完善GitHub设置：添加CI/CD、Docker支持、组织README

Author: zyh616598128

.github/workflows/ci-cd.yml

@@ -0,0 +1,163 @@
+name: Java CI/CD Pipeline
+
+on:
+  push:
+    branches: [ main, develop ]
+  pull_request:
+    branches: [ main ]
+  schedule:
+    - cron: '0 2 * * *'  # 每天凌晨2点运行
+
+jobs:
+  build-and-test:
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+      
+    - name: Set up JDK 11
+      uses: actions/setup-java@v3
+      with:
+        java-version: '11'
+        distribution: 'temurin'
+        cache: maven
+        
+    - name: Cache Maven dependencies
+      uses: actions/cache@v3
+      with:
+        path: ~/.m2
+        key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+        restore-keys: |
+          ${{ runner.os }}-maven-
+          
+    - name: Build with Maven
+      run: ./mvnw clean compile -DskipTests
+      
+    - name: Run tests
+      run: ./mvnw test
+      env:
+        OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
+        
+    - name: Run integration tests
+      run: ./mvnw verify -DskipITs=false
+      if: github.event_name == 'push' && github.ref == 'refs/heads/main'
+      
+    - name: Code coverage
+      uses: codecov/codecov-action@v3
+      with:
+        file: ./target/site/jacoco/jacoco.xml
+        fail_ci_if_error: false
+        
+    - name: Build Docker image
+      run: |
+        docker build -t intellidev/java-ai-starter:latest .
+      if: github.event_name == 'push' && github.ref == 'refs/heads/main'
+      
+    - name: Security scan
+      uses: snyk/actions/maven@master
+      env:
+        SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      continue-on-error: true
+      
+    - name: Upload build artifacts
+      uses: actions/upload-artifact@v3
+      with:
+        name: java-artifacts
+        path: target/*.jar
+      if: github.event_name == 'push' && github.ref == 'refs/heads/main'
+
+  quality-check:
+    runs-on: ubuntu-latest
+    needs: build-and-test
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+      
+    - name: SonarCloud Scan
+      uses: SonarSource/sonarcloud-github-action@master
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+        
+    - name: Checkstyle
+      run: ./mvnw checkstyle:check
+      
+    - name: PMD analysis
+      run: ./mvnw pmd:check
+      
+    - name: SpotBugs analysis
+      run: ./mvnw spotbugs:check
+
+  deploy:
+    runs-on: ubuntu-latest
+    needs: [build-and-test, quality-check]
+    if: github.event_name == 'push' && github.ref == 'refs/heads/main'
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+      
+    - name: Set up JDK 11
+      uses: actions/setup-java@v3
+      with:
+        java-version: '11'
+        distribution: 'temurin'
+        
+    - name: Build package
+      run: ./mvnw clean package -DskipTests
+      
+    - name: Login to DockerHub
+      uses: docker/login-action@v2
+      with:
+        username: ${{ secrets.DOCKER_USERNAME }}
+        password: ${{ secrets.DOCKER_PASSWORD }}
+        
+    - name: Build and push Docker image
+      uses: docker/build-push-action@v4
+      with:
+        context: .
+        push: true
+        tags: |
+          intellidev/java-ai-starter:latest
+          intellidev/java-ai-starter:${{ github.sha }}
+          
+    - name: Deploy to staging
+      run: |
+        echo "Deploying to staging environment..."
+        # 这里添加你的部署脚本
+        # 例如：kubectl apply -f k8s/
+      env:
+        KUBECONFIG: ${{ secrets.KUBECONFIG_STAGING }}
+        
+    - name: Run smoke tests
+      run: |
+        echo "Running smoke tests..."
+        # 这里添加冒烟测试脚本
+        
+    - name: Deploy to production
+      if: success()
+      run: |
+        echo "Deploying to production..."
+        # 这里添加生产环境部署脚本
+      env:
+        KUBECONFIG: ${{ secrets.KUBECONFIG_PRODUCTION }}
+
+  documentation:
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+      
+    - name: Generate API documentation
+      run: ./mvnw javadoc:javadoc
+      
+    - name: Deploy to GitHub Pages
+      uses: peaceiris/actions-gh-pages@v3
+      with:
+        github_token: ${{ secrets.GITHUB_TOKEN }}
+        publish_dir: ./target/site/apidocs
+        destination_dir: ./docs/api
+      if: github.event_name == 'push' && github.ref == 'refs/heads/main'

