feat: CI/CD 추가

kon28289 · kon28289 · commit 2629f2734325 · 2025-10-14T14:32:28.000+09:00
diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
@@ -0,0 +1,103 @@
+name: CD with Docker
+
+on:
+  workflow_run:
+    workflows: [ "Java CI with Gradle" ]
+    types: [ completed ]
+    branches: [ "dev" ]
+
+permissions:
+  contents: read
+  packages: write
+
+jobs:
+  build:
+    if: ${{ github.event.workflow_run.conclusion == 'success' && github.event.workflow_run.head_branch == 'dev' }}
+    runs-on: ubuntu-latest
+    outputs:
+      image-tag: ${{ steps.meta.outputs.tags }}
+
+    steps:
+      # 도커 이미지 빌드를 위한 빌드 파일 내려 받기
+      - name: Download artifact
+        uses: actions/download-artifact@v4
+        with:
+          run-id: ${{ github.event.workflow_run.id }}
+          github-token: ${{ secrets.ACTION_TOKEN }}
+          name: build-libs
+
+      # 도커 이미지 빌드를 위한 Docker Buildx 내려 받기
+      - name: Setup Docker Buildx
+        uses: docker/setup-buildx-action@v3
+        with:
+          driver: docker-container
+          driver-opts: |
+            network=host
+
+      # 도커 이미지 업로드를 위한 GitHub Container Registry 로그인
+      # https://docs.github.com/ko/packages/working-with-a-github-packages-registry/working-with-the-container-registry
+      - name: Login to Github Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          # 개인 사용자 토큰의 소유자가 변경되면 이 설정 파일을 다시 커밋하여
+          # GitHub Actions 최초 실행 사용자를 변경해야 합니다.
+          username: ${{ github.actor }}
+          password: ${{ secrets.ACTION_TOKEN }}
+
+      # 메타 데이터를 추출해 이미지 태그 및 레이블 생성
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ghcr.io/${{ github.repository }}
+          tags: |
+            type=sha
+
+      - name: Build and Push Docker image
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: Dockerfile
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          platforms: linux/amd64,linux/arm64
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+
+  deploy:
+    needs: build
+    runs-on: [self-hosted]
+    steps:
+      # Docker 이미지 내려 받기를 위한 GHCR 로그인
+      - name: Login to GHCR
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.ACTION_TOKEN }}
+
+      # 이미지 내려 받기
+      - name: Pull latest image
+        run: docker pull ${{ needs.build.outputs.image-tag }}
+
+      # 실행 중인 컨테이너 정리 및 기존 이미지 삭제
+      - name: Clean up old container and image
+        run: |
+          docker rm -f ${{ vars.CONTAINER_NAME }} || true
+          docker images "ghcr.io/${{ github.repository }}" \
+          --format "{{.Repository}}:{{.Tag}}" \
+          | grep -v "${{ needs.build.outputs.image-tag }}" \
+          | xargs -r docker rmi -f || true
+
+      # 새로운 이미지로 새로운 컨테이너 생성하여 실행
+      - name: Run New Container
+        run: |
+          docker run -d \
+            --name ${{ vars.CONTAINER_NAME }} \
+            --network ${{ vars.NETWORK_NAME }} \
+            -p ${{ secrets.DEV_WEB_PORT }}:8080 \
+            -e USE_PROFILE=dev \
+            -e TZ=Asia/Seoul \
+            ${{ needs.build.outputs.image-tag }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -0,0 +1,77 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+# This workflow will build a Java project with Gradle and cache/restore any dependencies to improve the workflow execution time
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-gradle
+
+name: Java CI with Gradle
+
+on:
+  push:
+    branches: [ "dev" ]
+  pull_request:
+    branches: [ "dev" ]
+
+permissions:
+  contents: read
+  checks: write
+  pull-requests: write
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+
+    services:
+      redis:
+        image: redis:alpine
+        ports:
+          - 6379:6379
+        options: >-
+          --health-cmd "redis-cli ping"
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+
+    steps:
+      # 현재 저장소의 소스 코드와 서브 모듈 내려 받기
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          submodules: true
+          token: ${{ secrets.ACTION_TOKEN }} # 조직이 아닌 개인 사용자 토큰이므로 유의할 것!
+
+      # JDK 21 (Eclipse Temurin) 환경 구성
+      - name: Set up JDK 21
+        uses: actions/setup-java@v4
+        with:
+          java-version: '21'
+          distribution: 'temurin'
+
+      # Gradle 내려 받기 및 캐싱
+      - name: Setup Gradle
+        uses: gradle/actions/setup-gradle@v4
+
+      # Gradlew 실행 권한 부여
+      - name: Add +x permission to gradlew
+        run: chmod +x gradlew
+
+      # 빌드 진행
+      - name: Build with Gradle
+        run: ./gradlew clean build
+
+      # 테스트 결과 출력
+      - name: Publish Test Report
+        uses: mikepenz/action-junit-report@v5
+        if: success() || failure() # always run even if the previous step fails
+        with:
+          report_paths: '**/build/test-results/test/TEST-*.xml'
+
+      # 빌드 완료 후 아티펙트 업로드 (Actions 탭에서 내려 받기 가능)
+      - name: Upload Build Artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: build-libs
+          path: |
+            build/libs/*.jar
+            Dockerfile
