add jq smoke check with retry

Co-authored-by: Cursor <cursoragent@cursor.com>
add unit tests and run in workflow
2026-02-06 01:35:56 +03:00 · 2026-02-06 01:32:21 +03:00 · 2026-02-06 01:29:01 +03:00 · 2026-02-06 01:22:24 +03:00 · 2026-02-06 00:47:35 +03:00 · 2026-02-06 00:44:11 +03:00
6 changed files with 92 additions and 32 deletions
--- a/.gitea/workflows/deploy-my-vpn.yml
+++ b/.gitea/workflows/deploy-my-vpn.yml
@@ -9,22 +9,42 @@ jobs:
  deploy:
    runs-on: ubuntu-latest
    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Unit tests
+        run: |
+          python3 -m unittest discover -s tests
+
+      - name: Install jq
+        run: |
+          apt-get update -y
+          apt-get install -y jq
+
      - name: Deploy via SSH
        env:
          VPN_HOST: ${{ secrets.VPN_HOST }}
          VPN_USER: ${{ secrets.VPN_USER }}
-          VPN_SSH_KEY_B64: ${{ secrets.TEST_KEY_B64 }}
+          VPN_SSH_KEY: ${{ secrets.TEST_KEY }}
        run: |
          set -euo pipefail
          mkdir -p ~/.ssh
          chmod 700 ~/.ssh
-          printf '%s' "$VPN_SSH_KEY_B64" | base64 -d > ~/.ssh/id_ci_runner
+          printf '%s' "$VPN_SSH_KEY" > ~/.ssh/id_ci_runner
          chmod 600 ~/.ssh/id_ci_runner
          VPN_USER="$(printf '%s' "$VPN_USER" | tr -d '\r\n')"
          VPN_HOST="$(printf '%s' "$VPN_HOST" | tr -d '\r\n')"
          echo "using user=${VPN_USER} host=${VPN_HOST}"
          ssh-keyscan -H "$VPN_HOST" >> ~/.ssh/known_hosts || true
          ssh-keygen -lf ~/.ssh/id_ci_runner
-          ssh -vvv -o IdentitiesOnly=yes -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i ~/.ssh/id_ci_runner "${VPN_USER}@${VPN_HOST}" "echo ok"
+          ssh -o BatchMode=yes -o ConnectTimeout=10 -o IdentitiesOnly=yes -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i ~/.ssh/id_ci_runner "${VPN_USER}@${VPN_HOST}" "echo ok"

-          ssh -o IdentitiesOnly=yes -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i ~/.ssh/id_ci_runner "${VPN_USER}@${VPN_HOST}" "cd /srv/ip-ua && git fetch --all && git reset --hard origin/main && bash deploy/my-vpn/deploy.sh"
+          ssh -o BatchMode=yes -o ConnectTimeout=10 -o IdentitiesOnly=yes -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i ~/.ssh/id_ci_runner "${VPN_USER}@${VPN_HOST}" "cd /srv/ip-ua && git fetch --all && git reset --hard origin/main && bash deploy/my-vpn/deploy.sh"
+          for i in $(seq 1 10); do
+            if curl -fsS "http://${VPN_HOST}" -o /tmp/resp.json; then
+              break
+            fi
+            sleep 2
+          done
+          jq -e '.ip and .user_agent and .method and .path and .timestamp' /tmp/resp.json >/dev/null
+          echo "smoke ok"
--- a/README.md
+++ b/README.md
@@ -3,19 +3,3 @@
 ok

 # ci test
-
-# ci test 2
-
-# ci test 3
-
-# ci test 4
-
-# ci test 5
-
-# ci test 6
-
-# ci test 7
-
-# ci test 8
-
-# ci test 9
--- a/app.py
+++ b/app.py
@@ -5,20 +5,32 @@ from datetime import datetime, timezone
 from http.server import BaseHTTPRequestHandler, HTTPServer


