Update the Docker setup

.drone.yml

@@ -0,0 +1,83 @@
+---
+kind: pipeline
+type: docker
+name: default
+
+steps:
+  - name: restore-cache
+    image: meltwater/drone-cache:v1
+    settings:
+      backend: filesystem
+      restore: true
+      archive_format: gzip
+      filesystem_cache_root: /cache
+      mount:
+        - /mnt/external
+        - /var/lib/docker
+    volumes:
+      - name: cache
+        path: /cache
+      - name: external
+        path: /mnt/external
+
+  - name: build-image
+    image: plugins/docker
+    settings:
+      context: .
+      registry: registry:5000
+      repo: registry:5000/hopsoft/turbo_boost-commands
+      tags: ci
+      #tags: ci-${DRONE_COMMIT_SHA}
+      compress: true
+      force_tag: true
+      insecure: true
+      storage_path: /var/lib/docker
+      use_cache: true
+
+
+  - name: rebuild-cache
+    image: meltwater/drone-cache:v1
+    settings:
+      backend: filesystem
+      rebuild: true
+      archive_format: gzip
+      filesystem_cache_root: /cache
+      mount:
+        - /mnt/external
+        - /var/lib/docker
+    volumes:
+      - name: cache
+        path: /cache
+      - name: external
+        path: /mnt/external
+
+  - name: peek
+    image: alpine
+    commands:
+      - apk update
+      - apk add tree
+      - tree /cache
+    volumes:
+      - name: cache
+        path: /cache
+      - name: external
+        path: /mnt/external
+
+  - name: prepare
+    image: docker:24-dind
+    settings:
+      commands:
+        - docker run hello-world
+    volumes:
+      - name: external
+        path: /mnt/external
+
+  #- name: check-standardrb
+    #image: hopsoft/turbo_boost-commands:ci-${DRONE_COMMIT_SHA}
+    #pull: never
+    #commands:
+      #- shopt -s globstar
+      #- bundle exec standardrb --format progress
+    #volumes:
+      #- name: docker
+        #path: /var/lib/docker

.drone/.env.example

@@ -0,0 +1,23 @@
+# private
+DRONE_GITHUB_CLIENT_ID="SEE: https://docs.drone.io/server/reference/drone-github-client-id/"
+DRONE_GITHUB_CLIENT_SECRET="SEE: https://docs.drone.io/server/reference/drone-github-client-secret/"
+DRONE_RPC_SECRET="SEE: https://docs.drone.io/server/reference/drone-rpc-secret/"
+DRONE_UI_PASSWORD="SEE: https://docs.drone.io/runner/ssh/configuration/reference/drone-ui-password/"
+DRONE_UI_USERNAME="SEE: https://docs.drone.io/runner/ssh/configuration/reference/drone-ui-username/"
+DRONE_USER_FILTER="SEE: https://docs.drone.io/server/reference/drone-user-filter/"
+
+# public
+DRONE_DATABASE_DATASOURCE=/data/database.sqlite
+DRONE_DATABASE_DRIVER=sqlite3
+DRONE_LOGS_COLOR="true"
+DRONE_LOGS_DEBUG="true"
+DRONE_LOGS_PRETTY="true"
+DRONE_LOGS_TEXT="true"
+DRONE_RPC_HOST="server"
+DRONE_RPC_PROTO="http"
+DRONE_RUNNER_CAPACITY=1
+DRONE_RUNNER_NAME="runner"
+DRONE_RUNNER_NETWORKS="docker_primary"
+DRONE_RUNNER_VOLUMES="/home/docker/cache:/cache"
+DRONE_SERVER_HOST="server"
+DRONE_SERVER_PROTO="http"

