From 00c2d4ecfd3a23d474738ff47655c79fb92b4f00 Mon Sep 17 00:00:00 2001
From: Alex Shevchuk <shevchuk.aa@phystech.edu>
Date: Mon, 18 Aug 2025 22:07:10 +0300
Subject: [PATCH] 14

---
 .gitea/workflows/deploy_staging.yaml | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/.gitea/workflows/deploy_staging.yaml b/.gitea/workflows/deploy_staging.yaml
index 977ab34..f6fd63b 100644
--- a/.gitea/workflows/deploy_staging.yaml
+++ b/.gitea/workflows/deploy_staging.yaml
@@ -96,7 +96,9 @@ jobs:
 
       - name: Deploy to Swarm
         env:
-          SWARM_MANAGER_HOST: 158.160.144.159:2376
+          DOCKER_HOST: tcp://${{ secrets.SWARM_MANAGER_HOST }}:2376
+          DOCKER_TLS_VERIFY: 1
+          DOCKER_CERT_PATH: ~/.docker/swarm
         run: |
           if [ "${{ inputs.version }}" == "latest" ]; then
             VERSION="latest"
@@ -107,11 +109,13 @@ jobs:
           echo "Deploying version $VERSION to ${{ inputs.environment }}..."
           echo "Log level: ${{ inputs.logLevel }}"
 
+          mkdir -p ~/.docker/swarm
+          echo "${{ secrets.SWARM_CA_PEM }}" > ~/.docker/swarm/ca.pem
+          echo "${{ secrets.SWARM_CERT_PEM }}" > ~/.docker/swarm/cert.pem
+          echo "${{ secrets.SWARM_KEY_PEM }}" > ~/.docker/swarm/key.pem
+          chmod 600 ~/.docker/swarm/*.pem
+
           docker -H $SWARM_MANAGER_HOST \
-            --tlsverify \
-            --tlscacert ${{ secrets.SWARM_CA_PEM }} \
-            --tlscert ${{ secrets.SWARM_CERT_PEM }} \
-            --tlskey ${{ secrets.SWARM_KEY_PEM }} \
             stack deploy \
             --with-registry-auth \
             -c docker-compose.staging.yaml \