Feat: 최근 조회 상품 디비에 저장 #14
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: CI-CD | |
# 어떤 브랜치에 push시 github action CI를 동작시킬지 | |
on: | |
push: | |
branches: | |
- main | |
# 환경 변수 설정 | |
# 생성한 Code Deploy와 S3의 이름을 설정한다. | |
env: | |
AWS_REGION: ap-northeast-2 | |
S3_BUCKET_NAME: neoul-github-actions-bucket | |
CODE_DEPLOY_APPLICATION_NAME: neoul-codedeploy-app | |
CODE_DEPLOY_DEPLOYMENT_GROUP_NAME: neoul_codedeploy_group | |
# applicaion.yml 파일 위치 설정 | |
RESOURCE_PATH: ./src/main/resources/application.yml | |
permissions: | |
contents: read | |
# push 시 수행할 일들 정의 | |
jobs: | |
deploy: | |
name: Deploy | |
runs-on: ubuntu-latest | |
environment: production | |
steps: | |
# (1) 기본 체크아웃 | |
- name: Checkout | |
uses: actions/checkout@v2 | |
# (2) JDK 11 세팅 | |
- name: Set up JDK 11 | |
uses: actions/setup-java@v3 | |
with: | |
distribution: 'temurin' | |
java-version: '11' | |
# (2-1) 권한 추가 | |
- name: Run chmod to make gradlew executable | |
run: chmod +x ./gradlew | |
# (2-2) yml 파일 세팅 | |
- name: Set yaml file | |
uses: microsoft/variable-substitution@v1 | |
with: | |
files: ${{ env.RESOURCE_PATH }} | |
env: | |
spring.datasource.url: ${{secrets.DB_URL}} | |
spring.datasource.username: ${{secrets.DB_USERNAME}} | |
spring.datasource.password: ${{secrets.DB_PASSWORD}} | |
jwt.secret : ${{secrets.JWT_SECRET_KEY}} | |
jwt.refresh : ${{secrets.JWT_REFRESH_SECRET_KEY}} | |
jwt.access-token-seconds: ${{secrets.JWT_TOKEN_VALIDITY}} | |
jwt.refresh-token-seconds: ${{secrets.JWT_TOKEN_VALIDITY}} | |
# (3) Gradle build (Test 제외) | |
- name: Build with Gradle | |
uses: gradle/gradle-build-action@0d13054264b0bb894ded474f08ebb30921341cee | |
with: | |
arguments: clean build -x test | |
# (4) AWS 인증 (IAM 사용자 Access Key, Secret Key 활용) | |
- name: Configure AWS credentials | |
uses: aws-actions/configure-aws-credentials@v1 | |
with: | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws-region: ${{ env.AWS_REGION }} | |
# (5) 빌드 결과물을 S3 버킷에 업로드 | |
- name: Upload to AWS S3 | |
run: | | |
aws deploy push \ | |
--application-name ${{ env.CODE_DEPLOY_APPLICATION_NAME }} \ | |
--ignore-hidden-files \ | |
--s3-location s3://$S3_BUCKET_NAME/$GITHUB_SHA.zip \ | |
--source . | |
# (6) S3 버킷에 있는 파일을 대상으로 CodeDeploy 실행 | |
- name: Deploy to AWS EC2 from S3 | |
run: | | |
aws deploy create-deployment \ | |
--application-name ${{ env.CODE_DEPLOY_APPLICATION_NAME }} \ | |
--deployment-config-name CodeDeployDefault.AllAtOnce \ | |
--deployment-group-name ${{ env.CODE_DEPLOY_DEPLOYMENT_GROUP_NAME }} \ | |
--s3-location bucket=$S3_BUCKET_NAME,key=$GITHUB_SHA.zip,bundleType=zip |