2025-Turip/.github/workflows/backend-dev-app-deploy.yml at 5456a81b236a83c1a353a8934eb20804375403e6 · woowacourse-teams/2025-Turip · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
name: Dev App CI/CD

on:
  push:
    branches: [ develop ]
    paths:
      - 'backend/turip-app/**'
      - 'backend/build.gradle'
  pull_request:
    branches: [ develop ]
    paths:
      - 'backend/turip-app/**'
      - 'backend/build.gradle'
  workflow_dispatch:
    inputs:
      image_tag:
        description: 'Deploy app image tag (YYYYMMDD-HHMM-SHA)'
        required: true

env:
  DOCKER_IMAGE_REPO: teamturip/turip-backend
  SERVICE_NAME: dev-app
  APP_MODULE_NAME: turip-app
  ADMIN_SERVICE_NAME: dev-admin
  WORKING_DIR: backend
  DOCKERFILE_PATH: backend/app.Dockerfile
  JAVA_VERSION: '21'
  SPRING_PROFILES_ACTIVE: dev
  NGINX_PORT: 80
  RUNNER_NAME: turip-server-dev

jobs:
  build_and_test:
    runs-on: ubuntu-latest
    outputs:
      image_tag: ${{ steps.vars.outputs.image_tag }}
    defaults:
      run:
        working-directory: ${{ env.WORKING_DIR }}

    steps:
      - name: Checkout repository
        uses: actions/checkout@v4

      - name: Set image tag
        id: vars
        run: |
          TAG_VALUE="${{ env.SERVICE_NAME }}-$(TZ=Asia/Seoul date +%Y%m%d-%H%M)-${GITHUB_SHA::7}"
          echo "image_tag=$TAG_VALUE" >> $GITHUB_OUTPUT

      - name: Set up JDK ${{ env.JAVA_VERSION }}
        uses: actions/setup-java@v4
        with:
          java-version: ${{ env.JAVA_VERSION }}
          distribution: 'temurin'
          cache: 'gradle'

      - name: Build Module Jar
        run: |
          chmod +x gradlew
          ./gradlew :${{ env.APP_MODULE_NAME }}:bootJar -x test

      - name: Run Unit Tests
        run: ./gradlew :${{ env.APP_MODULE_NAME }}:test

      - name: Prepare OpenTelemetry agent
        run: |
          mkdir -p otel
          curl -L -o otel/opentelemetry-javaagent.jar \
          https://github.com/open-telemetry/opentelemetry-java-instrumentation/releases/download/v2.10.0/opentelemetry-javaagent.jar

      - name: Login to Docker Hub
        if: github.event_name == 'push' || github.event_name == 'workflow_dispatch'
        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}

      - name: Set up Docker Buildx
        if: github.event_name == 'push' || github.event_name == 'workflow_dispatch'
        uses: docker/setup-buildx-action@v3
        with:
          driver-opts: network=host

      - name: Build and push image
        if: github.event_name == 'push' || github.event_name == 'workflow_dispatch'
        uses: docker/build-push-action@v6
        with:
          context: ./${{ env.WORKING_DIR }}
          file: ./${{ env.DOCKERFILE_PATH }}
          platforms: linux/arm64
          push: true
          tags: ${{ env.DOCKER_IMAGE_REPO }}:${{ steps.vars.outputs.image_tag }}

  deploy:
    needs: build_and_test
    if: |
      needs.build_and_test.result == 'success' &&
      (github.event_name == 'push' || github.event_name == 'workflow_dispatch')
    runs-on: [ self-hosted, "turip-server-dev" ]

    steps:
      - name: Login to Docker Hub (for Pull)
        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}

      - name: Checkout repository
        uses: actions/checkout@v4

      - name: Deploy
        run: |
          cd backend
          IMAGE_TAG="${{ github.event.inputs.image_tag || needs.build_and_test.outputs.image_tag }}"

          echo "🚀 ${{ env.SERVICE_NAME }} 배포 시작 (Tag: ${IMAGE_TAG})"

          cat <<EOF > .env.tmp
          IMAGE_NAME_PREFIX=${{ env.SERVICE_NAME }}
          IMAGE_NAME_ADMIN_PREFIX=${{ env.ADMIN_SERVICE_NAME }}
          SPRING_PROFILES_ACTIVE=${{ env.SPRING_PROFILES_ACTIVE }}
          NGINX_PORT=${{ env.NGINX_PORT }}
          CSV_LINKS_COLLECTION_URL=${{ secrets.CSV_LINKS_COLLECTION_URL }}
          DOMESTIC_ETC_IMAGE_URL=${{ secrets.DOMESTIC_ETC_IMAGE_URL }}
          OVERSEAS_ETC_IMAGE_URL=${{ secrets.OVERSEAS_ETC_IMAGE_URL }}
          OTEL_EXPORTER_OTLP_ENDPOINT=${{ secrets.OTEL_EXPORTER_OTLP_ENDPOINT }}
          MYSQL_URL=${{ secrets.MYSQL_URL }}
          MYSQL_USERNAME=${{ secrets.MYSQL_USERNAME }}
          MYSQL_PASSWORD=${{ secrets.MYSQL_PASSWORD }}
          FLYWAY_USERNAME=${{ secrets.FLYWAY_USERNAME }}
          FLYWAY_PASSWORD=${{ secrets.FLYWAY_PASSWORD }}
          CSV_IMPORT_PASSWORD=${{ secrets.CSV_IMPORT_PASSWORD }}
          JWT_SECRET_KEY=${{ secrets.JWT_SECRET_KEY }}
          GOOGLE_CLIENT_ID=${{ secrets.GOOGLE_CLIENT_ID }}
          GOOGLE_IOS_CLIENT_ID=${{ secrets.GOOGLE_IOS_CLIENT_ID }}
          APPLE_CLIENT_ID=${{ secrets.APPLE_CLIENT_ID }}
          KAKAO_API_KEY=${{ secrets.KAKAO_API_KEY }}
          GOOGLE_API_KEY=${{ secrets.GOOGLE_API_KEY }}
          YOUTUBE_API_KEY=${{ secrets.YOUTUBE_API_KEY }}
          INVITATION_JWT_SECRET_KEY=${{ secrets.INVITATION_JWT_SECRET_KEY }}
          EOF

          if [ -f .env ]; then
            grep "^ADMIN_IMAGE_TAG=" .env >> .env.tmp || true
          fi

          echo "APP_IMAGE_TAG=${IMAGE_TAG}" >> .env.tmp

          mv .env.tmp .env

          chmod +x /home/ubuntu/deploy/deploy.sh
          /home/ubuntu/deploy/deploy.sh ${IMAGE_TAG}