Merge branch 'main' of https://github.com/EAT-SSU/Server into dev #15
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI/CD github Actions & Docker | |
| on: | |
| push: | |
| branches: [ "main", "dev" ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| CI-CD: | |
| runs-on: ubuntu-latest | |
| steps: | |
| # JDK setting - github actions์์ ์ฌ์ฉํ JDK ์ค์ (aws ๊ณผ project์ java ๋ฒ์ ๊ณผ ๋ณ๋๋ก ๊ด๋ฆฌ) | |
| - uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'temurin' | |
| ## gradle caching (๋น๋ ์๊ฐ ์ค์ด๊ธฐ) | |
| - name: Gradle Caching | |
| uses: actions/cache@v3 | |
| with: | |
| path: | | |
| ~/.gradle/caches | |
| ~/.gradle/wrapper | |
| key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }} | |
| restore-keys: | | |
| ${{ runner.os }}-gradle- | |
| # ํ๊ฒฝ๋ณ yml ํ์ผ ์์ฑ(1) - dev | |
| - name: make dev server application.yml | |
| if: contains(github.ref, 'dev') | |
| run: | | |
| cd ./src/main/resources | |
| touch ./application.yml | |
| echo "${{ secrets.YML_DEV }}" > ./application.yml | |
| shell: bash | |
| # ํ๊ฒฝ๋ณ yml ํ์ผ ์์ฑ(2) - prod | |
| - name: make prod server application.yml | |
| if: contains(github.ref, 'main') | |
| run: | | |
| cd ./src/main/resources | |
| touch ./application.yml | |
| echo "${{ secrets.YML_PROD }}" > ./application.yml | |
| shell: bash | |
| # gradle chmod | |
| - name: Grant execute permission for gradlew | |
| run: chmod +x gradlew | |
| # gradle build | |
| - name: Build with Gradle | |
| run: ./gradlew clean build -x test | |
| # docker login | |
| - name: Docker Hub Login | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKER_USERNAME }} | |
| password: ${{ secrets.DOCKER_PASSWORD }} | |
| # docker build & push to production | |
| - name: Docker build & push to prod | |
| if: contains(github.ref, 'main') | |
| run: | | |
| docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-prod . | |
| docker push ${{ secrets.DOCKER_REPO }}/eatssu-prod | |
| # docker build & push to develop | |
| - name: Docker build & push to dev server | |
| if: contains(github.ref, 'dev') | |
| run: | | |
| docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-dev . | |
| docker push ${{ secrets.DOCKER_REPO }}/eatssu-dev | |
| ## deploy to production | |
| - name: Deploy to prod | |
| uses: appleboy/ssh-action@master | |
| id: deploy-prod | |
| if: contains(github.ref, 'main') | |
| with: | |
| host: ${{ secrets.HOST_PROD }} # EC2 ํผ๋ธ๋ฆญ IPv4 DNS | |
| username: ubuntu | |
| key: ${{ secrets.PROD_PRIVATE_KEY }} | |
| envs: GITHUB_SHA | |
| script: | | |
| sudo docker ps | |
| sudo docker rm -f $(docker ps -qa) | |
| sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-prod | |
| sudo docker run -d -p 9000:9000 ${{ secrets.DOCKER_REPO }}/eatssu-prod | |
| sudo docker image prune -f | |
| ## deploy to develop | |
| - name: Deploy to dev server | |
| uses: appleboy/ssh-action@master | |
| id: deploy-dev | |
| if: contains(github.ref, 'dev') | |
| with: | |
| host: ${{ secrets.HOST_DEV }} # EC2 ํผ๋ธ๋ฆญ IPv4 DNS | |
| username: ${{ secrets.USERNAME }} # ubuntu | |
| port: 22 | |
| key: ${{ secrets.DEV_PRIVATE_KEY }} | |
| script: | | |
| sudo docker ps | |
| sudo docker rm -f $(docker ps -qa) | |
| sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-dev | |
| sudo docker run -d -p 9000:9000 ${{ secrets.DOCKER_REPO }}/eatssu-dev | |
| sudo docker image prune -f |