-
Notifications
You must be signed in to change notification settings - Fork 1
117 lines (98 loc) · 4.17 KB
/
gradle.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
# This workflow will build a Java project with Gradle and cache/restore any dependencies to improve the workflow execution time
# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-gradle
name: Java CI&CD with Gradle
on:
push:
branches: ["develop"]
pull_request:
branches: ["develop"]
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-latest
permissions:
contents: read
env:
RESOURCE_PATH: ./src/main/resources/application.yml
steps:
- uses: actions/checkout@v4
- name: Set up JDK 17
uses: actions/setup-java@v4
with:
java-version: '17'
distribution: 'temurin'
- name: Grant execute permission for gradlew
run: chmod +x gradlew
- name: Set application.yml file
uses: microsoft/variable-substitution@v1
with:
files: ${{env.RESOURCE_PATH}}
env:
spring.datasource.url: ${{secrets.AWS_RDS_HOST}}
spring.datasource.username: ${{secrets.AWS_RDS_USERNAME}}
spring.datasource.password: ${{secrets.AWS_RDS_PASSWORD}}
jwt.secret: ${{secrets.JWT_SECRET_KEY}}
JWT_SECRET_KEY: ${{secrets.JWT_SECRET_KEY}}
openai.organization.id: ${{secrets.OPENAI_ORGANIZATION_ID}}
openai.project.id: ${{secrets.OPENAI_PROJECT_ID}}
openai.api.key: ${{secrets.OPENAI_API_KEY}}
openai.api.url: ${{secrets.OPENAI_API_URL}}
openai.model: ${{secrets.OPENAI_MODEL}}
# Configure Gradle for optimal use in GiHub Actions, including caching of downloaded dependencies.
# See: https://github.com/gradle/actions/blob/main/setup-gradle/README.md
- name: Setup Gradle
uses: gradle/actions/setup-gradle@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0
- name: Build with Gradle
run: ./gradlew build -x test
# docker build & push
- name: Docker Build & Push
if: contains(github.ref, 'develop')
run: |
docker login -u ${{secrets.DOCKER_USERNAME}} -p ${{secrets.DOCKER_PASSWORD}}
docker build -f Dockerfile -t ${{secrets.DOCKER_USERNAME}}/${{secrets.DOCKER_REPOSITORY}}:dev .
docker push ${{secrets.DOCKER_USERNAME}}/${{secrets.DOCKER_REPOSITORY}}:dev
# deploy to EC2
- name: Deploy to EC2
uses: appleboy/ssh-action@master
with:
host: ${{secrets.AWS_EC2_HOST}}
username: ec2-user
key: ${{secrets.AWS_EC2_KEY}}
script: |
CONTAINER_ID=$(sudo docker ps -q --filter "publish=80-8080")
if [ ! -z "$CONTAINER_ID" ]; then
sudo docker stop $CONTAINER_ID
sudo docker rm $CONTAINER_ID
fi
sudo docker pull ${{secrets.DOCKER_USERNAME}}/${{secrets.DOCKER_REPOSITORY}}:dev
sudo docker run -d -p 80:8080 -e TZ=Asia/Seoul ${{secrets.DOCKER_USERNAME}}/${{secrets.DOCKER_REPOSITORY}}:dev
# NOTE: The Gradle Wrapper is the default and recommended way to run Gradle (https://docs.gradle.org/current/userguide/gradle_wrapper.html).
# If your project does not have the Gradle Wrapper configured, you can use the following configuration to run Gradle with a specified version.
#
# - name: Setup Gradle
# uses: gradle/actions/setup-gradle@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0
# with:
# gradle-version: '8.5'
#
# - name: Build with Gradle 8.5
# run: gradle --warning-mode all build
dependency-submission:
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- uses: actions/checkout@v4
- name: Set up JDK 17
uses: actions/setup-java@v4
with:
java-version: '17'
distribution: 'temurin'
# Generates and submits a dependency graph, enabling Dependabot Alerts for all project dependencies.
# See: https://github.com/gradle/actions/blob/main/dependency-submission/README.md
- name: Generate and submit dependency graph
uses: gradle/actions/dependency-submission@417ae3ccd767c252f5661f1ace9f835f9654f2b5 # v3.1.0