Merge pull request #10 from YAPP-Github/develop

[Ci] develop 배포 워크플로우 테스트 및 main 배포 파이프라인 수정

Author: lvalentine6

.github/workflows/deploy-dev.yml

@@ -4,13 +4,20 @@ on:
   push:
     branches: [ develop ]
     paths:
+      - 'src/**'
       - 'terraform/common/**'
       - 'terraform/dev/**'
       - '.github/workflows/deploy-dev.yml'
   workflow_dispatch:
 
 permissions:
-  contents: read
+  contents: write
+  pull-requests: write
+  issues: write
+
+concurrency:
+  group: terraform
+  cancel-in-progress: false
 
 env:
   AWS_REGION: ap-northeast-2
@@ -22,102 +29,73 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       - uses: hashicorp/setup-terraform@v3
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: ${{ env.AWS_REGION }}
+
       - name: Terraform Init (common)
         run: terraform init
         working-directory: ./terraform/common
+
       - name: Terraform Apply COMMON
-        env:
-          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
-          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
         run: terraform apply -auto-approve
         working-directory: ./terraform/common
 
   terraform-apply-dev:
     name: Terraform Apply dev
     runs-on: ubuntu-latest
     needs: terraform-apply-common
+    outputs:
+      tf_outputs_json: ${{ steps.get-outputs.outputs.data }}
     steps:
       - uses: actions/checkout@v4
       - uses: hashicorp/setup-terraform@v3
-      - name: Terraform Init (dev)
-        run: terraform init
-        working-directory: ./terraform/dev
-      - name: Terraform Apply dev
-        env:
-          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
-          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
-        run: terraform apply -auto-approve
-        working-directory: ./terraform/dev
+        with:
+          terraform_wrapper: false
 
-  check-aws-resources:
-    runs-on: ubuntu-latest
-    needs: terraform-apply-dev
-    steps:
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@v4
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
           aws-region: ${{ env.AWS_REGION }}
 
-      - name: Get AWS Resource Names (dev)
-        id: get-aws-names
-        run: |
-          CLUSTER=$(aws ecs list-clusters --region $AWS_REGION --query "clusterArns[]" --output text | tr '\t' '\n' | grep 'dev' | head -n 1 | awk -F'/' '{print $2}')
-          if [ -z "$CLUSTER" ]; then
-            echo "Error: No ECS cluster name containing 'dev' found." >&2
-            exit 1
-          fi
-          echo "ECS_CLUSTER=$CLUSTER" >> $GITHUB_ENV
-
-          SERVICE=$(aws ecs list-services --cluster $CLUSTER --region $AWS_REGION --query "serviceArns[]" --output text | tr '\t' '\n' | grep 'dev' | head -n 1 | awk -F'/' '{print $2}')
-          if [ -z "$SERVICE" ]; then
-            echo "Error: No ECS service name containing 'dev' found." >&2
-            exit 1
-          fi
-          echo "ECS_SERVICE=$SERVICE" >> $GITHUB_ENV
-
-          TASK_DEF_ARN=$(aws ecs describe-services --cluster $CLUSTER --services $SERVICE --region $AWS_REGION --query "services[0].taskDefinition" --output text)
-          if [ -z "$TASK_DEF_ARN" ]; then
-            echo "Error: No ECS task definition ARN found." >&2
-            exit 1
-          fi
-          TASK_DEF_NAME=$(basename "$TASK_DEF_ARN" | cut -d':' -f1)
-          echo "ECS_TASK_DEFINITION=$TASK_DEF_NAME" >> $GITHUB_ENV
+      - name: Terraform Init (dev)
+        run: terraform init
+        working-directory: ./terraform/dev
 
-          CONTAINER_NAME=$(aws ecs describe-task-definition --task-definition $TASK_DEF_ARN --region $AWS_REGION --query "taskDefinition.containerDefinitions[].name" --output text | tr '\t' '\n' | grep 'dev' | head -n 1)
-          if [ -z "$CONTAINER_NAME" ]; then
-            CONTAINER_NAME=$(aws ecs describe-task-definition --task-definition $TASK_DEF_ARN --region $AWS_REGION --query "taskDefinition.containerDefinitions[0].name" --output text)
-          fi
-          if [ -z "$CONTAINER_NAME" ]; then
-            echo "Error: No ECS container name found." >&2
-            exit 1
-          fi
-          echo "CONTAINER_NAME=$CONTAINER_NAME" >> $GITHUB_ENV
+      - name: Terraform Apply dev
+        run: terraform apply -auto-approve
+        working-directory: ./terraform/dev
 
