Devops/#12 GitHub Actions 기반 CI/CD 테스트 #2
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI/CD - Searchweb (version.txt 기반) | |
| on: | |
| push: | |
| branches: [ "main", "dev" ] | |
| pull_request: | |
| branches: [ "main", "dev" ] | |
| jobs: | |
| build-and-push: | |
| name: Build & Push Docker Image | |
| runs-on: ubuntu-latest | |
| outputs: | |
| image_tag: ${{ steps.meta.outputs.IMAGE_TAG }} | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| - name: Read version.txt | |
| id: meta | |
| run: | | |
| VERSION=$(cat version.txt | tr -d ' \n') | |
| echo "IMAGE_TAG=${VERSION}" >> $GITHUB_OUTPUT | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v4 | |
| with: | |
| distribution: 'temurin' | |
| java-version: '17' | |
| - name: Grant execute permission | |
| run: chmod +x ./gradlew | |
| - name: Build JAR | |
| run: ./gradlew clean bootJar | |
| - name: Docker Login | |
| uses: docker/login-action@v3 | |
| with: | |
| username: ${{ secrets.DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.DOCKERHUB_TOKEN }} | |
| - name: Docker Build (version + latest) | |
| run: | | |
| docker build \ | |
| -t ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:${{ steps.meta.outputs.IMAGE_TAG }} \ | |
| -t ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:latest \ | |
| . | |
| - name: Docker Push | |
| run: | | |
| docker push ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:${{ steps.meta.outputs.IMAGE_TAG }} | |
| docker push ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:latest | |
| deploy: | |
| name: Deploy to OCI | |
| runs-on: ubuntu-latest | |
| needs: build-and-push | |
| env: | |
| IMAGE_TAG: ${{ needs.build-and-push.outputs.image_tag }} | |
| steps: | |
| - name: Prepare SSH key | |
| run: | | |
| mkdir -p ~/.ssh | |
| echo "${{ secrets.SSH_KEY }}" > ~/.ssh/id_rsa | |
| chmod 600 ~/.ssh/id_rsa | |
| - name: Add Known Hosts | |
| run: ssh-keyscan -H ${{ secrets.SSH_HOST }} >> ~/.ssh/known_hosts | |
| - name: Deploy via SSH | |
| run: | | |
| ssh ${{ secrets.SSH_USER }}@${{ secrets.SSH_HOST }} << EOF | |
| docker login -u '${{ secrets.DOCKERHUB_USERNAME }}' -p '${{ secrets.DOCKERHUB_TOKEN }}' | |
| docker pull ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:${IMAGE_TAG} | |
| docker pull ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:latest | |
| if [ "$(docker ps -q -f name=searchweb)" ]; then docker stop searchweb; fi | |
| if [ "$(docker ps -aq -f name=searchweb)" ]; then docker rm searchweb; fi | |
| docker run -d \ | |
| --env-file /home/ubuntu/Searchweb/.env \ | |
| -p 8080:8080 \ | |
| --name searchweb \ | |
| ${{ secrets.DOCKERHUB_USERNAME }}/searchweb:latest | |
| EOF |