chore: ssl 인증서 경로 수정(#171) #99
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CD-dev | |
| on: | |
| push: | |
| branches: [ "main", "develop" ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| deploy: | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - name: checkout | |
| uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'corretto' | |
| - name: Gradle Caching | |
| uses: actions/cache@v3 | |
| with: | |
| path: | | |
| ~/.gradle/caches | |
| ~/.gradle/wrapper | |
| key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }} | |
| restore-keys: | | |
| ${{ runner.os }}-gradle- | |
| - name: Set .env for configuration | |
| uses: appleboy/ssh-action@master | |
| with: | |
| host: ${{ secrets.HOST }} | |
| username: ubuntu | |
| key: ${{ secrets.KEY }} | |
| script: | | |
| rm -rf ./.env | |
| touch ./.env | |
| echo "DOCKER_USERNAME=${{ secrets.DOCKER_USERNAME }}" >> ./.env | |
| echo "DOCKER_REPOSITORY=${{ secrets.DOCKER_REPOSITORY }}" >> ./.env | |
| echo "DB_URL=${{ secrets.DEV_DB_URL }}" >> ./.env | |
| echo "DB_USERNAME=${{ secrets.DEV_DB_USERNAME }}" >> ./.env | |
| echo "DB_PASSWORD=${{ secrets.DEV_DB_PASSWORD }}" >> ./.env | |
| echo "JWT_SECRET=${{ secrets.JWT_SECRET }}" >> ./.env | |
| echo "JWT_ACCESS_TOKEN_EXPIRATION_TIME=${{ secrets.JWT_ACCESS_TOKEN_EXPIRATION_TIME }}" >> ./.env | |
| echo "JWT_REFRESH_TOKEN_EXPIRATION_TIME=${{ secrets.JWT_REFRESH_TOKEN_EXPIRATION_TIME }}" >> ./.env | |
| echo "JWT_REGISTRATION_TOKEN_EXPIRATION_TIME=${{ secrets.JWT_REGISTRATION_TOKEN_EXPIRATION_TIME }}" >> ./.env | |
| echo "KEY_STORE_PASSWORD=${{ secrets.KEY_STORE_PASSWORD }}" >> ./.env | |
| # gradle build | |
| - name: Grant execute permission for gradlew | |
| run: chmod +x gradlew | |
| - name: Build with Gradle | |
| run: ./gradlew build | |
| ## 도커 이미지 빌드 후 도커허브에 push | |
| - name: docker build and push | |
| run: | | |
| docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }} | |
| docker build -f ./.deploy/Dockerfile -t ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPOSITORY }} . | |
| docker push ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPOSITORY }} | |
| - name: Send docker-compose.yml | |
| uses: appleboy/scp-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.HOST }} | |
| key: ${{ secrets.KEY }} | |
| source: "./.deploy/docker-compose-dev.yml" | |
| target: "/home/ubuntu/" | |
| strip_components: 2 | |
| ## 도커 허브에서 jar파일 및 pull후에 컴포즈 up | |
| - name: Deploy to Dev | |
| uses: appleboy/ssh-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.HOST }} | |
| key: ${{ secrets.KEY }} | |
| script: | | |
| docker pull ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPOSITORY }} | |
| docker compose stop ${{secrets.DOCKER_REPOSITORY}} | |
| docker compose rm -f ${{secrets.DOCKER_REPOSITORY}} | |
| docker compose -f docker-compose-dev.yml up -d | |
| docker image prune -f |