✨ :: 후원 리스폰스 수정 #17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI/CD using github actions & docker | |
on: | |
push: | |
branches: [ "main" ] # 해당 branch에 푸쉬 발생 시 업데이트 | |
permissions: | |
contents: read | |
jobs: | |
CI-CD: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Set up JDK 17 | |
uses: actions/setup-java@v2 | |
with: | |
java-version: '17' | |
distribution: 'temurin' | |
- name: set yml file | |
uses: microsoft/variable-substitution@v1 | |
with: | |
files: src/main/resources/application.yml | |
env: | |
spring.datasource.url: ${{ secrets.RDS_PATH }} | |
spring.datasource.username: ${{ secrets.DB_USERNAME }} | |
spring.datasource.password: ${{ secrets.DB_PASSWORD }} | |
spring.security.user.name: ${{ secrets.SECURITY_USER_NAME }} | |
spring.security.user.password: ${{ secrets.SECURITY_USER_PASSWORD }} | |
application.jwt.secretKey: ${{ secrets.JWT_SECRET_KEY }} | |
- name: set chmod | |
run: chmod +x ./gradlew | |
- name: Build with Gradle | |
run: ./gradlew bootJar | |
- name: Docker build & push to prod | |
run: | | |
docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }} | |
docker build -f Dockerfile -t ${{ secrets.DOCKER_USERNAME }}/piece:0.0.1 . | |
docker push ${{ secrets.DOCKER_USERNAME }}/piece:0.0.1 | |
- name: Deploy to prod | |
uses: appleboy/ssh-action@master | |
id: deploy-prod | |
with: | |
host: ${{ secrets.HOST_PROD }} # EC2 퍼블릭 IPv4 DNS | |
username: ubuntu | |
key: ${{ secrets.PRIVATE_KEY }} # EC2 private key | |
envs: GITHUB_SHA | |
script: | | |
docker stop piece | |
docker rm piece | |
docker rmi ${{ secrets.DOCKER_USERNAME }}/piece:0.0.1 | |
docker pull ${{ secrets.DOCKER_USERNAME }}/piece:0.0.1 | |
docker run -d -p 8080:8080 --name piece ${{ secrets.DOCKER_USERNAME }}/piece:0.0.1 |