-
Notifications
You must be signed in to change notification settings - Fork 0
181 lines (162 loc) ยท 6.62 KB
/
Copy pathcd.yml
File metadata and controls
181 lines (162 loc) ยท 6.62 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
name: EAT-SSU Server ๊ฐ๋ฐ & ์ด์ ์๋ฒ ๋ฐฐํฌ ํ์ดํ๋ผ์ธ
on:
push:
branches: [ "main", "develop" ]
permissions:
contents: read
jobs:
build:
name: Build
runs-on: ubuntu-latest
services:
mysql:
image: mysql:8.0
env:
MYSQL_DATABASE: eatssu_test
MYSQL_ROOT_PASSWORD: test
ports:
- 3306:3306
options: >-
--health-cmd="mysqladmin ping -h localhost"
--health-interval=10s
--health-timeout=5s
--health-retries=10
env:
EATSSU_DB_URL_TEST: jdbc:mysql://localhost:3306/eatssu_test
EATSSU_DB_USERNAME: root
EATSSU_DB_PASSWORD: test
EATSSU_AWS_ACCESS_KEY_DEV: dummy-access-key
EATSSU_AWS_SECRET_KEY_DEV: dummy-secret-key
EATSSU_SLACK_TOKEN: dummy-slack-token
EATSSU_DEEPL_API_KEY: dummy-deepl-key
steps:
- uses: actions/checkout@v3
- name: JDK 17 ์ค์น
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'temurin'
- name: Gradle ์บ์ฑ
uses: actions/cache@v3
with:
path: |
~/.gradle/caches
~/.gradle/wrapper
key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
restore-keys: |
${{ runner.os }}-gradle-
- name: dev ํ๋กํ ์ค์
if: github.ref_name == 'develop'
run: |
echo "spring:
profiles:
include: dev" > ./src/main/resources/application.yml
shell: bash
- name: prod ํ๋กํ ์ค์
if: github.ref_name == 'main'
run: |
echo "spring:
profiles:
include: prod" > ./src/main/resources/application.yml
shell: bash
- name: gradlew ์คํ ๊ถํ ๋ถ์ฌ
run: chmod +x gradlew
- name: ํ
์คํธ์ฉ JWT ์ํฌ๋ฆฟ ์์ฑ
run: echo "EATSSU_JWT_SECRET_TEST=$(openssl rand -base64 64 | tr -d '\n')" >> "$GITHUB_ENV"
- name: Gradle๋ก ๋น๋
run: ./gradlew build --no-daemon
- name: ๋น๋ ์ฐ์ถ๋ฌผ ํ์ธ
run: ls -lh build/libs/*.jar
- name: ๋น๋ ์ฐ์ถ๋ฌผ ์
๋ก๋
uses: actions/upload-artifact@v4
with:
name: app-jar
path: build/libs/eat-ssu.jar
deploy:
name: Deploy
needs: build
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: ๋น๋ ์ฐ์ถ๋ฌผ ๋ค์ด๋ก๋
uses: actions/download-artifact@v4
with:
name: app-jar
path: build/libs
- name: Docker Hub ๋ก๊ทธ์ธ
uses: docker/login-action@v2
with:
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.DOCKER_PASSWORD }}
- name: prod ์ฉ Docker ๋น๋ ๋ฐ ํธ์
if: github.ref_name == 'main'
run: |
docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-prod .
docker push ${{ secrets.DOCKER_REPO }}/eatssu-prod
- name: dev ์๋ฒ ์ฉ Docker ๋น๋ ๋ฐ ํธ์
if: github.ref_name == 'develop'
run: |
docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-dev .
