Fix:: 서버에 SSL cert 적용

.github/workflows/gradle-publish.yml

@@ -29,11 +29,19 @@ jobs:
         jwt.secret: ${{ secrets.JWT_SECRET }}
         spring.ai.openai.api-key: ${{ secrets.OPENAI_API_KEY }}
 
-    - name: set chmod
-      run: chmod +x ./gradlew
+    - name: set ssl yml file
+      uses: microsoft/variable-substitution@v1
+      with:
+        files: src/main/resources/application-ssl.yml
+      env:
+        server.ssl.key-store-password: ${{ secrets.SSL_PASSWORD }}
 
     - name: Build with Gradle
-      run: ./gradlew bootJar
+      run: |
+        echo '${{ secrets.CHEONGFORDO_P12 }}' | base64 --decode > ./src/main/resources/cheongfordo.p12
+        
+        chmod +x ./gradlew
+        ./gradlew bootJar
 
     - name: Docker build & push to prod
       run: |

.gitignore

@@ -143,4 +143,5 @@ replay_pid*
 # End of https://www.toptal.com/developers/gitignore/api/intellij,java
 
 .gradle/
-build/
+build/
+.idea

Dockerfile

@@ -2,4 +2,4 @@ FROM openjdk:17
 ARG JAR_FILE=build/libs/*.jar
 COPY ${JAR_FILE} app.jar
 ENV TZ=Asia/Seoul
-ENTRYPOINT ["java","-jar","/app.jar","-Duser.timezone=Asia/Seoul"]
+ENTRYPOINT ["java","-jar","/app.jar","-Duser.timezone=Asia/Seoul","--spring.config.location=classpath:/application.yml,classpath:/application-ssl.yml"]

src/main/resources/application-ssl.yml

@@ -0,0 +1,6 @@
+server: # additional ssl settings
+  ssl:
+    enabled: true
+    key-store-type: PKCS12
+    key-store: classpath:cheongfordo.p12
+    key-store-password: ${SSL_PASSWORD}