chore: jobs에 checkout 추가 #20
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: dev - CI/CD to Amazon ECS | |
| on: | |
| push: | |
| branches: [ "develop" ] | |
| pull_request: | |
| branches: [ "develop" ] | |
| permissions: | |
| contents: read | |
| checks: write | |
| issues: write | |
| jobs: | |
| build: | |
| runs-on: ubuntu-latest | |
| environment: dev | |
| if: github.event_name == 'push' || github.event_name == 'pull_request' | |
| env: | |
| jasypt.encryptor.password: ${{ secrets.JASYPT_ENCRYPTOR_PASSWORD }} | |
| DOCKER_REPOSITORY: ${{ secrets.DOCKER_REPOSITORY }} | |
| DOCKER_REPOSITORY_NGINX: ${{ secrets.DOCKER_REPOSITORY_NGINX }} | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'temurin' | |
| - name: Gradle Caching | |
| uses: actions/cache@v3 | |
| with: | |
| path: | | |
| ~/.gradle/caches | |
| ~/.gradle/wrapper | |
| key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }} | |
| restore-keys: | | |
| ${{ runner.os }}-gradle- | |
| - name: Grant Execute Permission For Gradlew | |
| run: chmod +x gradlew | |
| - name: Set up Environment Variables | |
| run: | | |
| echo "JASYPT_ENCRYPTOR_PASSWORD=${{ secrets.JASYPT_ENCRYPTOR_PASSWORD }}" >> $GITHUB_ENV | |
| echo "DOCKER_REPOSITORY=${{ secrets.DOCKER_REPOSITORY }}" >> $GITHUB_ENV | |
| echo "DOCKER_REPOSITORY_NGINX=${{ secrets.DOCKER_REPOSITORY_NGINX }}" >> $GITHUB_ENV | |
| - name: Build With Gradle | |
| run: ./gradlew build -x test --warning-mode all | |
| ## Build and test | |
| - name: 테스트 코드 실행 | |
| run: ./gradlew --info test | |
| - name: Publish Unit Test Results | |
| uses: EnricoMi/publish-unit-test-result-action@v1 | |
| if: ${{ always() }} | |
| with: | |
| files: build/test-results/**/*.xml | |
| - name: Publish Test Report | |
| uses: mikepenz/action-junit-report@v3 | |
| if: success() || failure() | |
| with: | |
| report_paths: '**/build/test-results/test/TEST-*.xml' | |
| deploy: | |
| name: Deploy | |
| runs-on: ubuntu-latest | |
| environment: dev | |
| if: github.event_name == 'push' | |
| needs: build | |
| env: | |
| JASYPT_ENCRYPTOR_PASSWORD: ${{ secrets.JASYPT_ENCRYPTOR_PASSWORD }} | |
| DOCKER_REPOSITORY: ${{ secrets.DOCKER_REPOSITORY }} | |
| DOCKER_REPOSITORY_NGINX: ${{ secrets.DOCKER_REPOSITORY_NGINX }} | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: List Files for Debugging | |
| run: ls -la ./ # 현재 디렉토리의 모든 파일 나열 | |
| - name: Show docker-compose.yml Content | |
| run: cat docker-compose.yml # docker-compose.yml 파일 내용 확인 | |
| - name: Send docker-compose.yml | |
| uses: appleboy/scp-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.AWS_DEV_HOSTNAME }} | |
| key: ${{ secrets.AWS_DEV_PRIVATE_KEY }} | |
| source: "./docker-compose.yml" | |
| target: "/home/ubuntu/" | |
| - name: Send nginx.conf | |
| uses: appleboy/scp-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.AWS_DEV_HOSTNAME }} | |
| key: ${{ secrets.AWS_DEV_PRIVATE_KEY }} | |
| source: "./nginx/nginx.conf" | |
| target: "/home/ubuntu/" | |
| ## Docker login | |
| - name: Docker Login | |
| run: | | |
| docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }} | |
| ## Nginx 도커 이미지 빌드 후 도커허브에 push하기 | |
| - name: Docker build & Push for Nginx | |
| run: | | |
| docker build -f dockerfile-nginx -t ${{ secrets.DOCKER_REPOSITORY_NGINX }} . | |
| docker push ${{ secrets.DOCKER_REPOSITORY_NGINX }} | |
| ## Spring Boot 도커 이미지 빌드 후 도커허브에 push하기 | |
| - name: Docker build & Push for Spring Boot | |
| run: | | |
| docker build -t ${{ secrets.DOCKER_REPOSITORY }} . | |
| docker push ${{ secrets.DOCKER_REPOSITORY }} | |
| - name: Check Files on AWS Ubuntu | |
| uses: appleboy/ssh-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.AWS_DEV_HOSTNAME }} | |
| key: ${{ secrets.AWS_DEV_PRIVATE_KEY }} | |
| script: | | |
| ls -la /home/ubuntu/ # AWS 서버에서 파일이 있는지 확인 | |
| cat /home/ubuntu/docker-compose.yml # AWS 서버에서 파일 내용 확인 | |
| # SSH로 서버에 연결 | |
| - name: Connect to Server | |
| uses: appleboy/ssh-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.AWS_DEV_HOSTNAME }} | |
| key: ${{ secrets.AWS_DEV_PRIVATE_KEY }} | |
| script: | # SSH 연결 후 실행할 명령어들 | |
| docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }} | |
| export DOCKER_REPOSITORY=${{ secrets.DOCKER_REPOSITORY }} | |
| export DOCKER_REPOSITORY_NGINX=${{ secrets.DOCKER_REPOSITORY_NGINX }} | |
| export JASYPT_ENCRYPTOR_PASSWORD=${{ secrets.JASYPT_ENCRYPTOR_PASSWORD }} | |
| # Pull 최신 이미지 | |
| docker-compose -f /home/ubuntu/docker-compose.yml pull | |
| # 새 컨테이너 실행 | |
| docker-compose -f /home/ubuntu/docker-compose.yml up -d --build | |
| discord-notify: | |
| name: Discord Notify | |
| runs-on: ubuntu-latest | |
| environment: dev | |
| needs: [ build, deploy ] | |
| if: always() | |
| env: | |
| jasypt.encryptor.password: ${{ secrets.JASYPT_ENCRYPTOR_PASSWORD }} | |
| steps: | |
| - name: Send Discord Notification | |
| uses: sarisia/actions-status-discord@v1 | |
| with: | |
| webhook: ${{ secrets.DISCORD_WEBHOOK_URL }} | |
| status: ${{ job.status }} | |
| title: "CI/CD Pipeline Status" | |
| description: | | |
| ${{ format( | |
| 'The CI/CD pipeline has completed.\n- **Build Job Status**: {0}\n- **Deploy Job Status**: {1}\n- **Branch**: {2}\n- **Commit**: {3}\n- **Author**: {4}', | |
| needs.build.result, | |
| needs.deploy.result, | |
| github.ref, | |
| github.sha, | |
| github.actor | |
| ) }} | |
| url: "https://github.com/sarisia/actions-status-discord" | |
| username: GitHub Actions Bot |