Merge pull request #163 from CEOS-Developers/refact/os-migration

chanhyeokseo · web-flow · commit f8f88f1a3a14 · 2023-12-26T12:20:58.000+09:00
[refact] linux os로 마이그레이션
diff --git a/.github/workflows/deploy_dev.yml b/.github/workflows/deploy_dev.yml
@@ -10,14 +10,17 @@ permissions:
 
 jobs:
   build:
-    # runs-on을 ubuntu-lastest에서 변경했음
-    # 참고자료 https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idruns-on
-    runs-on: linux
+    runs-on: ubuntu-latest
     steps:
       # 기본 체크아웃
       - name: Checkout
         uses: actions/checkout@v3
 
+      - name: Make application-secret.yml without env
+        run: |
+          touch ./src/main/resources/application-secret.yml
+          echo "${{ secrets.APPLICATION_SECRET_DEV }}" > ./src/main/resources/application-secret.yml
+
       # JDK version 설정
       - name: Set up JDK 17
         uses: actions/setup-java@v3
@@ -30,20 +33,29 @@ jobs:
         run: ./gradlew bootJar
 
       - name: Login to DockerHub
-        uses: docker/login-action@v1
+        uses: docker/login-action@v3
         with:
           username: ${{ secrets.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - name: Docker build & push
-        uses: docker/build-push-action@v2
+      - name: Docker app build & push
+        uses: docker/build-push-action@v5
         with:
           context: .
           file: ./Dockerfile
           platforms: linux/amd64
           push: true
           tags: ${{ secrets.DOCKER_USERNAME }}/ceos-backend-dev
 
+      - name: Docker nginx build & push
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          file: ./config/nginx/Dockerfile
+          platforms: linux/amd64
+          push: true
+          tags: ${{ secrets.DOCKER_USERNAME }}/ceos-nginx-dev
+
       # ssh 접근 후 docker 이미지 pull 및 컨테이너 재시작
       - name: executing remote ssh commands using password
         uses: appleboy/ssh-action@master
@@ -55,13 +67,14 @@ jobs:
             cd /home/ec2-user/ceos
             
             sudo touch .env
-            echo "${{ secrets.ENV_DEV }}" > .env
+            echo "${{ secrets.ENV_DEV }}" | sudo tee .env > /dev/null
             
-            sudo curl -o docker-compose.yml https://raw.githubusercontent.com/CEOS-Developers/CEOS-BE/dev/docker-compose.dev.yml
+            sudo curl -o docker-compose.dev.yml https://raw.githubusercontent.com/CEOS-Developers/CEOS-BE/dev/docker-compose.dev.yml
             
             sudo chmod 666 /var/run/docker.sock
             sudo docker rm -f $(docker ps -qa)
             sudo docker pull ${{ secrets.DOCKER_USERNAME }}/ceos-backend-dev
+            sudo docker pull ${{ secrets.DOCKER_USERNAME }}/ceos-nginx-dev
             docker-compose -f docker-compose.dev.yml --env-file ./.env up -d
             docker image prune -f
 
diff --git a/.github/workflows/deploy_prod.yml b/.github/workflows/deploy_prod.yml
@@ -16,94 +16,174 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v3
 
+      - name: Make application-secret.yml without env
+        run: |
+          touch ./src/main/resources/application-secret.yml
+          echo "${{ secrets.APPLICATION_SECRET }}" > ./src/main/resources/application-secret.yml
+
       # JDK version 설정
       - name: Set up JDK 17
         uses: actions/setup-java@v3
         with:
           java-version: '17'
           distribution: 'temurin'
 
-      # 그래들 캐싱
-      - name: Gradle Caching
-        uses: actions/cache@v3
-        with:
-          path: |
-            ~/.gradle/caches
-            ~/.gradle/wrapper
-          key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
-          restore-keys: |
-            ${{ runner.os }}-gradle-
-
-      - name: Make application-secret.yml without env
-        run: |
-          touch ./src/main/resources/application-secret.yml
-          echo "${{ secrets.APPLICATION_SECRET }}" > ./src/main/resources/application-secret.yml
-        env:
-          PROPERTIES_DEV: ${{ secrets.APPLICATION_SECRET }}
-
-      - name: Make env
-        run: |
-          touch .env
-          echo "${{ secrets.ENV_PROD }}" > .env
-        env:
-          PROPERTIES_DEV: ${{ secrets.ENV_PROD }}
-
-      # Gradle build
+      ## gradle build
       - name: Build with Gradle
-        run: ./gradlew build -x test :spotlessApply
-
-      - name: Docker meta
-        id: docker_meta
-        uses: crazy-max/ghaction-docker-meta@v1
-        with:
-          images: ceos/ceos-server-dev
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v1
+        run: ./gradlew bootJar
 
