Retry 1115
This commit is contained in:
@@ -6,6 +6,9 @@ on:
|
|||||||
- main
|
- main
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
|
# ===================================================================
|
||||||
|
# JOB 1: CONSTRUIR Y SUBIR LAS IMÁGENES
|
||||||
|
# ===================================================================
|
||||||
build-and-push:
|
build-and-push:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
steps:
|
steps:
|
||||||
@@ -23,44 +26,44 @@ jobs:
|
|||||||
run: |
|
run: |
|
||||||
docker run --rm -v ${{ gitea.workspace }}:/workspace -v ${{ gitea.workspace }}/config.json:/kaniko/.docker/config.json gcr.io/kaniko-project/executor:v1.9.0 --context=/workspace --dockerfile=/workspace/Frontend/Dockerfile --destination=${{ secrets.REGISTRY_URL }}/${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-frontend:latest --destination=${{ secrets.REGISTRY_URL }}/${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-frontend:${{ gitea.sha_short }} --insecure
|
docker run --rm -v ${{ gitea.workspace }}:/workspace -v ${{ gitea.workspace }}/config.json:/kaniko/.docker/config.json gcr.io/kaniko-project/executor:v1.9.0 --context=/workspace --dockerfile=/workspace/Frontend/Dockerfile --destination=${{ secrets.REGISTRY_URL }}/${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-frontend:latest --destination=${{ secrets.REGISTRY_URL }}/${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-frontend:${{ gitea.sha_short }} --insecure
|
||||||
|
|
||||||
|
# ===================================================================
|
||||||
|
# JOB 2: DESPLEGAR LA APLICACIÓN
|
||||||
|
# ===================================================================
|
||||||
deploy:
|
deploy:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
needs: build-and-push
|
needs: build-and-push
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
- name: Deploy to Production via SSH
|
- name: Install Docker Tools
|
||||||
run: |
|
run: |
|
||||||
echo "Connecting to production server to deploy..."
|
# Script completo para instalar docker-ce-cli
|
||||||
|
apt-get update && apt-get install -y --no-install-recommends ca-certificates curl && install -m 0755 -d /etc/apt/keyrings && curl -fsSL https://download.docker.com/linux/debian/gpg -o /etc/apt/keyrings/docker.asc && chmod a+r /etc/apt/keyrings/docker.asc && echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/debian $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | tee /etc/apt/sources.list.d/docker.list > /dev/null && apt-get update && apt-get install -y docker-ce-cli
|
||||||
|
|
||||||
# 1. Instalar y preparar el cliente SSH
|
- name: Deploy Application Stack
|
||||||
apt-get update && apt-get install -y openssh-client
|
run: |
|
||||||
mkdir -p ~/.ssh
|
echo "Deploying application stack using an ephemeral deployment container..."
|
||||||
echo "${{ secrets.PROD_SERVER_SSH_KEY }}" > ~/.ssh/id_rsa
|
|
||||||
chmod 600 ~/.ssh/id_rsa
|
|
||||||
ssh-keyscan -H ${{ secrets.PROD_SERVER_HOST }} >> ~/.ssh/known_hosts
|
|
||||||
|
|
||||||
# 2. Conectarse al HOST y ejecutar los comandos de despliegue
|
# Lanzamos un contenedor temporal conectado a la red de Gitea
|
||||||
ssh ${{ secrets.PROD_SERVER_USER }}@${{ secrets.PROD_SERVER_HOST }} << 'EOF'
|
docker run --rm \
|
||||||
set -e # <-- ¡¡IMPORTANTE!! El script se detendrá si un comando falla
|
--network gitea-stack_gitea_net \
|
||||||
|
-v /var/run/docker.sock:/var/run/docker.sock \
|
||||||
|
-v /opt/gestion-integral:/app \
|
||||||
|
-w /app \
|
||||||
|
--env DB_SA_PASSWORD='${{ secrets.DB_SA_PASSWORD_SECRET }}' \
|
||||||
|
--env JWT_KEY='${{ secrets.JWT_KEY_SECRET }}' \
|
||||||
|
--env REGISTRY_USER='${{ secrets.REGISTRY_USER }}' \
|
||||||
|
--env ACTIONS_PAT='${{ secrets.ACTIONS_PAT }}' \
|
||||||
|
docker/compose:latest \
|
||||||
|
sh -c "\
|
||||||
|
set -e && \
|
||||||
|
echo '--- Logging in to internal registry: gitea:5000 ---' && \
|
||||||
|
docker login gitea:5000 -u \$REGISTRY_USER -p \$ACTIONS_PAT && \
|
||||||
|
echo '--- Pulling new images... ---' && \
|
||||||
|
docker compose pull && \
|
||||||
|
echo '--- Starting application stack... ---' && \
|
||||||
|
docker compose up -d"
|
||||||
|
|
||||||
echo "--- CONECTADO AL SERVIDOR DE PRODUCCIÓN ---"
|
- name: Final Cleanup
|
||||||
|
run: |
|
||||||
# Navegar a la carpeta correcta EN EL HOST
|
echo "Cleaning up old images on host..."
|
||||||
cd /opt/gestion-integral
|
docker image prune -af
|
||||||
|
|
||||||
# Exportar los secretos para que docker-compose los use
|
|
||||||
export DB_SA_PASSWORD="${{ secrets.DB_SA_PASSWORD_SECRET }}"
|
|
||||||
export JWT_KEY="${{ secrets.JWT_KEY_SECRET }}"
|
|
||||||
|
|
||||||
# Autenticarse en el registro local
|
|
||||||
echo "${{ secrets.ACTIONS_PAT }}" | docker login 127.0.0.1:5000 -u ${{ secrets.REGISTRY_USER }} --password-stdin
|
|
||||||
|
|
||||||
# Descargar las nuevas imágenes y levantar el stack
|
|
||||||
docker compose pull
|
|
||||||
docker compose up -d
|
|
||||||
|
|
||||||
# Limpiar imágenes viejas
|
|
||||||
docker image prune -af
|
|
||||||
|
|
||||||
echo "--- ¡¡DESPLIEGUE COMPLETADO Y VERIFICADO!! ---"
|
|
||||||
EOF
|
|
||||||
Reference in New Issue
Block a user