.drone/Caddyfile

@@ -0,0 +1,3 @@
+https://cicd.hopsoft.io {
+	reverse_proxy http://server
+}

.drone/README.md

@@ -0,0 +1,53 @@
+# Drone CI (self hosted)
+
+## Initial Setup and Configuration
+
+1. [Create a GitHub OAuth application](https://docs.drone.io/server/provider/github/)
+1. Configure your DNS by setting `A/AAAA` record(s) to point to your server
+1. Optionally configure `SSL/TLS` to use [`Full (Strict)` mode](https://developers.cloudflare.com/ssl/origin-configuration/ssl-modes/full-strict/) if using a DNS service like Cloudflare
+1. `ssh` to your server
+
+   ```sh
+   ssh root@SERVER
+   ```
+
+1. Open ports `80` and `443`
+
+   ```sh
+   ufw allow 80/tcp
+   ufw allow 443/tcp
+   ufw allow 443/udp
+   ```
+
+1. Create a non-root `sudo` user _(`docker` for example)_ to run Docker
+
+   > [!NOTE] This step isn't necessary if your server already has a Docker user
+
+   ```sh
+   adduser docker
+   ```
+
+1. Switch to the new user and verify docker works
+
+   ```sh
+   su - docker
+   docker info
+   ```
+
+1. Copy the `.env`, `Caddyfile`, and `compose.yml` config files to the server _(location of your choice, `/home/docker/.config/drone` for example)_
+
+   ```sh
+   mkdir /home/docker/cache # host volume shared with the drone runner to cache docker builds
+   touch /home/docker/.env /home/docker/Caddyfile /home/docker/compose.yml /home/docker/registry.yml
+   chmod 600 /home/docker/.env
+   chown -R docker:docker /home/docker
+   # copy contents to each file
+   ```
+
+1. Update the `.env` file with your specific values
+1. Start the Docker configuration
+
+   ```sh
+   # as root
+   su docker -c "docker compose -f /home/docker/compose.yml up -d"
+   ```

.drone/compose.yml

@@ -0,0 +1,73 @@
+networks:
+  primary:
+
+volumes:
+  caddy_config:
+  caddy_data:
+  docker_registry_data:
+  drone_server_data:
+
+services:
+  registry:
+    image: registry:2
+    container_name: registry
+    networks:
+      - primary
+    restart: unless-stopped
+    volumes:
+      - docker_registry_data:/var/lib/registry
+      - /home/docker/registry.yml:/etc/docker/registry/config.yml
+
+  server:
+    image: drone/drone:2
+    container_name: server
+    depends_on:
+      registry:
+        condition: service_started
+    env_file: .env
+    networks:
+      - primary
+    restart: unless-stopped
+    healthcheck:
+      test: wget --tries=1 -S -O /dev/null http://localhost:80 || exit 1
+      interval: 30s
+      timeout: 3s
+      retries: 5
+      start_period: 10s
+    volumes:
+      - drone_server_data:/data
+      #- /home/docker/daemon.json:/etc/docker/daemon.json
+
+  runner:
+    image: drone/drone-runner-docker:1
+    container_name: runner
+    depends_on:
+      registry:
+        condition: service_started
+      server:
+        condition: service_healthy
+    env_file: .env
+    networks:
+      - primary
+    restart: unless-stopped
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock
+      #- /home/docker/daemon.json:/etc/docker/daemon.json
+
+  proxy:
+    image: caddy:2
+    container_name: proxy
+    depends_on:
+      server:
+        condition: service_healthy
+    ports:
+      - "80:80"
+      - "443:443"
+      - "443:443/udp"
+    networks:
+      - primary
+    restart: unless-stopped
+    volumes:
+      - /home/docker/Caddyfile:/etc/caddy/Caddyfile
+      - caddy_config:/config
+      - caddy_data:/data

.drone/daemon.json

@@ -0,0 +1,3 @@
+{
+  "insecure-registries" : [ "registry:5000" ]
+}

.drone/registry.yml

@@ -0,0 +1,19 @@
+version: 0.1
+http:
+  addr: 0.0.0.0:5000
+  secret: 35x03e9d593142529264643dc668d02b
+log:
+  accesslog:
+    disabled: false
+  level: debug
+storage:
+  filesystem:
+    rootdirectory: /var/lib/registry
+  delete:
+    enabled: true
+validation:
+  manifests:
+    urls:
+      allow:
+        - ^http://runner
+        - ^http://server

.github/workflows/prettier.yml

@@ -17,12 +17,12 @@ jobs:
       - name: Setup Node
         uses: actions/setup-node@v3
         with:
-          version: '16.x'
+          version: '20.x'
           cache: 'yarn'
 
