feat(cd): 自動同步 ops 腳本到 188 (DEPLOY_SSH_KEY_188)

新增 Sync Ops Scripts to 188 步驟： - 每次 CD 自動 scp docker-health-monitor.sh + pg-backup.sh 到 ollama@188 - 使用新 Gitea Secret DEPLOY_SSH_KEY_188 (ed25519, gitea-cd-deploy-188) - continue-on-error:true 不阻塞主要部署流程 188 authorized_keys 已加入 gitea-cd-deploy-188 public key。 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-09 09:51:21 +08:00
parent c26c4030e4
commit c51d7ef336
1 changed files with 32 additions and 0 deletions
--- a/.gitea/workflows/cd.yaml
+++ b/.gitea/workflows/cd.yaml
@@ -359,6 +359,38 @@ jobs:
          fi
          DEPLOY

+      # 2026-04-09 Claude Sonnet 4.6: Sprint 5.2 — 同步 ops 腳本到 188 (ollama user)
+      # DEPLOY_SSH_KEY_188 = gitea-cd-deploy-188 (ed25519，只有 188 authorized_keys)
+      # 腳本: docker-health-monitor.sh + pg-backup.sh (感知層 + 備份)
+      - name: Sync Ops Scripts to 188
+        continue-on-error: true
+        env:
+          SSH_KEY_188: ${{ secrets.DEPLOY_SSH_KEY_188 }}
+        run: |
+          mkdir -p ~/.ssh
+          echo "$SSH_KEY_188" > ~/.ssh/deploy_key_188
+          chmod 600 ~/.ssh/deploy_key_188
+          ssh-keyscan 192.168.0.188 >> ~/.ssh/known_hosts 2>/dev/null
+
+          # 同步 docker-health-monitor.sh
+          scp -i ~/.ssh/deploy_key_188 \
+            scripts/ops/docker-health-monitor.sh \
+            ollama@192.168.0.188:~/awoooi-ops/docker-health-monitor.sh \
+            && echo "✅ docker-health-monitor.sh 已同步" \
+            || echo "⚠️ docker-health-monitor.sh 同步失敗"
+
+          # 同步 pg-backup.sh
+          scp -i ~/.ssh/deploy_key_188 \
+            scripts/ops/pg-backup.sh \
+            ollama@192.168.0.188:~/awoooi-ops/pg-backup.sh \
+            && echo "✅ pg-backup.sh 已同步" \
+            || echo "⚠️ pg-backup.sh 同步失敗"
+
+          # 確保執行權限
+          ssh -i ~/.ssh/deploy_key_188 ollama@192.168.0.188 \
+            "chmod +x ~/awoooi-ops/docker-health-monitor.sh ~/awoooi-ops/pg-backup.sh && echo '✅ 權限設定完成'" \
+            || echo "⚠️ 權限設定失敗"
+
      # Phase O-4.5 2026-04-02: Alert Chain Smoke Test (Wave A.6 + B.2 ADR-037)
      # 驗證告警鏈路 E2E: API Health + Webhook + OTEL + Event Exporter
      # 2026-04-05 Claude Code cache優化: 使用 /opt/api-venv (已有 requests)，移除 Setup Python Tools step