Skip to content

Commit

Permalink
fix(cd): divide cd process
Browse files Browse the repository at this point in the history
  • Loading branch information
@astorverse
astorverse committed Jul 21, 2024
1 parent 18bae8b commit b787b86
Showing 1 changed file with 60 additions and 25 deletions.
85 changes: 60 additions & 25 deletions .github/workflows/deploy-to-master.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,27 +6,9 @@ on:
- master

jobs:
deploy:
checkout_and_build:
runs-on: ubuntu-latest

permissions:
id-token: write
contents: read

env:
ECR_URL: ${{ secrets.AWS_PRODUCTION_ECR_URL }}
HOSTS: ${{ secrets.AWS_PRODUCTUON_HOSTS }}
AWS_DEFAULT_REGION: ${{ secrets.AWS_REGION }}
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_PRODUCTION_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_PRODUCTION_SECRET_ACCESS_KEY }}
AWS_PROFILE: production
ACCOUNT: 'ubuntu'
DOCKER_TAG: 'latest'
SERVICE_NAME: 'blccu'
BLUE_PORT: '3000'
GREEN_PORT: '3001'
NGINX_CONFIG: '/etc/nginx/nginx.conf'

steps:
- name: Checkout code
uses: actions/checkout@v2
Expand All @@ -48,29 +30,82 @@ jobs:
- name: Set PEM file permissions
run: chmod 400 deploy_key.pem

- name: Save artifact
uses: actions/upload-artifact@v2
with:
name: deploy-key
path: deploy_key.pem

configure_aws:
runs-on: ubuntu-latest

needs: checkout_and_build

steps:
- name: Install AWS CLI
uses: unfor19/install-aws-cli-action@v1
with:
version: 2

- name: Configure AWS CLI
run: |
aws configure set aws_access_key_id $AWS_ACCESS_KEY_ID
aws configure set aws_secret_access_key $AWS_SECRET_ACCESS_KEY
aws configure set region $AWS_DEFAULT_REGION
aws configure set aws_access_key_id ${{ secrets.AWS_PRODUCTION_ACCESS_KEY }}
aws configure set aws_secret_access_key ${{ secrets.AWS_PRODUCTION_SECRET_ACCESS_KEY }}
aws configure set region ${{ secrets.AWS_REGION }}
- name: Test AWS Credentials
run: aws sts get-caller-identity

docker_build_and_push:
runs-on: ubuntu-latest

needs: [checkout_and_build, configure_aws]

steps:
- name: Checkout code
uses: actions/checkout@v2

- name: Restore PEM file
uses: actions/download-artifact@v2
with:
name: deploy-key
path: deploy_key.pem

- name: Log in to ECR
run: |
aws ecr get-login-password --region $AWS_DEFAULT_REGION | docker login --username AWS --password-stdin $ECR_URL
aws ecr get-login-password --region ${{ secrets.AWS_REGION }} | docker login --username AWS --password-stdin ${{ secrets.AWS_PRODUCTION_ECR_URL }}
- name: Build and push Docker image
run: |
docker buildx build --platform linux/amd64 -t $SERVICE_NAME . --load
docker tag $SERVICE_NAME:$DOCKER_TAG $ECR_URL/$SERVICE_NAME:$DOCKER_TAG
docker push $ECR_URL/$SERVICE_NAME:$DOCKER_TAG
docker tag $SERVICE_NAME:$DOCKER_TAG ${{ secrets.AWS_PRODUCTION_ECR_URL }}/$SERVICE_NAME:$DOCKER_TAG
docker push ${{ secrets.AWS_PRODUCTION_ECR_URL }}/$SERVICE_NAME:$DOCKER_TAG
deploy_to_servers:
runs-on: ubuntu-latest

needs: [docker_build_and_push]

env:
ECR_URL: ${{ secrets.AWS_PRODUCTION_ECR_URL }}
HOSTS: ${{ secrets.AWS_PRODUCTUON_HOSTS }}
AWS_DEFAULT_REGION: ${{ secrets.AWS_REGION }}
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_PRODUCTION_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_PRODUCTION_SECRET_ACCESS_KEY }}
AWS_PROFILE: production
ACCOUNT: 'ubuntu'
DOCKER_TAG: 'latest'
SERVICE_NAME: 'blccu'
BLUE_PORT: '3000'
GREEN_PORT: '3001'
NGINX_CONFIG: '/etc/nginx/nginx.conf'

steps:
- name: Restore PEM file
uses: actions/download-artifact@v2
with:
name: deploy-key
path: deploy_key.pem

- name: Deploy to servers
run: |
Expand Down

0 comments on commit b787b86

Please sign in to comment.