+def build_payload(headers, client_ip, method, path, now=None):
+    if now is None:
+        now = datetime.now(timezone.utc)
+
+    forwarded = headers.get("X-Forwarded-For", "")
+    ip = forwarded.split(",")[0].strip() if forwarded else client_ip
+
+    return {
+        "ip": ip,
+        "user_agent": headers.get("User-Agent", ""),
+        "method": method,
+        "path": path,
+        "timestamp": now.isoformat(),
+        "headers": dict(headers),
+    }
+
+
 class Handler(BaseHTTPRequestHandler):
    def _write_json(self, status=200):
-        client_ip = self.headers.get("X-Forwarded-For", "").split(",")[0].strip()
-        if not client_ip:
-            client_ip = self.client_address[0]
-
-        payload = {
-            "ip": client_ip,
-            "user_agent": self.headers.get("User-Agent", ""),
-            "method": self.command,
-            "path": self.path,
-            "timestamp": datetime.now(timezone.utc).isoformat(),
-            "headers": {k: v for k, v in self.headers.items()},
-        }
+        headers = {k: v for k, v in self.headers.items()}
+        payload = build_payload(
+            headers=headers,
+            client_ip=self.client_address[0],
+            method=self.command,
+            path=self.path,
+        )

        data = json.dumps(payload, ensure_ascii=False).encode("utf-8")
        self.send_response(status)
--- a/3
+++ b/3
@@ -0,0 +1,3 @@
+for push
+for push
+for push
--- a/1
+++ b/1
@@ -0,0 +1 @@
+h
--- a/tests/test_app.py
+++ b/tests/test_app.py
@@ -0,0 +1,40 @@
+import unittest
+from datetime import datetime, timezone
+
+from app import build_payload
+
+
+class TestBuildPayload(unittest.TestCase):
+    def test_uses_forwarded_ip(self):
+        now = datetime(2026, 2, 6, 0, 0, 0, tzinfo=timezone.utc)
+        payload = build_payload(
+            headers={"X-Forwarded-For": "10.0.0.1, 10.0.0.2", "User-Agent": "ua"},
+            client_ip="192.168.0.10",
+            method="GET",
+            path="/",
+            now=now,
+        )
+        self.assertEqual(payload["ip"], "10.0.0.1")
+        self.assertEqual(payload["user_agent"], "ua")
+        self.assertEqual(payload["method"], "GET")
+        self.assertEqual(payload["path"], "/")
+        self.assertEqual(payload["timestamp"], "2026-02-06T00:00:00+00:00")
+
+    def test_falls_back_to_client_ip(self):
+        now = datetime(2026, 2, 6, 0, 0, 0, tzinfo=timezone.utc)
+        payload = build_payload(
+            headers={"User-Agent": "ua"},
+            client_ip="192.168.0.10",
+            method="POST",
+            path="/submit",
+            now=now,
+        )
+        self.assertEqual(payload["ip"], "192.168.0.10")
+        self.assertEqual(payload["user_agent"], "ua")
+        self.assertEqual(payload["method"], "POST")
+        self.assertEqual(payload["path"], "/submit")
+        self.assertEqual(payload["timestamp"], "2026-02-06T00:00:00+00:00")
+
+
+if __name__ == "__main__":
+    unittest.main()
Author	SHA1	Message	Date
Alexander Sergeevich	5e7dc3be49	add jq smoke check with retry All checks were successful Deploy to my-vpn / deploy (push) Successful in 34s Details Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-06 01:35:56 +03:00
Alexander Sergeevich	4af4eff04f	add unit tests and run in workflow Some checks failed Deploy to my-vpn / deploy (push) Failing after 34s Details Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-06 01:32:21 +03:00
Alexander Sergeevich	48aa0e4fe5	remove ssh verbosity and add smoke test All checks were successful Deploy to my-vpn / deploy (push) Successful in 15s Details Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-06 01:29:01 +03:00
Alexander Sergeevich	28a3ec4968	use raw ssh key secret All checks were successful Deploy to my-vpn / deploy (push) Successful in 14s Details Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-06 01:22:24 +03:00
Alexander Sergeevich	bc51470a33	add ssh timeouts and batchmode Some checks failed Deploy to my-vpn / deploy (push) Failing after 7s Details Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-06 00:47:35 +03:00
Alexander Agakshiev	0efc6ef560	for push Some checks failed Deploy to my-vpn / deploy (push) Has been cancelled Details	2026-02-06 00:44:11 +03:00
Alexander Agakshiev	3e57ab3838	for push	2026-02-06 00:42:03 +03:00