ack/MES_Core
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Пробуем запушить с ранером
Some checks failed
Deploy MES Core / deploy (push) Failing after 20s
Details

Browse Source
This commit is contained in:
ackFromRedmi
2026-03-27 21:38:06 +03:00
parent cd57d20e88
commit 91b0a6ff71
6 changed files with 143 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
.env Normal file
View File

@@ -0,0 +1,12 @@
SECRET_KEY='django-insecure-9p*t_(vtwo144=u)ie8qzb31a8%i(&1w4$0vq#udautexj^vms'
# Настройки базы данных
DB_NAME=prodman_db
DB_USER=prodman_user
DB_PASS=prodman_password_zwE45t!
# Настройки Django
ENV_TYPE=server
DB_HOST=db
# todo потом установить домен для продакшена
ALLOWED_HOSTS=192.168.1.108,shiftflow.tertelius.space
CSRF_ORIGINS=http://192.168.1.108,https://shiftflow.tertelius.space

22
.gitea/workflows/deploy.yaml
View File

@@ -2,16 +2,28 @@ name: Deploy MES Core
on: on:
push: push:
branches: [ main ] branches: [ main ]
workflow_dispatch:
jobs: jobs:
deploy: deploy:
runs-on: debian-my # Или твой self-hosted раннер runs-on: debian-latest # Твоя метка раннера
steps: steps:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v3 uses: actions/checkout@v3
- name: Deploy to Production - name: Shell Deploy
run: | run: |
docker compose up -d --build # Создаем папку проекта, если её ещё нет
docker compose exec -T web python manage.py migrate mkdir -p /home/ack/projects/mes_core
docker compose exec -T web python manage.py collectstatic --noinput # Переходим в папку и обновляем код
cd /home/ack/projects/mes_core
# Если папка пустая (первый деплой), клонируем. Иначе - тянем.
if [ -d ".git" ]; then
git pull origin main
else
git clone https://gitea.tertelius.space/ack/MES_Core.git .
fi
# Запуск сборки
docker compose up -d --build

2
.gitignore vendored
View File

@@ -129,7 +129,7 @@ celerybeat.pid
*.sage.py *.sage.py
# Environments # Environments
.env # .env
.venv .venv
env/ env/
venv/ venv/

