From 9eba114ae3e9566117a0e8821889beec8f97bd92 Mon Sep 17 00:00:00 2001
From: Sergey Antropoff <sergey@antropoff.ru>
Date: Thu, 20 Mar 2025 13:50:17 +0300
Subject: [PATCH] =?UTF-8?q?=D1=84=D0=B8=D0=BA=D1=81=20=D0=BA=C3=90=D0=B4?=
 =?UTF-8?q?=D0=BE=D0=B1=D0=B0=D0=B2=D0=BB=D0=B5=D0=BD=D0=B8=D1=8F=20=D0=BA?=
 =?UTF-8?q?=D0=BB=D1=8E=D1=87=D0=B0=20=D0=BF=D1=80=D0=B8=20=D0=B4=D0=B5?=
 =?UTF-8?q?=D0=BF=D0=BB=D0=BE=D0=B5=20=D0=B2=20=D0=BF=D1=80=D0=BE=D0=B4?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .gitlab-ci.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 3d32e75..791c0d1 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -49,12 +49,22 @@ test:
 deploy:
   stage: deploy
   script:
+    - echo "Настраиваем SSH-ключ для доступа к серверам..."
+    # Создаем директорию .ssh и настраиваем права доступа
+    - mkdir -p ~/.ssh
+    - chmod 700 ~/.ssh
+    # Записываем SSH-ключ в файл ~/.ssh/id_rsa
+    - echo "$SSH_PRIVATE_KEY" | tr -d '\r' > ~/.ssh/id_rsa
+    - chmod 600 ~/.ssh/id_rsa
+    # Запускаем основной пайплайн
     - echo "Распаковываем секреты..."
     - ansible-vault decrypt --vault-password-file ./vault-password.txt vars/secrets.yml
     - echo "Все ок. Деплоим в прод..."
     - ansible-playbook roles/deploy.yaml
     - echo "Упаковываем секреты..."
     - ansible-vault encrypt vars/secrets.yml --encrypt-vault-id default --vault-password-file ./vault-password.txt
+    # Удаляем ключ
+    - rm -rf ~/.ssh
   rules:
     - if: $CI_COMMIT_REF_NAME != "main" && $CI_COMMIT_REF_NAME != "master"
   when: manual