-          REPO=$(aws ecr describe-repositories --region $AWS_REGION --query "repositories[].repositoryName" --output text | tr '\t' '\n' | grep 'dev' | head -n 1)
-          if [ -z "$REPO" ]; then
-            REPO=$(aws ecr describe-repositories --region $AWS_REGION --query "repositories[0].repositoryName" --output text)
-          fi
-          if [ -z "$REPO" ]; then
-            echo "Error: No ECR repository found." >&2
-            exit 1
-          fi
-          echo "ECR_REPOSITORY=$REPO" >> $GITHUB_ENV
+      - name: Get Terraform Outputs
+        id: get-outputs
+        run: |
+          echo "data<<EOF" >> $GITHUB_OUTPUT
+          terraform output -json >> $GITHUB_OUTPUT
+          echo "EOF" >> $GITHUB_OUTPUT
+        working-directory: ./terraform/dev
 
   deploy-service:
     name: Deploy to Amazon ECS
     runs-on: ubuntu-latest
     environment: develop
-    needs: check-aws-resources
-    env:
-      ECR_REPOSITORY: ${{ env.ECR_REPOSITORY }}
-      ECS_CLUSTER: ${{ env.ECS_CLUSTER }}
-      ECS_SERVICE: ${{ env.ECS_SERVICE }}
-      ECS_TASK_DEFINITION: ${{ env.ECS_TASK_DEFINITION }}
-      CONTAINER_NAME: ${{ env.CONTAINER_NAME }}
-
+    needs: terraform-apply-dev
     steps:
+      - uses: actions/checkout@v4
+
+      - name: Parse Terraform Outputs and Set Environment Variables
+        run: |
+          TF_OUTPUTS='${{ needs.terraform-apply-dev.outputs.tf_outputs_json }}'
+          echo "ECR_REPOSITORY=$(echo "$TF_OUTPUTS" | jq -r '.ecr_repository_name.value')" >> $GITHUB_ENV
+          echo "ECS_CLUSTER=$(echo "$TF_OUTPUTS" | jq -r '.ecs_cluster_name.value')" >> $GITHUB_ENV
+          echo "ECS_SERVICE=$(echo "$TF_OUTPUTS" | jq -r '.ecs_api_service_name.value')" >> $GITHUB_ENV
+          echo "CONTAINER_NAME=$(echo "$TF_OUTPUTS" | jq -r '.ecs_api_container_name.value')" >> $GITHUB_ENV
+
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@v4
         with:
@@ -130,46 +108,20 @@ jobs:
         with:
           node-version: '22'
 
-      - name: Prepare semantic-release config (release all types)
-        run: |
-          cat <<EOF > release.config.js
-          module.exports = {
-            branches: ['develop'],
-            plugins: [
-              [
-                '@semantic-release/commit-analyzer',
-                {
-                  preset: 'conventionalcommits',
-                  releaseRules: [
-                    { type: 'feat', release: 'minor' },
-                    { type: 'fix', release: 'patch' },
-                    { type: 'perf', release: 'patch' },
-                    { type: 'refactor', release: 'patch' },
-                    { type: 'test', release: 'patch' },
-                    { type: 'chore', release: 'patch' },
-                    { type: 'ci', release: 'patch' },
-                    { type: 'revert', release: 'patch' }
-                  ]
-                }
-              ],
-              [
-                '@semantic-release/release-notes-generator',
-                { preset: 'conventionalcommits' }
-              ]
-            ]
-          };
-          EOF
+      - name: Install Semantic Release dependencies
+        run: npm install semantic-release @semantic-release/commit-analyzer @semantic-release/release-notes-generator conventional-changelog-conventionalcommits
 