79
core/settings.py
View File

@@ -10,16 +10,24 @@ For the full list of settings and their values, see
https://docs.djangoproject.com/en/6.0/ref/settings/ https://docs.djangoproject.com/en/6.0/ref/settings/
""" """
import os
from pathlib import Path from pathlib import Path
import environ import environ
# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent
env = environ.Env() env = environ.Env()
environ.Env.read_env() # Читаем файл .env environ.Env.read_env() # Читаем файл .env
# читаем переменную окружения
ENV_TYPE = os.getenv('ENV_TYPE', 'local')
# Настройки безопасности
# DEBUG будет True везде, кроме сервера
DEBUG = ENV_TYPE != 'server'
# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent
# Quick-start development settings - unsuitable for production # Quick-start development settings - unsuitable for production
@@ -28,10 +36,13 @@ BASE_DIR = Path(__file__).resolve().parent.parent
# SECURITY WARNING: keep the secret key used in production secret! # SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = 'django-insecure-9p*t_(vtwo144=u)ie8qzb31a8%i(&1w4$0vq#udautexj^vms' SECRET_KEY = 'django-insecure-9p*t_(vtwo144=u)ie8qzb31a8%i(&1w4$0vq#udautexj^vms'
# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = True
ALLOWED_HOSTS = [] if not DEBUG:
# На сервере список хостов должен быть ограничен
ALLOWED_HOSTS = os.environ.get('ALLOWED_HOSTS', 'localhost').split(',')
else:
# Для разработки разрешаем всё
ALLOWED_HOSTS = ['*']
# Application definition # Application definition
@@ -61,7 +72,9 @@ ROOT_URLCONF = 'core.urls'
TEMPLATES = [ TEMPLATES = [
{ {
'BACKEND': 'django.template.backends.django.DjangoTemplates', 'BACKEND': 'django.template.backends.django.DjangoTemplates',
'DIRS': [], 'DIRS': [
os.path.join(BASE_DIR, 'templates'),
],
'APP_DIRS': True, 'APP_DIRS': True,
'OPTIONS': { 'OPTIONS': {
'context_processors': [ 'context_processors': [
@@ -79,9 +92,38 @@ WSGI_APPLICATION = 'core.wsgi.application'
# Database # Database
# https://docs.djangoproject.com/en/6.0/ref/settings/#databases # https://docs.djangoproject.com/en/6.0/ref/settings/#databases
DATABASES = { if ENV_TYPE == 'server':
'default': env.db('DATABASE_URL', default='sqlite:///db.sqlite3') # Для Docker на удаленном сервере (максимальная защита через .env)
} DATABASES = {
'default': {
'ENGINE': 'django.db.backends.postgresql',
'NAME': os.getenv('DB_NAME'),
'USER': os.getenv('DB_USER'),
'PASSWORD': os.getenv('DB_PASS'),
'HOST': os.getenv('DB_HOST', 'db'),
'PORT': '5432',
}
}
elif ENV_TYPE == 'dev':
# Настройки для локальной разработки с внешней БД
DATABASES = {
'default': {
'ENGINE': 'django.db.backends.postgresql',
'NAME': 'mes_system_db',
'USER': 'mes_admin',
'PASSWORD': '123',
'HOST': '192.168.1.90', # локальный сервер БД
'PORT': '5432',
}
}
else:
# Режим "на коленке"
DATABASES = {
'default': {
'ENGINE': 'django.db.backends.sqlite3',
'NAME': BASE_DIR / 'db.sqlite3',
}
}
# Password validation # Password validation
@@ -118,4 +160,23 @@ USE_TZ = True
# Static files (CSS, JavaScript, Images) # Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/6.0/howto/static-files/ # https://docs.djangoproject.com/en/6.0/howto/static-files/
# --- Статика и Медиа ---
STATIC_URL = 'static/' STATIC_URL = 'static/'
STATIC_ROOT = BASE_DIR / 'staticfiles'
MEDIA_URL = 'media/'
MEDIA_ROOT = BASE_DIR / 'media'
# Доверяем прокси-серверу передавать заголовки
SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
# Список доверенных источников для CSRF (укажи свой IP и порт)
# CSRF_TRUSTED_ORIGINS = [
# "http://192.168.1.57:8085",
# "https://prodman.tertelius.space", # Если будет SSL/HTTPS
# "http://prodman.tertelius.space", # Если пока без SSL
# ]
CSRF_TRUSTED_ORIGINS = env.list('CSRF_ORIGINS', default=['http://localhost'])
print(f"--- РАБОТАЕМ НА БАЗЕ: {DATABASES['default']['NAME']} (HOST: {DATABASES['default'].get('HOST', 'localhost')}) ---")

42
docker-compose.yml
View File

@@ -1,11 +1,41 @@
name: prodman
services: services:
db:
image: postgres:15-alpine
restart: unless-stopped
environment:
- POSTGRES_DB=${DB_NAME}
- POSTGRES_USER=${DB_USER}
- POSTGRES_PASSWORD=${DB_PASS}
volumes:
- postgres_data:/var/lib/postgresql/data
web: web:
build: . build: .
container_name: mes_core_web restart: unless-stopped
volumes:
- .:/app
ports:
- "8000:8000"
env_file: env_file:
- .env - .env
restart: always volumes:
- staticfiles:/app/staticfiles
- mediafiles:/app/media
expose:
- "8000"
depends_on:
- db
nginx:
image: nginx:1.25-alpine
restart: unless-stopped
volumes:
- ./nginx/default.conf:/etc/nginx/conf.d/default.conf:ro
- staticfiles:/app/staticfiles:ro
- mediafiles:/app/media:ro
ports:
- "8085:80"
depends_on:
- web
volumes:
postgres_data:
staticfiles:
mediafiles:

7
entrypoint.sh Normal file
View File

@@ -0,0 +1,7 @@
#!/bin/sh
echo "Collecting static files..."
python manage.py collectstatic --noinput
echo "Applying database migrations..."
python manage.py migrate --noinput
echo "Starting Gunicorn..."
exec "$@"