Prod workflows 에 토스 Live(운영)키 추가.yml #86
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # 도커 허브에 이미지 push 후 서버에 배포하는 방식 (25.11.1 배포) | |
| name: Front Production Server (Main) | |
| on: | |
| push: | |
| branches: | |
| - main # main 브랜치에 push가 발생하면 실행 | |
| jobs: | |
| build-and-push-image: # 도커 이미지 빌드 및 도커 허브 push | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v3 | |
| - name: ENV 파일 생성 | |
| run: | | |
| echo "NEXT_PUBLIC_API_BASE_URL=${{ secrets.NEXT_PUBLIC_API_PROD_BASE_URL }}" > .env | |
| echo "NEXT_PUBLIC_GTM_ID=${{ secrets.NEXT_PUBLIC_GTM_ID }}" >> .env | |
| echo "NEXT_PUBLIC_KAKAO_CLIENT_ID=${{ secrets.NEXT_PUBLIC_PROD_KAKAO_CLIENT_ID }}" >> .env | |
| echo "NEXT_PUBLIC_GOOGLE_CLIENT_ID=${{ secrets.NEXT_PUBLIC_PROD_GOOGLE_CLIENT_ID }}" >> .env | |
| echo "NEXT_PUBLIC_STRAPI_URL=${{ secrets.NEXT_PUBLIC_PROD_STRAPI_URL }}" >> .env | |
| echo "NEXT_PUBLIC_TOSS_CLIENT_KEY=${{ secrets.NEXT_PUBLIC_PROD_TOSS_CLIENT_KEY }}" >> .env | |
| # 이 부분 부터 점검 필요 - 프로덕션 환경에서도 같은걸 씀? (GTM도 프로덕션 데브 같이쓰는게 맞음? dev 엔 현재 빠진듯?) | |
| echo "NEXT_PUBLIC_CLARITY_PROJECT_ID=${{ secrets.NEXT_PUBLIC_CLARITY_PROJECT_ID }}" >> .env | |
| echo "NEXT_PUBLIC_GOOGLE_SHEETS_ID=${{ secrets.NEXT_PUBLIC_GOOGLE_SHEETS_ID }}" >> .env | |
| echo "GOOGLE_SERVICE_ACCOUNT_EMAIL=${{ secrets.GOOGLE_SERVICE_ACCOUNT_EMAIL }}" >> .env | |
| echo "GOOGLE_PRIVATE_KEY=${{ secrets.GOOGLE_PRIVATE_KEY }}" >> .env | |
| - name: DockerHub 로그인 | |
| uses: docker/login-action@v2 | |
| with: | |
| username: ${{ secrets.DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.DOCKERHUB_PASSWORD }} | |
| - name: Docker 이미지 빌드 및 push | |
| run: | | |
| docker build -f Dockerfile.prod -t zerooneitkr/frontend:prod . | |
| docker push zerooneitkr/frontend:prod | |
| deploy-image-to-server: # 도커 허브 pull 후 서버에 배포 | |
| runs-on: ubuntu-latest | |
| needs: build-and-push-image | |
| steps: | |
| - name: Setup SSH | |
| run: | | |
| mkdir -p ~/.ssh | |
| echo "${{ secrets.LIGHTSAIL_PROD_SSH_KEY }}" > ~/.ssh/id_ed25519 | |
| chmod 600 ~/.ssh/id_ed25519 | |
| ssh-keyscan -p 9822 -H ${{ secrets.LIGHTSAIL_PROD_HOST }} >> ~/.ssh/known_hosts | |
| echo "SSH 설정 완료" | |
| - name: 서버 배포 | |
| run: | | |
| ssh -p 9822 -i ~/.ssh/id_ed25519 ${{ secrets.LIGHTSAIL_PROD_USER }}@${{ secrets.LIGHTSAIL_PROD_HOST }} << EOF | |
| echo "사용하지 않는 컨테이너, 이미지, 네트워크 정리 중 (볼륨제외)..." | |
| sudo docker stop frontend-prod || true | |
| sudo docker rm frontend-prod || true | |
| sudo docker system prune -a -f | |
| # 여기다 도커 컴포즈 파일 갖다놓았기 때문임 | |
| cd ~/front/study-platform-client-prod | |
| echo "도커 이미지 pull" | |
| sudo docker pull zerooneitkr/frontend:prod | |
| echo "도커 컴포즈 재시작" | |
| sudo docker compose -f docker-compose.prod.yml up -d --build | |
| echo "운영 서버 배포 완료" | |
| EOF |