Dockerfile

@@ -0,0 +1,64 @@
+# Java AI Starter - Dockerfile
+# 多阶段构建，优化镜像大小
+
+# 第一阶段：构建阶段
+FROM maven:3.8.4-openjdk-11-slim AS builder
+
+WORKDIR /app
+
+# 复制Maven配置文件
+COPY pom.xml .
+COPY .mvn .mvn
+COPY mvnw .
+
+# 下载依赖（利用Docker缓存）
+RUN mvn dependency:go-offline -B
+
+# 复制源代码
+COPY src src
+
+# 构建应用
+RUN mvn clean package -DskipTests
+
+# 第二阶段：运行阶段
+FROM openjdk:11-jre-slim
+
+# 设置时区
+ENV TZ=Asia/Shanghai
+RUN ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ > /etc/timezone
+
+# 创建非root用户
+RUN groupadd -r appuser && useradd -r -g appuser appuser
+
+WORKDIR /app
+
+# 从构建阶段复制jar文件
+COPY --from=builder /app/target/*.jar app.jar
+
+# 复制启动脚本
+COPY scripts/docker-entrypoint.sh /usr/local/bin/
+RUN chmod +x /usr/local/bin/docker-entrypoint.sh
+
+# 创建必要的目录
+RUN mkdir -p /app/logs /app/config && \
+    chown -R appuser:appuser /app
+
+# 切换到非root用户
+USER appuser
+
+# 健康检查
+HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
+  CMD curl -f http://localhost:8080/actuator/health || exit 1
+
+# 暴露端口
+EXPOSE 8080
+
+# 设置环境变量
+ENV JAVA_OPTS="-Xmx512m -Xms256m"
+ENV SPRING_PROFILES_ACTIVE="docker"
+
+# 入口点
+ENTRYPOINT ["docker-entrypoint.sh"]
+
+# 默认命令
+CMD ["java", "-jar", "app.jar"]

docker-compose.yml

@@ -0,0 +1,122 @@
+version: '3.8'
+
+services:
+  java-ai-app:
+    build: .
+    container_name: java-ai-starter
+    ports:
+      - "8080:8080"
+    environment:
+      - SPRING_PROFILES_ACTIVE=docker
+      - OPENAI_API_KEY=${OPENAI_API_KEY:-sk-demo-key}
+      - OPENAI_MODEL=${OPENAI_MODEL:-gpt-3.5-turbo}
+      - SERVER_PORT=8080
+      - LOGGING_LEVEL_ROOT=INFO
+    volumes:
+      - ./logs:/app/logs
+      - ./config:/app/config
+    networks:
+      - ai-network
+    restart: unless-stopped
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/actuator/health"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+      start_period: 40s
+    labels:
+      - "com.intellidev.description=Java AI Starter Application"
+      - "com.intellidev.version=1.0.0"
+
+  postgres:
+    image: postgres:13-alpine
+    container_name: java-ai-postgres
+    environment:
+      - POSTGRES_DB=ai_starter
+      - POSTGRES_USER=ai_user
+      - POSTGRES_PASSWORD=${DB_PASSWORD:-ai_password}
+    ports:
+      - "5432:5432"
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+      - ./init-db.sql:/docker-entrypoint-initdb.d/init.sql
+    networks:
+      - ai-network
+    restart: unless-stopped
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U ai_user -d ai_starter"]
+      interval: 30s
+      timeout: 10s
+      retries: 5
+
+  redis:
+    image: redis:7-alpine
+    container_name: java-ai-redis
+    ports:
+      - "6379:6379"
+    command: redis-server --appendonly yes
+    volumes:
+      - redis_data:/data
+    networks:
+      - ai-network
+    restart: unless-stopped
+    healthcheck:
+      test: ["CMD", "redis-cli", "ping"]
+      interval: 30s
+      timeout: 10s
+      retries: 5
+
+  prometheus:
+    image: prom/prometheus:latest
+    container_name: java-ai-prometheus
+    ports:
+      - "9090:9090"
+    volumes:
+      - ./prometheus.yml:/etc/prometheus/prometheus.yml
+      - prometheus_data:/prometheus
+    command:
+      - '--config.file=/etc/prometheus/prometheus.yml'
+      - '--storage.tsdb.path=/prometheus'
+      - '--web.console.libraries=/etc/prometheus/console_libraries'
+      - '--web.console.templates=/etc/prometheus/consoles'
+      - '--storage.tsdb.retention.time=200h'
+      - '--web.enable-lifecycle'
+    networks:
+      - ai-network
+    restart: unless-stopped
+
+  grafana:
+    image: grafana/grafana:latest
+    container_name: java-ai-grafana
+    ports:
+      - "3000:3000"
+    environment:
+      - GF_SECURITY_ADMIN_PASSWORD=${GRAFANA_PASSWORD:-admin}
+      - GF_INSTALL_PLUGINS=grafana-piechart-panel
+    volumes:
+      - grafana_data:/var/lib/grafana
+      - ./grafana/provisioning:/etc/grafana/provisioning
+    networks:
+      - ai-network
+    restart: unless-stopped
+    depends_on:
+      - prometheus
+
+networks:
+  ai-network:
+    driver: bridge
+    name: java-ai-network
+
+volumes:
+  postgres_data:
+    driver: local
+    name: java-ai-postgres-data
+  redis_data:
+    driver: local
+    name: java-ai-redis-data
+  prometheus_data:
+    driver: local
+    name: java-ai-prometheus-data
+  grafana_data:
+    driver: local
+    name: java-ai-grafana-data

