Merge branch 'develop' of https://github.com/LEEJaeHyeok97/2024_DANPOโฆ #140
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Java CI with Gradle | |
# ๋์ ์กฐ๊ฑด ์ค์ : main ๋ธ๋์น์ push ํน์ pull request๊ฐ ๋ฐ์ํ ๊ฒฝ์ฐ ๋์ํ๋ค. | |
on: | |
push: | |
branches: [ "develop" ] | |
permissions: | |
contents: read | |
jobs: | |
# Spring Boot ์ ํ๋ฆฌ์ผ์ด์ ์ ๋น๋ํ์ฌ ๋์ปคํ๋ธ์ ํธ์ํ๋ ๊ณผ์ | |
build-docker-image: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
# 1. Java 21 ์ธํ | |
- name: Set up JDK 21 | |
uses: actions/setup-java@v3 | |
with: | |
java-version: '21' | |
distribution: 'temurin' | |
## create application-database.yaml | |
- name: create application.properties file | |
run: | | |
mkdir ./src/main/resources | |
touch ./src/main/resources/application.yml | |
echo "${{ secrets.APPLICATION_YML }}" >> src/main/resources/application.yml | |
## create firebase-service-key.json | |
- name: create firebase_service_key.json file | |
run: | | |
mkdir ./src/main/resources/firebase | |
touch ./src/main/resources/firebase/firebase_service_key.json | |
echo "${{ secrets.FIREBASE_SERVICE_KEY }}" > src/main/resources/firebase/firebase_service_key.json | |
- name: Grant execute permission for gradlew | |
run: chmod +x ./gradlew | |
shell: bash | |
# 2. Spring Boot ์ ํ๋ฆฌ์ผ์ด์ ๋น๋ | |
- name: Build with Gradle | |
uses: gradle/gradle-build-action@67421db6bd0bf253fb4bd25b31ebb98943c375e1 | |
with: | |
arguments: clean bootJar | |
# 3. Docker ์ด๋ฏธ์ง ๋น๋ | |
- name: docker image build | |
run: docker build -t ${{ secrets.DOCKERHUB_USERNAME }}/jangburich2 . | |
# 4. DockerHub ๋ก๊ทธ์ธ | |
- name: docker login | |
uses: docker/login-action@v2 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
# 5. Docker Hub ์ด๋ฏธ์ง ํธ์ | |
- name: docker Hub push | |
run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/jangburich2 | |
run-docker-image-on-ec2: | |
needs: build-docker-image | |
runs-on: self-hosted | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Setup SSH key | |
uses: webfactory/[email protected] | |
with: | |
ssh-private-key: ${{ secrets.EC2_SSH_KEY }} | |
- name: Add EC2 to known_hosts | |
run: | | |
ssh-keyscan -H ip-172-31-3-107 >> ~/.ssh/known_hosts | |
- name: Copy docker-compose.yml to EC2 | |
run: | | |
scp docker-compose.yml ubuntu@ip-172-31-3-107:/home/ubuntu/ | |
- name: Login to Docker Hub on EC2 | |
run: | | |
ssh ubuntu@ip-172-31-3-107 ' | |
echo "${{ secrets.DOCKERHUB_PASSWORD }}" | sudo docker login -u "${{ secrets.DOCKERHUB_USERNAME }}" --password-stdin | |
' | |
- name: Stop existing Redis process | |
run: | | |
if pgrep redis-server; then | |
sudo systemctl stop redis || echo "Redis service not managed by systemctl" | |
pkill redis-server || echo "No Redis process to kill" | |
fi | |
# 0. ์ต์ ์ด๋ฏธ์ง๋ฅผ ํ๋ฐ์ต๋๋ค | |
- name: docker pull | |
run: sudo docker pull ${{ secrets.DOCKERHUB_USERNAME }}/jangburich2 | |
# 1. docker-compose ์ข ๋ฃ | |
- name: docker-compose down | |
run: sudo docker-compose down | |
# 2. docker-compose ์คํ | |
- name: docker-compose up | |
run: sudo docker-compose up -d | |
# 3. ์์ฐ๋ ์ด๋ฏธ์ง ์ ๊ฑฐ | |
- name: Remove unused Docker images | |
run: sudo docker image prune -f |