Server/.github/workflows/deploy.yml at develop · EAT-SSU/Server · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
name: EAT-SSU Server 개발 & 운영 서버 배포 파이프라인

on:
  push:
    branches: [ "main", "develop", "hotfix/deploy-prod-fail", "hotfix/deploy-dev-fail" ]

permissions:
  contents: read

jobs:
  CI-CD:
    name: CI/CD
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - name: JDK 17 설치
        uses: actions/setup-java@v3
        with:
          java-version: '17'
          distribution: 'temurin'

      - name: Gradle 캐싱
        uses: actions/cache@v3
        with:
          path: |
            ~/.gradle/caches
            ~/.gradle/wrapper
          key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
          restore-keys: |
            ${{ runner.os }}-gradle-

      - name: dev 프로필 설정
        if: github.ref_name == 'develop' || github.ref_name == 'hotfix/deploy-dev-fail'
        run: |
          echo "spring:
            profiles:
              include: dev" > ./src/main/resources/application.yml
        shell: bash

      - name: prod 프로필 설정
        if: github.ref_name == 'main' || github.ref_name == 'hotfix/deploy-prod-fail'
        run: |
          echo "spring:
            profiles:
              include: prod" > ./src/main/resources/application.yml
        shell: bash

      - name: gradlew 실행 권한 부여
        run: chmod +x gradlew

      - name: Gradle로 빌드
        run: ./gradlew clean build -x test

      - name: Docker Hub 로그인
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: prod 용 Docker 빌드 및 푸시
        if: github.ref_name == 'main' || github.ref_name == 'hotfix/deploy-prod-fail'
        run: |
          docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-prod .
          docker push ${{ secrets.DOCKER_REPO }}/eatssu-prod

      - name: dev 서버 용 Docker 빌드 및 푸시
        if: github.ref_name == 'develop' || github.ref_name == 'hotfix/deploy-dev-fail'
        run: |
          docker build -f Dockerfile -t ${{ secrets.DOCKER_REPO }}/eatssu-dev .
          docker push ${{ secrets.DOCKER_REPO }}/eatssu-dev

      - name: prod에 배포
        uses: appleboy/ssh-action@master
        id: deploy-prod
        if: github.ref_name == 'main' || github.ref_name == 'hotfix/deploy-prod-fail'
        with:
          host: ${{ secrets.HOST_PROD }}
          username: ${{ secrets.USERNAME }}
          key: ${{ secrets.PROD_PRIVATE_KEY }}
          port: 22
          script: |
            sudo docker ps
            sudo docker rm -f $(docker ps -qa)
            sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-prod
            sudo docker run -d -p 9000:9000 \
            --log-driver=awslogs \
            --log-opt awslogs-region=ap-northeast-2 \
            --log-opt awslogs-group=prod-ec2-group \
            --log-opt awslogs-stream=prod-$(date +%Y%m%d-%H%M%S) \
            -e EATSSU_DB_URL_PROD="${{ secrets.EATSSU_DB_URL_PROD }}" \
            -e EATSSU_DB_USERNAME="${{ secrets.EATSSU_DB_USERNAME }}" \
            -e EATSSU_DB_PASSWORD="${{ secrets.EATSSU_DB_PASSWORD }}" \
            -e EATSSU_JWT_SECRET_PROD="${{ secrets.EATSSU_JWT_SECRET_PROD }}" \
            -e EATSSU_AWS_ACCESS_KEY_PROD="${{ secrets.EATSSU_AWS_ACCESS_KEY_PROD }}" \
            -e EATSSU_AWS_SECRET_KEY_PROD="${{ secrets.EATSSU_AWS_SECRET_KEY_PROD }}" \
            -e EATSSU_SLACK_TOKEN="${{ secrets.EATSSU_SLACK_TOKEN }}" \
            -e EATSSU_PROD_DOMAIN="${{ secrets.EATSSU_PROD_DOMAIN }}" \
            ${{ secrets.DOCKER_REPO }}/eatssu-prod
            sudo docker image prune -f

      - name: dev 서버에 배포
        uses: appleboy/ssh-action@master
        id: deploy-dev
        if: github.ref_name == 'develop' || github.ref_name == 'hotfix/deploy-dev-fail'
        with:
          host: ${{ secrets.HOST_DEV }}
          username: ${{ secrets.USERNAME }}
          port: 22
          key: ${{ secrets.DEV_PRIVATE_KEY }}
          script: |
            sudo docker ps
            sudo docker rm -f $(docker ps -qa)
            sudo docker pull ${{ secrets.DOCKER_REPO }}/eatssu-dev
            sudo docker run -d -p 9000:9000 \
            --log-driver=awslogs \
            --log-opt awslogs-region=ap-northeast-2 \
            --log-opt awslogs-group=dev-ec2-group \
            --log-opt awslogs-stream=dev-$(date +%Y%m%d-%H%M%S) \
            -e EATSSU_DB_URL_DEV="${{ secrets.EATSSU_DB_URL_DEV }}" \
            -e EATSSU_DB_USERNAME="${{ secrets.EATSSU_DB_USERNAME }}" \
            -e EATSSU_DB_PASSWORD="${{ secrets.EATSSU_DB_PASSWORD }}" \
            -e EATSSU_JWT_SECRET_DEV="${{ secrets.EATSSU_JWT_SECRET_DEV }}" \
            -e EATSSU_AWS_ACCESS_KEY_DEV="${{ secrets.EATSSU_AWS_ACCESS_KEY_DEV }}" \
            -e EATSSU_AWS_SECRET_KEY_DEV="${{ secrets.EATSSU_AWS_SECRET_KEY_DEV }}" \
            -e EATSSU_SLACK_TOKEN="${{ secrets.EATSSU_SLACK_TOKEN }}" \
            -e EATSSU_DEV_DOMAIN="${{ secrets.EATSSU_DEV_DOMAIN }}" \
            ${{ secrets.DOCKER_REPO }}/eatssu-dev
            sudo docker image prune -f