scripts/docker-entrypoint.sh

@@ -0,0 +1,44 @@
+#!/bin/bash
+set -e
+
+echo "🚀 启动 Java AI Starter 应用"
+
+# 检查必要的环境变量
+if [ -z "$OPENAI_API_KEY" ] || [ "$OPENAI_API_KEY" = "sk-demo-key" ]; then
+    echo "⚠️  警告: OPENAI_API_KEY 未设置或为默认值"
+    echo "   请设置有效的 OpenAI API Key"
+    echo "   临时使用示例模式..."
+fi
+
+# 设置JVM参数
+if [ -z "$JAVA_OPTS" ]; then
+    export JAVA_OPTS="-Xmx512m -Xms256m -XX:+UseG1GC -XX:MaxGCPauseMillis=200"
+fi
+
+# 添加Spring Boot Actuator配置
+export JAVA_OPTS="$JAVA_OPTS -Dmanagement.endpoints.web.exposure.include=health,info,metrics,prometheus"
+export JAVA_OPTS="$JAVA_OPTS -Dmanagement.endpoint.health.show-details=always"
+export JAVA_OPTS="$JAVA_OPTS -Dmanagement.metrics.export.prometheus.enabled=true"
+
+# 日志配置
+export JAVA_OPTS="$JAVA_OPTS -Dlogging.file.name=/app/logs/application.log"
+export JAVA_OPTS="$JAVA_OPTS -Dlogging.file.max-size=10MB"
+export JAVA_OPTS="$JAVA_OPTS -Dlogging.file.max-history=10"
+
+echo "📊 环境配置:"
+echo "  - Spring Profile: ${SPRING_PROFILES_ACTIVE:-default}"
+echo "  - OpenAI Model: ${OPENAI_MODEL:-gpt-3.5-turbo}"
+echo "  - Server Port: ${SERVER_PORT:-8080}"
+echo "  - JVM Options: $JAVA_OPTS"
+
+# 等待数据库就绪（如果配置了数据库）
+if [ "$SPRING_PROFILES_ACTIVE" = "docker" ] || [ "$SPRING_PROFILES_ACTIVE" = "production" ]; then
+    echo "⏳ 检查依赖服务..."
+    
+    # 这里可以添加等待数据库、Redis等服务的逻辑
+    # 例如: wait-for-it.sh postgres:5432 --timeout=30
+fi
+
+# 启动应用
+echo "🎯 启动应用程序..."
+exec java $JAVA_OPTS -jar app.jar "$@"