feat: Platform v1 (#1)

Author: lholota

Diff for: .ansible-lint

@@ -0,0 +1,15 @@
+exclude_paths:
+  - .cache/
+  - .github/
+  - node_modules/
+  - "**/*.sops.yml"
+  - ".sops.yaml"
+
+use_default_rules: true
+
+skip_list:
+  - role-name[path]
+  - name[play]
+  - yaml[octal-values]
+
+offline: false

Diff for: .gitattributes

@@ -0,0 +1,2 @@
+* text=auto,eol=lf
+*.* text eol=lf

Diff for: .github/semantic.yml

@@ -0,0 +1,11 @@
+titleOnly: true
+types:
+  - feat
+  - fix
+  - docs
+  - refactor
+  - test
+  - build
+  - ci
+  - chore
+  - revert

Diff for: .github/workflows/cd.yml

@@ -0,0 +1,19 @@
+name: Release
+on:
+  push:
+    branches:
+      - master
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write # To add version tags
+      issues: write   # Semantic release to link issues
+    steps:
+      - uses: actions/checkout@master
+
+      - name: Create GitHub release
+        uses: docker://ghcr.io/codfish/semantic-release-action:v1.9.0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Diff for: .github/workflows/ci.yml

@@ -0,0 +1,69 @@
+name: CI
+on:
+  pull_request:
+
+jobs: 
+  validate:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@master
+
+      - name: Install pre-requisites
+        run: |
+          yarn
+          sudo wget -q -O /usr/bin/sops https://github.com/mozilla/sops/releases/download/v3.7.3/sops-v3.7.3.linux.amd64
+          sudo chmod a+x /usr/bin/sops
+          sudo pip install --upgrade pip
+          sudo pip uninstall -y ansible-core
+          pip install --force-reinstall ansible==7.6.0
+          pip install --force-reinstall ansible-lint==6.17.0
+
+      - name: Lint Ansible files
+        run: yarn lint
+
+      - name: Compare values across environments
+        run: yarn validate-values
+        env:
+          SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
+
+  deploy-lab:
+    runs-on: self-hosted
+    needs:
+      - validate
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@master
+
+  #     - name: Write ssh key
+  #       run: |
+  #         echo "${{ secrets.SSH_KEY }}" > ${{ runner.temp }}/ssh.key
+  #         chmod 0600 ${{ runner.temp }}/ssh.key
+
+  #     - name: Run Ansible playbooks
+  #       run: yarn lab:apply _all -e ansible_user=github-runner --private-key ${{ runner.temp }}/ssh.key
+  #       env:
+  #         SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
+  #         ANSIBLE_HOST_KEY_CHECKING: "false"
+
+  e2e-lab-local:
+    uses: homecentr/e2e/.github/workflows/run-e2e.yml@feat/v1 # TBA: Switch to master
+    needs:
+      - deploy-lab
+    with:
+      environment: lab
+      client: local
+      gitref: refs/heads/feat/v1 # TBA: Switch to master
+    secrets:
+      sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
+
+  e2e-lab-remote:
+    uses: homecentr/e2e/.github/workflows/run-e2e.yml@feat/v1 # TBA: Switch to master
+    needs:
+      - deploy-lab
+    with:
+      environment: lab
+      client: remote
+      gitref: refs/heads/feat/v1 # TBA: Switch to master
+    secrets:
+      sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}

Diff for: .gitignore

@@ -0,0 +1,134 @@
+*.key
+*.crt
+.images
+
+# Logs
+logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+lerna-debug.log*
+.pnpm-debug.log*
+
+# Diagnostic reports (https://nodejs.org/api/report.html)
+report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
+
+# Runtime data
+pids
+*.pid
+*.seed
+*.pid.lock
+
+# Directory for instrumented libs generated by jscoverage/JSCover
+lib-cov
+
+# Coverage directory used by tools like istanbul
+coverage
+*.lcov
+
+# nyc test coverage
+.nyc_output
+
+# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)
+.grunt
+
+# Bower dependency directory (https://bower.io/)
+bower_components
+
+# node-waf configuration
+.lock-wscript
+
+# Compiled binary addons (https://nodejs.org/api/addons.html)
+build/Release
+
+# Dependency directories
+node_modules/
+jspm_packages/
+
+# Snowpack dependency directory (https://snowpack.dev/)
+web_modules/
+
+# TypeScript cache
+*.tsbuildinfo
+
+# Optional npm cache directory
+.npm
+
+# Optional eslint cache
+.eslintcache
+
+# Optional stylelint cache
+.stylelintcache
+
+# Microbundle cache
+.rpt2_cache/
+.rts2_cache_cjs/
+.rts2_cache_es/
+.rts2_cache_umd/
+
+# Optional REPL history
+.node_repl_history
+
+# Output of 'npm pack'
+*.tgz
+
+# Yarn Integrity file
+.yarn-integrity
+
+# dotenv environment variable files
+.env
+.env.development.local
+.env.test.local
+.env.production.local
+.env.local
+
+# parcel-bundler cache (https://parceljs.org/)
+.cache
+.parcel-cache
+
+# Next.js build output
+.next
+out
+
+# Nuxt.js build / generate output
+.nuxt
+dist
+
+# Gatsby files
+.cache/
+# Comment in the public line in if your project uses Gatsby and not Next.js
+# https://nextjs.org/blog/next-9-1#public-directory-support
+# public
+
+# vuepress build output
+.vuepress/dist
+
+# vuepress v2.x temp and cache directory
+.temp
+.cache
+
+# Docusaurus cache and generated files
+.docusaurus
+
+# Serverless directories
+.serverless/
+
+# FuseBox cache
+.fusebox/
+
+# DynamoDB Local files
+.dynamodb/
+
+# TernJS port file
+.tern-port
+
+# Stores VSCode versions used for testing VSCode extensions
+.vscode-test
+
+# yarn v2
+.yarn/cache
+.yarn/unplugged
+.yarn/build-state.yml
+.yarn/install-state.gz
+.pnp.*

Diff for: .sops.yaml

@@ -0,0 +1,6 @@
+creation_rules:
+  - path_regex: ".*environments.*\\.sops\\.ya?ml$"
+    # Workaround for https://github.com/mozilla/sops/issues/1103 where sops does not currently work correctly with age via YubiKey
+    pgp: 2D1D9C803F35BBC24014C3906601E1EB2454827F # lholota
+    age: >  # GitHub
+      age1zw6c356patclh7q8cq5a99cghpzmnufgtwfaa0tmcg87a038d9ms4xpytn

Diff for: .vscode/settings.json

@@ -0,0 +1,6 @@
+{
+    "files.eol": "\n",
+    "files.exclude": {
+        "**/node_modules": true
+    }
+}