Feat : 도커 스왐 적용 #218
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Java CI/CD with Gradle and Docker Swarm | |
| on: | |
| push: | |
| branches: [ "develop" ] | |
| pull_request: | |
| branches: [ "develop" ] | |
| types: [ closed ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| build: | |
| runs-on: ubuntu-latest | |
| env: | |
| PROFILE: prod | |
| DB_PROD_HOST: ${{ secrets.DB_PROD_HOST }} | |
| DB_PROD_USERNAME: ${{ secrets.DB_PROD_USERNAME }} | |
| DB_PROD_PASSWD: ${{ secrets.DB_PROD_PASSWD }} | |
| SOCIAL_CLIENT_ID: ${{ secrets.SOCIAL_CLIENT_ID }} | |
| SOCIAL_CLIENT_PASSWD: ${{ secrets.SOCIAL_CLIENT_PASSWD }} | |
| SOCIAL_CLIENT_SECRET: ${{ secrets.SOCIAL_CLIENT_SECRET }} | |
| JWT_SECRET: ${{ secrets.JWT_SECRET }} | |
| WAS_HOST: ${{ secrets.WAS_HOST }} | |
| AWS_S3_BUCKET_NAME: ${{ secrets.AWS_S3_BUCKET_NAME }} | |
| AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
| AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
| AWS_REGION: ap-northeast-2 | |
| DEFAULT_PROFILE: ${{ secrets.DEFAULT_PROFILE }} | |
| AWS_CLOUDFRONT_DOMAIN: ${{ secrets.AWS_CLOUDFRONT_DOMAIN }} | |
| SOCKET_SERVER_URL: ${{secrets.SOCKET_SERVER_URL}} | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'temurin' | |
| - name: Build with Gradle | |
| run: ./gradlew --warning-mode all build -i | |
| docker-build-and-deploy: | |
| runs-on: ubuntu-latest | |
| needs: build | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v3 | |
| - name: Set up JDK 17 | |
| uses: actions/setup-java@v3 | |
| with: | |
| java-version: '17' | |
| distribution: 'temurin' | |
| - name: Grant execute permission for gradlew | |
| run: chmod +x gradlew | |
| - name: Build with Gradle (without Test) | |
| run: ./gradlew clean build -x test --stacktrace | |
| - name: Docker Hub build & push | |
| run: | | |
| docker login -u ${{ secrets.DOCKER_HUB_USERNAME }} -p ${{ secrets.DOCKER_HUB_PWD }} | |
| docker build \ | |
| --build-arg PROFILE=${{ secrets.PROFILE }} \ | |
| --build-arg DB_PROD_HOST=${{ secrets.DB_PROD_HOST }} \ | |
| --build-arg DB_PROD_USERNAME=${{ secrets.DB_PROD_USERNAME }} \ | |
| --build-arg DB_PROD_PASSWD=${{ secrets.DB_PROD_PASSWD }} \ | |
| --build-arg SOCIAL_CLIENT_ID=${{ secrets.SOCIAL_CLIENT_ID }} \ | |
| --build-arg SOCIAL_CLIENT_PASSWD=${{ secrets.SOCIAL_CLIENT_PASSWD }} \ | |
| --build-arg SOCIAL_CLIENT_SECRET=${{ secrets.SOCIAL_CLIENT_SECRET }} \ | |
| --build-arg JWT_SECRET=${{ secrets.JWT_SECRET }} \ | |
| --build-arg AWS_S3_BUCKET_NAME=${{ secrets.AWS_S3_BUCKET_NAME }} \ | |
| --build-arg AWS_ACCESS_KEY_ID=${{ secrets.AWS_ACCESS_KEY_ID }} \ | |
| --build-arg AWS_SECRET_ACCESS_KEY=${{ secrets.AWS_SECRET_ACCESS_KEY }} \ | |
| --build-arg AWS_REGION=ap-northeast-2 \ | |
| --build-arg DEFAULT_PROFILE=${{ secrets.DEFAULT_PROFILE }} \ | |
| --build-arg AWS_CLOUDFRONT_DOMAIN=${{ secrets.AWS_CLOUDFRONT_DOMAIN }} \ | |
| --build-arg SOCKET_SERVER_URL=${{ secrets.SOCKET_SERVER_URL }} \ | |
| -t ${{ secrets.DOCKER_HUB_USERNAME }}/${{ secrets.DOCKER_HUB_REPO_NAME }}:latest . | |
| docker push ${{ secrets.DOCKER_HUB_USERNAME }}/${{ secrets.DOCKER_HUB_REPO_NAME }}:latest | |
| - name: Deploy to Docker Swarm | |
| uses: appleboy/ssh-action@master | |
| with: | |
| username: ubuntu | |
| host: ${{ secrets.WAS_HOST }} | |
| key: ${{ secrets.PRIVATE_KEY }} | |
| port: ${{ secrets.WAS_PORT }} | |
| script: | | |
| if ! sudo docker info | grep -q "Swarm: active"; then | |
| sudo docker swarm init | |
| fi | |
| if [ -d "Linkode2024_BE" ]; then | |
| cd Linkode2024_BE | |
| git pull origin develop | |
| else | |
| git clone -b develop https://github.com/Linkode2024/Linkode2024_BE.git | |
| cd Linkode2024_BE | |
| fi | |
| sudo docker service update \ | |
| --image ${{ secrets.DOCKER_HUB_USERNAME }}/${{ secrets.DOCKER_HUB_REPO_NAME }}:latest \ | |
| --env-add PROFILE=${{ secrets.PROFILE }} \ | |
| --env-add DB_PROD_HOST=${{ secrets.DB_PROD_HOST }} \ | |
| --env-add DB_PROD_USERNAME=${{ secrets.DB_PROD_USERNAME }} \ | |
| --env-add DB_PROD_PASSWD=${{ secrets.DB_PROD_PASSWD }} \ | |
| --env-add SOCIAL_CLIENT_ID=${{ secrets.SOCIAL_CLIENT_ID }} \ | |
| --env-add SOCIAL_CLIENT_PASSWD=${{ secrets.SOCIAL_CLIENT_PASSWD }} \ | |
| --env-add SOCIAL_CLIENT_SECRET=${{ secrets.SOCIAL_CLIENT_SECRET }} \ | |
| --env-add JWT_SECRET=${{ secrets.JWT_SECRET }} \ | |
| --env-add AWS_S3_BUCKET_NAME=${{ secrets.AWS_S3_BUCKET_NAME }} \ | |
| --env-add AWS_ACCESS_KEY_ID=${{ secrets.AWS_ACCESS_KEY_ID }} \ | |
| --env-add AWS_SECRET_ACCESS_KEY=${{ secrets.AWS_SECRET_ACCESS_KEY }} \ | |
| --env-add AWS_REGION=ap-northeast-2 \ | |
| --env-add DEFAULT_PROFILE=${{ secrets.DEFAULT_PROFILE }} \ | |
| --env-add AWS_CLOUDFRONT_DOMAIN=${{ secrets.AWS_CLOUDFRONT_DOMAIN }} \ | |
| --env-add SOCKET_SERVER_URL=${{ secrets.SOCKET_SERVER_URL }} \ | |
| --publish-add 8080:8080 \ | |
| linkode-stack_app | |
| sudo docker service logs linkode-stack_app |