Create README.md #136
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow uses actions that are not certified by GitHub. | |
| # They are provided by a third-party and are governed by | |
| # separate terms of service, privacy policy, and support | |
| # documentation. | |
| # This workflow will build a Java project with Gradle and cache/restore any dependencies to improve the workflow execution time | |
| # For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-gradle | |
| name: CI/CD github Actions & Docker | |
| on: | |
| push: | |
| branches: [ "main", "develop" ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| CI-CD: | |
| runs-on: ubuntu-latest | |
| steps: | |
| # JDK setting - github actions에서 사용할 JDK 설정 (aws 과 project의 java 버전과 별도로 관리) | |
| - uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'temurin' | |
| ## gradle caching (빌드 시간 줄이기) | |
| - name: Gradle Caching | |
| uses: actions/cache@v3 | |
| with: | |
| path: | | |
| ~/.gradle/caches | |
| ~/.gradle/wrapper | |
| key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }} | |
| restore-keys: | | |
| ${{ runner.os }}-gradle- | |
| # 환경별 yml 파일 생성(1) - dev | |
| - name: make application-dev.yml | |
| if: github.ref == 'refs/heads/develop' | |
| run: | | |
| cd ./src/main/resources | |
| touch ./application.yml | |
| echo "${{ secrets.YML }}" > ./application.yml | |
| shell: bash | |
| # 환경별 yml 파일 생성(2) - prod | |
| - name: make application-prod.yml | |
| if: contains(github.ref, 'main') | |
| run: | | |
| cd ./src/main/resources | |
| touch ./application.yml | |
| echo "${{ secrets.YML }}" > ./application.yml | |
| shell: bash | |
| # 환경별 firebase key 파일 생성(1) - dev | |
| - name: make firebase_key_json | |
| if: github.ref == 'refs/heads/develop' | |
| run: | | |
| cd ./src/main/resources | |
| touch ./fourj_firebase_service_key.json | |
| echo '${{ secrets.FIREBASE_KEY_JSON }}' | jq '.' > ./fourj_firebase_service_key.json | |
| shell: bash | |
| # 환경별 firebase key 파일 생성(2) - prod | |
| - name: make firebase_key_json | |
| if: contains(github.ref, 'main') | |
| run: | | |
| cd ./src/main/resources | |
| touch ./fourj_firebase_service_key.json | |
| echo '${{ secrets.FIREBASE_KEY_JSON }}' | jq '.' > ./fourj_firebase_service_key.json | |
| shell: bash | |
| # gradle chmod | |
| - name: Grant execute permission for gradlew | |
| run: chmod +x gradlew | |
| # gradle build | |
| - name: Build with Gradle | |
| run: ./gradlew clean build -x test | |
| # docker login | |
| - name: Docker Hub Login | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKER_USERNAME }} | |
| password: ${{ secrets.DOCKER_PASSWORD }} | |
| # docker build & push to production | |
| - name: Docker build & push to prod | |
| if: contains(github.ref, 'main') | |
| run: | | |
| docker build -f Dockerfile -t ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} . | |
| docker push ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| # docker build & push to develop | |
| - name: Docker build & push to dev | |
| if: contains(github.ref, 'develop') | |
| run: | | |
| docker build -f Dockerfile -t ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} . | |
| docker push ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| ## deploy to production | |
| - name: Deploy to prod | |
| uses: appleboy/ssh-action@master | |
| id: deploy-prod | |
| if: contains(github.ref, 'main') | |
| with: | |
| host: ${{ secrets.HOST_PROD }} # EC2 퍼블릭 IPv4 DNS | |
| username: ubuntu | |
| key: ${{ secrets.PRIVATE_KEY }} | |
| envs: GITHUB_SHA | |
| script: | | |
| sudo docker ps | |
| sudo docker rm -f $(docker ps -qa) | |
| sudo docker pull ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| sudo docker run -d -p 8080:8080 --name fourj_springboot ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| sudo docker image prune -f | |
| ## ## sudo docker run -d -p 8080:8080 ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| ## deploy to develop | |
| - name: Deploy to dev | |
| uses: appleboy/ssh-action@master | |
| id: deploy-dev | |
| if: contains(github.ref, 'develop') | |
| with: | |
| host: ${{ secrets.HOST_DEV }} # EC2 퍼블릭 IPv4 DNS | |
| username: ${{ secrets.USERNAME }} # ubuntu | |
| key: ${{ secrets.PRIVATE_KEY }} | |
| envs: GITHUB_SHA | |
| script: | | |
| sudo docker ps | |
| sudo docker rm -f $(docker ps -qa) | |
| sudo docker pull ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| sudo docker run -d -p 8080:8080 --name fourj_springboot ${{ secrets.DOCKER_USERNAME }}/${{ secrets.DOCKER_REPO }} | |
| sudo docker image prune -f |