-
Notifications
You must be signed in to change notification settings - Fork 5
45 lines (35 loc) · 1.46 KB
/
cd.yml
File metadata and controls
45 lines (35 loc) · 1.46 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
name: CEOS vote CD - Deploy to EC2
on:
workflow_run:
workflows:
- "CEOS vote CI - Build & Push to ECR"
types:
- completed
jobs:
deploy-to-ec2:
name: Deploy to EC2
runs-on: self-hosted
env:
AWS_REGION: ${{ secrets.AWS_REGION }}
ECR_REGISTRY: ${{ secrets.ECR_REGISTRY }}
if: ${{ github.event.workflow_run.conclusion == 'success' }}
steps:
- name: Deploy on EC2 Instance
run: |
cd ~/ceos-vote || { echo "Directory not found"; exit 1; }
echo "Creating .env file..."
echo "DB_USERNAME=${{ secrets.DB_USERNAME }}" > .env
echo "DB_PASSWORD=${{ secrets.DB_PASSWORD }}" >> .env
echo "DB_ROOT_PASSWORD=${{ secrets.DB_ROOT_PASSWORD }}" >> .env
echo "JWT_SECRET_KEY=${{ secrets.JWT_SECRET_KEY }}" >> .env
echo "JWT_ACCESS_TOKEN_VALIDITY_MS=${{ secrets.JWT_ACCESS_TOKEN_VALIDITY_MS }}" >> .env
echo "JWT_REFRESH_TOKEN_VALIDITY_MS=${{ secrets.JWT_REFRESH_TOKEN_VALIDITY_MS }}" >> .env
echo "Logging in to ECR..."
aws ecr get-login-password --region ${{ secrets.AWS_REGION }} | docker login --username AWS --password-stdin ${{ secrets.ECR_REGISTRY }}
echo "Pulling latest image..."
docker compose pull app
echo "Restarting services..."
docker compose up -d app
echo "Cleaning up..."
docker image prune -af
echo "✅ Deployment successful!"