       - name: Yarn install
         run: yarn install --frozen-lockfile
 
       - name: Run Prettier
-        run: yarn run prettier --write package.json prettier.config.js bin/build.mjs app/javascript/**/**/**/**/*.js test/dummy/app/javascript/**/**/**/**/*.js test/dummy/app/assets/stylesheets/**/**/**/**/*.css test/dummy/app/views/**/**/**/**/*.css
+        run: shopt -s globstar && yarn run prettier --write package.json prettier.config.js bin/build.mjs app/javascript/**/*.js test/dummy/app/assets/stylesheets/**/*.css test/dummy/app/views/**/*.css
 

.github/workflows/standardrb.yml

@@ -14,7 +14,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        ruby-version: ['2.7']
+        ruby-version: ['3.0']
 
     steps:
       - uses: actions/checkout@v3
@@ -25,4 +25,4 @@ jobs:
           bundler-cache: true
 
       - name: Run StandardRB
-        run: bundle exec standardrb --format progress
+        run: shopt -s globstar && bundle exec standardrb --format progress

.github/workflows/tests.yml

@@ -1,37 +1,44 @@
 name: Tests
 
 on:
-  pull_request:
-    branches:
-      - '*'
   push:
     branches:
       - main
+  pull_request:
+    branches:
+      - '*'
 
 jobs:
-  ruby_test:
-    name: Ruby Test Action
+  test:
     runs-on: ubuntu-latest
+    timeout-minutes: 15
     strategy:
       matrix:
         ruby-version: ['2.7', '3.0', '3.1', '3.2', '3.3']
 
     steps:
-      - uses: actions/checkout@v3
-      - name: Set up Ruby ${{ matrix.ruby-version }}
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby-version }}
-          bundler-cache: true
-
-      - name: Setup Node
-        uses: actions/setup-node@v3
-        with:
-          node-version: '16.x'
-          cache: 'yarn'
-
-      - name: Yarn install
-        run: yarn install --frozen-lockfile
-
-      - name: Run ruby tests
-        run: bundle exec rake test
+    - uses: actions/checkout@v2
+    - uses: actions/setup-node@v3
+      with:
+        node-version: 18
+
+    - name: Set up Ruby ${{ matrix.ruby-version }}
+      uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: ${{ matrix.ruby-version }}
+
+    - name: Yarn install
+      run: yarn install --frozen-lockfile --network-concurrency=3
+
+    - name: Get Playwright Version
+      id: playwright-version
+      run: echo "version=$(yarn playwright --version)" >> $GITHUB_OUTPUT
+
+    - name: Install Playwright Browsers
+      run: yarn playwright install
+
+    - name: Install Playwright Dependencies
+      run: yarn playwright install-deps
+
+    - name: Run ruby tests
+      run: bundle exec rake MINITEST_FAIL_FAST=true

.gitignore

@@ -1,6 +1,7 @@
 *.gem
 *.key
 .containers.yml
+
 /.bundle/
 /doc/
 /log/*.log
@@ -13,5 +14,7 @@
 /test/dummy/storage/
 /test/dummy/tmp/
 /tmp/
+
 Gemfile.lock
+test/dummy/app/assets/builds/
 test/dummy/app/javascript/@turbo-boost

Dockerfile

@@ -1,4 +1,4 @@
-FROM ruby:3.0.3-slim-bullseye
+FROM ruby:3.2.2-slim-bullseye
 
 RUN apt-get -y update && \
 apt-get -y --no-install-recommends install \
@@ -14,9 +14,12 @@ npm install -g npm@latest yarn
 
 RUN apt-get clean
 RUN gem update --system
-RUN bundle config set --local clean 'true'
 
-RUN mkdir -p /mnt/external/node_modules /mnt/external/yarn/.cache /mnt/external/gems /mnt/external/database
+RUN mkdir -p \
+/mnt/external/node_modules \
+/mnt/external/yarn/.cache \
+/mnt/external/gems \
+/mnt/external/database
 
 COPY . /app
 WORKDIR /app