass=Aa313131@ben
+
+[armbian]
+onecloud1 ansible_host=onecloud1 ansible_user=ben ansible_ssh_pass=3131 ansible_become=yes ansible_become_pass=3131
+
+[germany]
+de ansible_host=de ansible_user=ben ansible_ssh_pass=3131 ansible_become=yes ansible_become_pass=3131
+[all:vars]
+ansible_ssh_common_args='-o StrictHostKeyChecking=no'