This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Siso - 밸런스 게임 벡엔드 배포 자동화 워크플로우 (backend-prod) | |
| on: | |
| push: | |
| branches: ["main"] | |
| permissions: | |
| checks: write | |
| jobs: | |
| detect-changes: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| pull-requests: read | |
| outputs: | |
| backend: ${{ steps.filter.outputs.backend }} | |
| frontend: ${{ steps.filter.outputs.frontend }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Get previous tag | |
| id: previoustag | |
| run: echo "PREVIOUS_TAG=$(git describe --tags --abbrev=0 HEAD^ --always)" >> $GITHUB_OUTPUT | |
| - uses: dorny/paths-filter@v3 | |
| id: filter | |
| with: | |
| base: ${{ steps.previoustag.outputs.PREVIOUS_TAG }} | |
| ref: ${{ github.ref }} | |
| filters: | | |
| backend: | |
| - 'backend/**' | |
| frontend: | |
| - 'frontend/**' | |
| docker-deploy: | |
| needs: detect-changes | |
| if: ${{ needs.detect-changes.outputs.backend == 'true' }} | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Docker hub 로그인 | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKER_USERNAME }} | |
| password: ${{ secrets.DOCKER_PASSWORD }} | |
| - name: Docker 이미지 빌드 및 푸시 | |
| run: | | |
| docker build -t ${{ secrets.DOCKER_USERNAME }}/siso-backend:latest ./backend | |
| docker push ${{ secrets.DOCKER_USERNAME }}/siso-backend:latest | |
| ec2-deploy: | |
| needs: docker-deploy | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: EC2에 배포 | |
| uses: appleboy/ssh-action@master | |
| with: | |
| host: ${{ secrets.EC2_HOST }} | |
| username: ${{ secrets.EC2_USERNAME }} | |
| key: ${{ secrets.EC2_KEY }} | |
| port: ${{ secrets.SSH_PORT }} | |
| script: | | |
| docker pull ${{ secrets.DOCKER_USERNAME }}/siso-backend:latest | |
| docker-compose -f ./docker-compose.yml up -d | |
| - name: 인증서 갱신 및 Nginx 재시작 | |
| uses: appleboy/ssh-action@master | |
| with: | |
| host: ${{ secrets.EC2_HOST }} | |
| username: ${{ secrets.EC2_USERNAME }} | |
| key: ${{ secrets.EC2_KEY }} | |
| port: ${{ secrets.SSH_PORT }} | |
| script: | | |
| docker-compose run certbot renew | |
| docker-compose restart nginx |