chore: GitHub Action Workflow 생성 #6
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: PhotosMap CI/CD Workflow | |
| on: | |
| push: | |
| branches: [ "develop" ] | |
| pull_request: | |
| branches: [ "develop" ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| build: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v2 | |
| - name: Create application-base-addi.yml | |
| run: echo "${{ secrets.BASE_ADDI }}" > ./src/main/resources/application-base-addi.yml | |
| - name: Create docker-compose-prod.yml | |
| run: echo "${{ secrets.DOCKER_COMPOSE_PROD }}" > ./docker-compose-prod.yml | |
| - name: Verify application-base-addi.yml | |
| run: ls -la ./src/main/resources/ && ls -la ./ | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v2 | |
| with: | |
| distribution: 'adopt' | |
| java-version: '17' | |
| - name: Grant execute permission for gradlew | |
| run: chmod +x ./gradlew | |
| - name: Build with Gradle | |
| run: ./gradlew bootJar | |
| - name: Login to DockerHub | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
| - name: Build Docker image | |
| run: docker build -t ${{ secrets.DOCKERHUB_USERNAME }}/photosmap:latest --build-arg PROFILES=prod . | |
| - name: Push Docker image to Docker Hub | |
| run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/photosmap:latest | |
| - name: Upload artifacts | |
| uses: actions/upload-artifact@v2 | |
| with: | |
| name: build-artifacts | |
| path: | | |
| ./src/main/resources/application-base-addi.yml | |
| ./docker-compose-prod.yml | |
| deploy: | |
| runs-on: ubuntu-latest | |
| needs: build | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v2 | |
| - name: Set up SSH | |
| uses: webfactory/[email protected] | |
| with: | |
| ssh-private-key: ${{ secrets.SSH_PRIVATE_KEY }} | |
| - name: Download artifacts | |
| uses: actions/download-artifact@v2 | |
| with: | |
| name: build-artifacts | |
| path: ./ | |
| - name: Verify artifacts | |
| run: ls -la ./src/main/resources/ && ls -la ./ | |
| - name: Copy files to EC2 | |
| run: | | |
| scp -P ${{ secrets.SSH_PORT }} -o StrictHostKeyChecking=no ./docker-compose-prod.yml ${{ secrets.SSH_USER }}@${{ secrets.EC2_HOST }}:${{ secrets.EC2_PATH }}/ | |
| scp -P ${{ secrets.SSH_PORT }} -o StrictHostKeyChecking=no ./src/main/resources/application-base-addi.yml ${{ secrets.SSH_USER }}@${{ secrets.EC2_HOST }}:${{ secrets.EC2_PATH }}/ | |
| - name: Deploy on EC2 | |
| run: | | |
| ssh -p ${{ secrets.SSH_PORT }} -o StrictHostKeyChecking=no ${{ secrets.SSH_USER }}@${{ secrets.EC2_HOST }} << 'EOF' | |
| docker login -u ${DOCKER_USERNAME} -p ${DOCKER_PASSWORD} | |
| docker pull ${{ secrets.DOCKERHUB_USERNAME }}/photosmap:latest | |
| docker-compose -f ${{ secrets.EC2_PATH }}/docker-compose-prod.yml down | |
| docker-compose -f ${{ secrets.EC2_PATH }}/docker-compose-prod.yml up -d | |
| EOF | |
| env: | |
| DOCKER_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }} | |
| DOCKER_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }} |