Add actions.

Author: enteresanlikk

.github/workflows/env-system-alternative.yaml

@@ -0,0 +1,57 @@
+name: Environment System Alternative
+
+on:
+  workflow_dispatch:
+
+jobs:
+  deploy:
+    name: Deploy
+    runs-on: ubuntu-latest
+    env:
+      ENVIRONMENT: |-
+        ${{
+          github.ref_name     == 'master'   && 'PROD'
+          || github.ref_name  == 'dev'      && 'DEV'
+          || github.ref_name  == 'test'     && 'TEST'
+          ||                                   'UNKNOWN'
+        }}
+
+    steps:
+      - name: Validate Environment
+        run: |
+          if [ "${{ env.ENVIRONMENT }}" == "UNKNOWN" ]; then
+            echo "Error: ENVIRONMENT value is set to UNKNOWN."
+            exit 1
+          fi
+
+      - name: Get Repo Link
+        id: get_link
+        run: echo "::set-output name=repo_link::$(echo $GITHUB_SERVER_URL/$GITHUB_REPOSITORY)"
+
+      - name: OpenVPN Install
+        run: sudo apt-get install openvpn -y
+          
+      - name: OpenVPN Setup
+        run: echo "${{ secrets[format('{0}_OPENVPN_CONFIG', env.ENVIRONMENT)] }}" | sudo tee openvpn_config.ovpn > /dev/null
+          
+      - name: OpenVPN Connect
+        run: sudo openvpn --config openvpn_config.ovpn --daemon
+
+      - name: Wait for a VPN connection
+        timeout-minutes: 1
+        run: until ping -c1 ${{ secrets[format('{0}_SSH_HOST', env.ENVIRONMENT)] }}; do sleep 2; done
+
+      - name: Connect SSH and Deploy Project
+        uses: appleboy/[email protected]
+        with:
+          host: ${{ secrets[format('{0}_SSH_HOST', env.ENVIRONMENT)] }}
+          username: ${{ secrets[format('{0}_SSH_USERNAME', env.ENVIRONMENT)] }}
+          key: ${{ secrets[format('{0}_SSH_PRIVATE_KEY', env.ENVIRONMENT)] }}
+          port: ${{ secrets[format('{0}_SSH_PORT', env.ENVIRONMENT)] }}
+          script: |
+            git clone --single-branch --branch ${{ github.ref_name }} ${{ steps.get_link.outputs.repo_link }}
+
+      - name: Kill VPN connection
+        if: always()
+        run: |
+          sudo killall openvpn

.github/workflows/openvpn-with-ssh.yaml

@@ -0,0 +1,42 @@
+name: OpenVPN with SSH
+
+on:
+  workflow_dispatch:
+
+jobs:
+  deploy:
+    name: Deploy
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Get Repo Link
+        id: get_link
+        run: echo "::set-output name=repo_link::$(echo $GITHUB_SERVER_URL/$GITHUB_REPOSITORY)"
+
+      - name: OpenVPN Install
+        run: sudo apt-get install openvpn -y
+          
+      - name: OpenVPN Setup
+        run: echo "${{ secrets.OPENVPN_CONFIG }}" | sudo tee openvpn_config.ovpn > /dev/null
+          
+      - name: OpenVPN Connect
+        run: sudo openvpn --config openvpn_config.ovpn --daemon
+
+      - name: Wait for a VPN connection
+        timeout-minutes: 1
+        run: until ping -c1 ${{ secrets.SSH_HOST }}; do sleep 2; done
+
+      - name: Connect SSH and Deploy Project
+        uses: appleboy/[email protected]
+        with:
+          host: ${{ secrets.SSH_HOST }}
+          username: ${{ secrets.SSH_USERNAME }}
+          key: ${{ secrets.SSH_PRIVATE_KEY }}
+          port: ${{ secrets.SSH_PORT }}
+          script: |
+            git clone --single-branch --branch ${{ github.ref_name }} ${{ steps.get_link.outputs.repo_link }}
+
+      - name: Kill VPN connection
+        if: always()
+        run: |
+          sudo killall openvpn

README.md

@@ -0,0 +1,38 @@
+# GitHub Actions
+## [env-system-alternative](.github/workflows/env-system-alternative.yaml)
+If you have an organization on the free plan and you are using a private repository, you cannot use GitHub Environment. You need to use a dynamic Environment instead. It includes a solution for this. If you want to use GitHub Environment, you need to upgrade to the paid version.
+
+|Prod Secrets|Value|
+|-|-|
+|**PROD**_OPENVPN_CONFIG|.ovpn client file content.|
+|**PROD**_SSH_HOST|Instance private ip information because you are using OpenVPN.|
+|**PROD**_SSH_USERNAME|Will connect to Instance and restricted username.|
+|**PROD**_SSH_PRIVATE_KEY|Private key to be used when connecting to the instance.|
+|**PROD**_SSH_PORT|The port information to make the SSH connection. It is usually used as 22. It would be good if you change this port for security.|
+
+|Dev Secrets|Value|
+|-|-|
+|**DEV**_OPENVPN_CONFIG|.ovpn client file content.|
+|**DEV**_SSH_HOST|Instance private ip information because you are using OpenVPN.|
+|**DEV**_SSH_USERNAME|Will connect to Instance and restricted username.|
+|**DEV**_SSH_PRIVATE_KEY|Private key to be used when connecting to the instance.|
+|**DEV**_SSH_PORT|The port information to make the SSH connection. It is usually used as 22. It would be good if you change this port for security.|
+
+|Test Secrets|Value|
+|-|-|
+|**TEST**_OPENVPN_CONFIG|.ovpn client file content.|
+|**TEST**_SSH_HOST|Instance private ip information because you are using OpenVPN.|
+|**TEST**_SSH_USERNAME|Will connect to Instance and restricted username.|
+|**TEST**_SSH_PRIVATE_KEY|Private key to be used when connecting to the instance.|
+|**TEST**_SSH_PORT|The port information to make the SSH connection. It is usually used as 22. It would be good if you change this port for security.|
+
+## [openvpn-with-ssh](.github/workflows/openvpn-with-ssh.yaml)
+In many OpenVPN solutions, the .ovpn client file must be included in the repository. This is not a very logical approach. You can use OpenVPN for this by defining the client file as secret.
+
+|Secrets|Value|
+|-|-|
+|OPENVPN_CONFIG|.ovpn client file content.|
+|SSH_HOST|Instance private ip information because you are using OpenVPN.|
+|SSH_USERNAME|Will connect to Instance and restricted username.|
+|SSH_PRIVATE_KEY|Private key to be used when connecting to the instance.|
+|SSH_PORT|The port information to make the SSH connection. It is usually used as 22. It would be good if you change this port for security.|