       - name: Semantic Release
+        id: get_version
         run: |
-          OUTPUT=$(npx semantic-release --no-ci)
+          OUTPUT=$(./node_modules/.bin/semantic-release --no-ci)
           echo "$OUTPUT"
-          VERSION=$(echo "$OUTPUT" | grep -oP 'Published release \K[0-9.]+')
-          if [ ! -z "$VERSION" ]; then
-            echo "SEMANTIC_VERSION=$VERSION" >> $GITHUB_ENV
-          else
-            echo "Error: SEMANTIC_VERSION not extracted" && exit 1
+                    VERSION=$(echo "$OUTPUT" | grep -oP 'Published (?:pre)?release \K[0-9.a-z-]+')
+          if [ -z "$VERSION" ]; then
+            echo "릴리즈할 새로운 버전이 없습니다. 배포를 건너뜁니다."
+            exit 0
           fi
+          echo "SEMANTIC_VERSION=$VERSION" >> $GITHUB_ENV
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
@@ -199,16 +151,14 @@ jobs:
           ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
         run: |
           docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$SEMANTIC_VERSION .
-          docker tag $ECR_REGISTRY/$ECR_REPOSITORY:$SEMANTIC_VERSION $ECR_REGISTRY/$ECR_REPOSITORY:latest
           docker push $ECR_REGISTRY/$ECR_REPOSITORY:$SEMANTIC_VERSION
-          docker push $ECR_REGISTRY/$ECR_REPOSITORY:latest
           echo "image=$ECR_REGISTRY/$ECR_REPOSITORY:$SEMANTIC_VERSION" >> $GITHUB_ENV
 
       - name: Get latest ECS task definition
         id: get-latest-task-def
         run: |
-          TASK_DEF=$(aws ecs describe-services --cluster ${ECS_CLUSTER} --services ${ECS_SERVICE} --region ${AWS_REGION} --query "services[0].taskDefinition" --output text)
-          aws ecs describe-task-definition --task-definition $TASK_DEF --region ${AWS_REGION} --query "taskDefinition" --output json > task-definition.json
+          TASK_DEF_ARN=$(aws ecs describe-services --cluster "${{ env.ECS_CLUSTER }}" --services "${{ env.ECS_SERVICE }}" --region "${{ env.AWS_REGION }}" --query "services[0].taskDefinition" --output text)
+          aws ecs describe-task-definition --task-definition "$TASK_DEF_ARN" --region "${{ env.AWS_REGION }}" --query "taskDefinition" --output json > task-definition.json
 
       - name: Fill in the new image ID in the Amazon ECS task definition
         id: task-def
@@ -226,19 +176,36 @@ jobs:
           cluster: ${{ env.ECS_CLUSTER }}
           wait-for-service-stability: true
 
+      - name: Prepare Notification Info
+        id: vars
+        run: echo "sha_short=$(git rev-parse --short HEAD)" >> $GITHUB_OUTPUT
+
       - name: Discord Notify (Success)
         if: success()
-        run: |
-          curl -H "Content-Type: application/json" \
-            -X POST \
-            -d "{\"content\": \"✅ (개발 서버) 새로운 버전이 배포 되었어요!\n레포: ${GITHUB_REPOSITORY}\n브랜치: ${GITHUB_REF}\n버전: ${SEMANTIC_VERSION}\"}" \
-            ${{ secrets.DISCORD_WEBHOOK_URL }}
+        uses: tsickert/discord-webhook@v7.0.0
+        with:
+          webhook-url: ${{ secrets.DISCORD_WEBHOOK }}
+          embed-title: "✅ 개발 서버 배포 성공!"
+          embed-color: 65280
+          embed-description: |
+            새로운 버전이 성공적으로 배포되었습니다.
+            
+            **버전**: [v${{ env.SEMANTIC_VERSION }}](${{ github.server_url }}/${{ github.repository }}/releases/tag/v${{ env.SEMANTIC_VERSION }})
+            **커밋**: [${{ steps.vars.outputs.sha_short }}](${{ github.server_url }}/${{ github.repository }}/commit/${{ github.sha }})
+            **배포자**: ${{ github.actor }}
+          embed-url: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"
 
       - name: Discord Notify (Failure)
         if: failure()
-        run: |
-          curl -H "Content-Type: application/json" \
-            -X POST \
-            -d "{\"content\": \"❌ (개발 서버) 배포 실패!\n레포: ${GITHUB_REPOSITORY}\n브랜치: ${GITHUB_REF}\n버전: ${SEMANTIC_VERSION}\"}" \
-            ${{ secrets.DISCORD_WEBHOOK_URL }}
-
+        uses: tsickert/discord-webhook@v7.0.0
+        with:
+          webhook-url: ${{ secrets.DISCORD_WEBHOOK }}
+          embed-title: "❌ 개발 서버 배포 실패!"
+          embed-color: 16711680
+          embed-description: |
+            배포 과정 중 오류가 발생했습니다. 아래 링크에서 로그를 확인하세요.
+            
+            **시도 버전**: ${{ env.SEMANTIC_VERSION }}
+            **커밋**: [${{ steps.vars.outputs.sha_short }}](${{ github.server_url }}/${{ github.repository }}/commit/${{ github.sha }})
+            **요청자**: ${{ github.actor }}
+          embed-url: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"