Use direct deploy flow without Tailscale

Directly connect to the public IP of the server, which is static anyways.

.github/workflows/deploy-homelab.yml

@@ -1,4 +1,5 @@
 name: "Deploy to Homelab"
+
 on:
   push:
     branches:
@@ -8,17 +9,37 @@ on:
 jobs:
   deploy:
     runs-on: ubuntu-latest
+
     steps:
     - name: Check out repository
       uses: actions/checkout@v3
 
-      - name: Copy files to drop directory
+    - name: Set up SSH key
       run: |
-          cp -r ./* /opt/deploy-drop/${{ vars.DIRECTORY_NAME }}/
+        mkdir -p ~/.ssh
+        echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/id_ed25519
+        chmod 600 ~/.ssh/id_ed25519
+        ssh-keyscan ${{ vars.HOST }} >> ~/.ssh/known_hosts
 
-      - name: Trigger deploy
+    - name: Remove directory from server
       run: |
-          curl -X POST http://localhost:9000/hooks/deploy \
+        ssh -i ~/.ssh/id_ed25519 ${{ vars.USERNAME }}@${{ vars.HOST }} << 'EOF'
-            -H "Authorization: Bearer ${{ secrets.DEPLOY_TOKEN }}"
+          rm -rf ~/${{ vars.DIRECTORY_NAME }}
-            -H "X-JWT-Secret: ${{ secrets.JWT_SECRET }}"
+        EOF
-            -H "X-Directory-Name: ${{ vars.DIRECTORY_NAME }}"
+
+    # Avoid needing to set up SSH access to GitHub for this user
+    - name: Transfer repository files to server
+      run: |
+        scp -i ~/.ssh/id_ed25519 -r ./* ${{ vars.USERNAME }}@${{ vars.HOST }}:~/${{ vars.DIRECTORY_NAME }}
+
+    - name: Deploy on server with Docker
+      run: |
+        ssh -i ~/.ssh/id_ed25519 ${{ vars.USERNAME }}@${{ vars.HOST }} << 'EOF'
+          cd ~/${{ vars.DIRECTORY_NAME }}
+          export TRUST_PROXY=true
+          export COOKIE_SECURE=true
+          export JWT_SECRET=${{ secrets.JWT_SECRET }}
+          docker compose -f docker-compose.yml down
+          docker compose -f docker-compose.yml up -d --build
+        EOF
+