docs/.github/workflows/deploy.yml at master · buggregator/docs · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
name: Build & Deploy Docs

on:
  release:
    types: [published]
  workflow_dispatch:

env:
  REGISTRY: ghcr.io
  IMAGE: ghcr.io/${{ github.repository }}

jobs:
  # ── Build docs Docker image ───────────────────────────────
  build:
    runs-on: ubuntu-latest
    if: "!github.event.release.prerelease"
    permissions:
      contents: read
      packages: write

    steps:
      - uses: actions/checkout@v4

      - name: Log in to GitHub Container Registry
        uses: docker/login-action@v3
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ secrets.GHCR_LOGIN }}
          password: ${{ secrets.GHCR_PASSWORD }}

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Build and push
        uses: docker/build-push-action@v6
        with:
          context: .
          file: .docker/Dockerfile
          push: true
          platforms: linux/amd64,linux/arm64
          tags: |
            ${{ env.IMAGE }}:latest
            ${{ env.IMAGE }}:${{ github.event.release.tag_name || github.sha }}
          cache-from: type=gha,scope=docs
          cache-to: type=gha,mode=max,scope=docs

  # ── Deploy to production server ─────────────────────────────
  deploy:
    runs-on: ubuntu-latest
    needs: [build]
    if: github.event_name == 'release' || github.event_name == 'workflow_dispatch'

    steps:
      - name: Connect to WireGuard VPN
        run: |
          sudo apt-get install -y wireguard
          echo "${{ secrets.WG_CONFIG }}" | sudo tee /etc/wireguard/wg0.conf > /dev/null
          sudo chmod 600 /etc/wireguard/wg0.conf
          sudo wg-quick up wg0

      - name: Deploy via SSH
        uses: appleboy/ssh-action@v1
        with:
          host: ${{ secrets.DEPLOY_HOST }}
          port: ${{ secrets.DEPLOY_SSH_PORT || 22 }}
          username: ${{ secrets.DEPLOY_USER }}
          key: ${{ secrets.DEPLOY_SSH_KEY }}
          script: |
            cd /servers/buggregator.dev.v2

            # Pull latest docs image
            docker compose pull buggregator-docs

            # Restart docs container with new image
            docker compose up -d buggregator-docs

            # Reindex documentation in Typesense
            docker compose run --rm docs-indexer

            # Clean up old images
            docker image prune -f