       - name: Login to DockerHub
-        uses: docker/login-action@v1
+        uses: docker/login-action@v3
         with:
           username: ${{ secrets.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - name: Docker build & push
-        uses: docker/build-push-action@v2
+      - name: Docker app build & push
+        uses: docker/build-push-action@v5
         with:
           context: .
           file: ./Dockerfile
           platforms: linux/amd64
           push: true
           tags: ${{ secrets.DOCKER_USERNAME }}/ceos-backend
 
-      - name: create remote directory
-        uses: appleboy/ssh-action@master
+      - name: Docker nginx build & push
+        uses: docker/build-push-action@v5
         with:
-          host: ${{ secrets.EC2_HOST_PROD }}
-          username: ubuntu
-          key: ${{ secrets.EC2_KEY_PROD }}
-          script: mkdir -p ~/srv/ubuntu/ceos_web_dev
-
-      - name: copy source via ssh key
-        uses: burnett01/rsync-deployments@4.1
-        with:
-          switches: -avzr --delete
-          remote_path: ~/srv/ubuntu/
-          remote_host: ${{ secrets.EC2_HOST_PROD }}
-          remote_user: ubuntu
-          remote_key: ${{ secrets.EC2_KEY_PROD }}
+          context: .
+          file: ./config/nginx/Dockerfile
+          platforms: linux/amd64
+          push: true
+          tags: ${{ secrets.DOCKER_USERNAME }}/ceos-nginx
 
