From d6edff39afecd56e3d2643409031bd9b4e511e33 Mon Sep 17 00:00:00 2001
From: Cooperative Cloud <>
Date: Fri, 15 Jan 2021 19:31:36 +0100
Subject: [PATCH] Initial commit

---
 .drone.yml  | 19 +++++++++++++++++++
 .env.sample |  6 ++++++
 .gitignore  |  1 +
 README.md   | 16 ++++++++++++++++
 compose.yml | 31 +++++++++++++++++++++++++++++++
 5 files changed, 73 insertions(+)
 create mode 100644 .drone.yml
 create mode 100644 .env.sample
 create mode 100644 .gitignore
 create mode 100644 README.md
 create mode 100644 compose.yml

diff --git a/.drone.yml b/.drone.yml
new file mode 100644
index 0000000..902d7dc
--- /dev/null
+++ b/.drone.yml
@@ -0,0 +1,19 @@
+---
+kind: pipeline
+name: deploy to swarm-test.autonomic.zone
+steps:
+  - name: deployment
+    image: decentral1se/stack-ssh-deploy:latest
+    settings:
+      host: swarm-test.autonomic.zone
+      stack: keyoxide
+      purge: true
+      deploy_key:
+        from_secret: drone_ssh_swarm_test
+    environment:
+      DOMAIN: keyoxide.swarm-test.autonomic.zone
+      STACK_NAME: keyoxide
+      LETS_ENCRYPT_ENV: production
+trigger:
+  branch:
+    - main
diff --git a/.env.sample b/.env.sample
new file mode 100644
index 0000000..ef7db8d
--- /dev/null
+++ b/.env.sample
@@ -0,0 +1,6 @@
+TYPE=${REPO_NAME_KEBAB}
+
+DOMAIN=${REPO_NAME_KEBAB}.example.com
+## Domain aliases
+#EXTRA_DOMAINS=', `www.${REPO_NAME_KEBAB}.example.com`'
+LETS_ENCRYPT_ENV=production
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..37b52cc
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+/.envrc
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..3b893ea
--- /dev/null
+++ b/README.md
@@ -0,0 +1,16 @@
+zRKeyoxide
+
+A modern, secure and privacy-friendly platform to establish your decentralized online identity • https://codeberg.org/keyoxide/web
+
+## Basic usage
+
+1. Set up Docker Swarm and [`abra`]
+2. Deploy [`coop-cloud/traefik`]
+3. `abra app new keyoxide --secrets`
+4. `abra app YOURAPPDOMAIN config` - be sure to change `DOMAIN` to something that resolves to
+   your Docker swarm box
+5. `abra app YOURAPPDOMAIN deploy`
+6. Open the configured domain in your browser to finish set-up
+
+[`abra`]: https://git.autonomic.zone/autonomic-cooperative/abra
+[`coop-cloud/traefik`]: https://git.autonomic.zone/coop-cloud/traefik
diff --git a/compose.yml b/compose.yml
new file mode 100644
index 0000000..662a96c
--- /dev/null
+++ b/compose.yml
@@ -0,0 +1,31 @@
+---
+version: "3.8"
+
+services:
+  app:
+    image: nginx:1.19.2
+    networks:
+      - proxy
+    deploy:
+      restart_policy:
+        condition: on-failure
+      labels:
+        - "traefik.enable=true"
+        - "traefik.http.services.${STACK_NAME}.loadbalancer.server.port=80"
+        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
+        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
+        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
+        ## Redirect from EXTRA_DOMAINS to DOMAIN
+        #- "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect"
+        #- "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLForceHost=true"
+        #- "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost"]
+      interval: 30s
+      timeout: 10s
+      retries: 10
+      start_period: 1m
+
+networks:
+  proxy:
+    external: true