name: Build and Deploy

on:
  push:
    branches:
      - main

jobs:
  build-and-save:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v3

      - name: Build Backend Image and Save as Tar
        run: |
          docker run --rm -v ${{ gitea.workspace }}:/workspace gcr.io/kaniko-project/executor:v1.9.0 --context=/workspace --dockerfile=/workspace/Backend/GestionIntegral.Api/Dockerfile --no-push --destination=${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-backend:latest --tarPath=/workspace/backend.tar

      - name: Build Frontend Image and Save as Tar
        run: |
          docker run --rm -v ${{ gitea.workspace }}:/workspace gcr.io/kaniko-project/executor:v1.9.0 --context=/workspace --dockerfile=/workspace/Frontend/Dockerfile --no-push --destination=${{ gitea.actor }}/${{ toLower(gitea.repository_name) }}-frontend:latest --tarPath=/workspace/frontend.tar

      - name: Upload Image Artifacts
        uses: actions/upload-artifact@v2
        with:
          name: docker-images
          path: |
            ${{ gitea.workspace }}/backend.tar
            ${{ gitea.workspace }}/frontend.tar

  deploy:
    runs-on: ubuntu-latest
    needs: build-and-save
    
    steps:
      - name: Download Image Artifacts
        uses: actions/download-artifact@v2
        with:
          name: docker-images
          
      - name: Deploy to Production via SCP and SSH
        run: |
          set -e
          echo "Preparing SSH client..."
          apt-get update && apt-get install -y openssh-client
          mkdir -p ~/.ssh
          echo "${{ secrets.PROD_SERVER_SSH_KEY }}" > ~/.ssh/id_rsa
          chmod 600 ~/.ssh/id_rsa
          ssh-keyscan -H ${{ secrets.PROD_SERVER_HOST }} >> ~/.ssh/known_hosts
          
          echo "Copying image files to production server..."
          scp backend.tar frontend.tar ${{ secrets.PROD_SERVER_USER }}@${{ secrets.PROD_SERVER_HOST }}:/opt/gestion-integral/

          echo "Connecting to host to load images and deploy..."
          ssh ${{ secrets.PROD_SERVER_USER }}@${{ secrets.PROD_SERVER_HOST }} << 'EOF'
            set -e
            echo "--- CONECTADO AL SERVIDOR DE PRODUCCIÓN ---"
            cd /opt/gestion-integral
            
            echo "Loading images into Docker..."
            docker load < backend.tar
            docker load < frontend.tar
            
            echo "Starting application stack..."
            export DB_SA_PASSWORD="${{ secrets.DB_SA_PASSWORD_SECRET }}"
            export JWT_KEY="${{ secrets.JWT_KEY_SECRET }}"
            docker compose up -d

            echo "Cleaning up tar files and old images..."
            rm backend.tar frontend.tar
            docker image prune -af
            
            echo "--- ¡¡DESPLIEGUE COMPLETADO Y VERIFICADO!! ---"
          EOF