+      # ssh 접근 후 docker 이미지 pull 및 컨테이너 재시작
       - name: executing remote ssh commands using password
         uses: appleboy/ssh-action@master
         with:
           host: ${{ secrets.EC2_HOST_PROD }}
-          username: ubuntu
+          username: ec2-user #  ubuntu 에서 변경
           key: ${{ secrets.EC2_KEY_PROD }}
           script: |
-            sh ~/srv/ubuntu/config/scripts/deploy.sh
-            sudo docker stop $(sudo docker ps -a -q)
-            sudo docker rm $(sudo docker ps -a -q)
-            sudo docker rmi $(sudo docker images -q)
-            sudo docker-compose -f ~/srv/ubuntu/docker-compose.yml pull
-            sudo docker-compose -f ~/srv/ubuntu/docker-compose.yml up --build -d
-
+            cd /home/ec2-user/ceos
+            
+            sudo touch .env
+            echo "${{ secrets.ENV_PROD }}" | sudo tee .env > /dev/null
+            
+            sudo curl -o docker-compose.yml https://raw.githubusercontent.com/CEOS-Developers/CEOS-BE/main/docker-compose.yml
+            
+            sudo chmod 666 /var/run/docker.sock
+            sudo docker rm -f $(docker ps -qa)
+            sudo docker pull ${{ secrets.DOCKER_USERNAME }}/ceos-backend
+            sudo docker pull ${{ secrets.DOCKER_USERNAME }}/ceos-nginx
+            docker-compose -f docker-compose.yml --env-file ./.env up -d
+            docker image prune -f
+
+#name: Deploy to EC2
+#
+#on:
+#  push:
+#    branches:
+#      - main
+#
+#permissions:
+#  contents: read
+#
+#jobs:
+#  build:
+#    runs-on: ubuntu-latest
+#    steps:
+#      # 기본 체크아웃
+#      - name: Checkout
+#        uses: actions/checkout@v3
+#
+#      # JDK version 설정
+#      - name: Set up JDK 17
+#        uses: actions/setup-java@v3
+#        with:
+#          java-version: '17'
+#          distribution: 'temurin'
+#
+#      # 그래들 캐싱
+#      - name: Gradle Caching
+#        uses: actions/cache@v3
+#        with:
+#          path: |
+#            ~/.gradle/caches
+#            ~/.gradle/wrapper
+#          key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
+#          restore-keys: |
+#            ${{ runner.os }}-gradle-
+#
+#      - name: Make application-secret.yml without env
+#        run: |
+#          touch ./src/main/resources/application-secret.yml
+#          echo "${{ secrets.APPLICATION_SECRET }}" > ./src/main/resources/application-secret.yml
+#        env:
+#          PROPERTIES_DEV: ${{ secrets.APPLICATION_SECRET }}
+#
+#      - name: Make env
+#        run: |
+#          touch .env
+#          echo "${{ secrets.ENV_PROD }}" > .env
+#        env:
+#          PROPERTIES_DEV: ${{ secrets.ENV_PROD }}
+#
+#      # Gradle build
+#      - name: Build with Gradle
+#        run: ./gradlew build -x test :spotlessApply
+#
+#      - name: Docker meta
+#        id: docker_meta
+#        uses: crazy-max/ghaction-docker-meta@v1
+#        with:
+#          images: ceos/ceos-server-dev
+#
+#      - name: Set up Docker Buildx
+#        uses: docker/setup-buildx-action@v1
+#
+#      - name: Login to DockerHub
+#        uses: docker/login-action@v1
+#        with:
+#          username: ${{ secrets.DOCKER_USERNAME }}
+#          password: ${{ secrets.DOCKER_PASSWORD }}
+#
+#      - name: Docker build & push
+#        uses: docker/build-push-action@v2
+#        with:
+#          context: .
+#          file: ./Dockerfile
+#          platforms: linux/amd64
+#          push: true
+#          tags: ${{ secrets.DOCKER_USERNAME }}/ceos-backend
+#
+#      - name: create remote directory
+#        uses: appleboy/ssh-action@master
+#        with:
+#          host: ${{ secrets.EC2_HOST_PROD }}
+#          username: ubuntu
+#          key: ${{ secrets.EC2_KEY_PROD }}
+#          script: mkdir -p ~/srv/ubuntu/ceos_web_dev
+#
+#      - name: copy source via ssh key
+#        uses: burnett01/rsync-deployments@4.1
+#        with:
+#          switches: -avzr --delete
+#          remote_path: ~/srv/ubuntu/
+#          remote_host: ${{ secrets.EC2_HOST_PROD }}
+#          remote_user: ubuntu
+#          remote_key: ${{ secrets.EC2_KEY_PROD }}
+#
+#      - name: executing remote ssh commands using password
+#        uses: appleboy/ssh-action@master
+#        with:
+#          host: ${{ secrets.EC2_HOST_PROD }}
+#          username: ubuntu
+#          key: ${{ secrets.EC2_KEY_PROD }}
+#          script: |
+#            sh ~/srv/ubuntu/config/scripts/deploy.sh
+#            sudo docker stop $(sudo docker ps -a -q)
+#            sudo docker rm $(sudo docker ps -a -q)
+#            sudo docker rmi $(sudo docker images -q)
+#            sudo docker-compose -f ~/srv/ubuntu/docker-compose.yml pull
+#            sudo docker-compose -f ~/srv/ubuntu/docker-compose.yml up --build -d
+#
diff --git a/config/nginx/Dockerfile b/config/nginx/Dockerfile
@@ -1,2 +1,2 @@
 FROM nginx:1.23.2
-COPY ./default.conf /etc/nginx/conf.d/default.conf
+COPY ./config/nginx/default.conf /etc/nginx/conf.d/default.conf
diff --git a/docker-compose.dev.yml b/docker-compose.dev.yml
@@ -11,12 +11,10 @@ services:
       - "8080"
 
   nginx:
+    image: ceos17/ceos-nginx-dev
     depends_on:
       - backend
     restart: always
-    build:
-      dockerfile: Dockerfile
-      context: ./config/nginx
     ports:
       - "80:80"
 

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`	`1`	`FROM nginx:1.23.2`
`2`		`-COPY ./default.conf /etc/nginx/conf.d/default.conf`
	`2`	`+COPY ./config/nginx/default.conf /etc/nginx/conf.d/default.conf`