docker push ${{ secrets.DOCKER_REPO }}/eatssu-dev
- name: prod์ ๋ฐฐํฌ
uses: appleboy/ssh-action@master
id: deploy-prod
if: github.ref_name == 'main'
with:
host: ${{ secrets.HOST_PROD }}
username: ${{ secrets.USERNAME }}
key: ${{ secrets.PROD_PRIVATE_KEY }}
port: 22
script: |
sudo docker ps
sudo docker rm -f eatssu-prod || true
PUBLISHED_CONTAINERS=$(sudo docker ps -q --filter publish=9000)
if [ -n "$PUBLISHED_CONTAINERS" ]; then sudo docker rm -f $PUBLISHED_CONTAINERS; fi
sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-prod
sudo docker run -d --name eatssu-prod --restart unless-stopped -p 9000:9000 -p 127.0.0.1:9001:9001 \
--log-driver=awslogs \
--log-opt awslogs-region=ap-northeast-2 \
--log-opt awslogs-group=prod-ec2-group \
--log-opt awslogs-stream=prod-$(date +%Y%m%d-%H%M%S) \
-e EATSSU_DB_URL_PROD="${{ secrets.EATSSU_DB_URL_PROD }}" \
-e EATSSU_DB_USERNAME="${{ secrets.EATSSU_DB_USERNAME }}" \
-e EATSSU_DB_PASSWORD="${{ secrets.EATSSU_DB_PASSWORD }}" \
-e EATSSU_JWT_SECRET_PROD="${{ secrets.EATSSU_JWT_SECRET_PROD }}" \
-e EATSSU_AWS_ACCESS_KEY_PROD="${{ secrets.EATSSU_AWS_ACCESS_KEY_PROD }}" \
-e EATSSU_AWS_SECRET_KEY_PROD="${{ secrets.EATSSU_AWS_SECRET_KEY_PROD }}" \
-e EATSSU_SLACK_TOKEN="${{ secrets.EATSSU_SLACK_TOKEN }}" \
-e EATSSU_PROD_DOMAIN="${{ secrets.EATSSU_PROD_DOMAIN }}" \
-e EATSSU_DEEPL_API_KEY="${{ secrets.EATSSU_DEEPL_API_KEY }}" \
${{ secrets.DOCKER_REPO }}/eatssu-prod
sudo docker image prune -f
- name: dev ์๋ฒ์ ๋ฐฐํฌ
uses: appleboy/ssh-action@master
id: deploy-dev
if: github.ref_name == 'develop'
with:
host: ${{ secrets.HOST_DEV }}
username: ${{ secrets.USERNAME }}
port: 22
key: ${{ secrets.DEV_PRIVATE_KEY }}
script: |
sudo docker ps
sudo docker rm -f eatssu-dev || true
PUBLISHED_CONTAINERS=$(sudo docker ps -q --filter publish=9000)
if [ -n "$PUBLISHED_CONTAINERS" ]; then sudo docker rm -f $PUBLISHED_CONTAINERS; fi
sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-dev
sudo docker run -d --name eatssu-dev --restart unless-stopped -p 9000:9000 -p 127.0.0.1:9001:9001 \
--log-driver=awslogs \
--log-opt awslogs-region=ap-northeast-2 \
--log-opt awslogs-group=dev-ec2-group \
--log-opt awslogs-stream=dev-$(date +%Y%m%d-%H%M%S) \
-e EATSSU_DB_URL_DEV="${{ secrets.EATSSU_DB_URL_DEV }}" \
-e EATSSU_DB_USERNAME="${{ secrets.EATSSU_DB_USERNAME }}" \
-e EATSSU_DB_PASSWORD="${{ secrets.EATSSU_DB_PASSWORD }}" \
-e EATSSU_JWT_SECRET_DEV="${{ secrets.EATSSU_JWT_SECRET_DEV }}" \
-e EATSSU_AWS_ACCESS_KEY_DEV="${{ secrets.EATSSU_AWS_ACCESS_KEY_DEV }}" \
-e EATSSU_AWS_SECRET_KEY_DEV="${{ secrets.EATSSU_AWS_SECRET_KEY_DEV }}" \
-e EATSSU_SLACK_TOKEN="${{ secrets.EATSSU_SLACK_TOKEN }}" \
-e EATSSU_DEV_DOMAIN="${{ secrets.EATSSU_DEV_DOMAIN }}" \
-e EATSSU_DEEPL_API_KEY="${{ secrets.EATSSU_DEEPL_API_KEY }}" \
${{ secrets.DOCKER_REPO }}/eatssu-dev
sudo docker image prune -f