-
Notifications
You must be signed in to change notification settings - Fork 11
113 lines (99 loc) · 4.2 KB
/
prod_deploy.yml
File metadata and controls
113 lines (99 loc) · 4.2 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
name: Deploy DRF Application
on:
push:
branches:
- main
paths-ignore:
- 'readme.md'
pull_request:
branches:
- main
paths-ignore:
- 'readme.md'
- 'script'
jobs:
build_and_deploy:
runs-on: ubuntu-latest
steps:
# 检出代码
- name: Checkout code
uses: actions/checkout@v4
# 安装 docker-compose
- name: Install Docker Compose
run: |
sudo apt-get update
sudo apt-get install -y docker-compose
# 生成时间戳镜像标签
- name: Generate image tag
run: echo "IMAGE_TAG=latest-$(date +%Y%m%d%H%M%S)" >> $GITHUB_ENV
# 构建 Docker 镜像
- name: Build Docker image
run: IMAGE_TAG=${{ env.IMAGE_TAG }} docker-compose -f docker-compose.yml build
# 检查镜像是否能成功启动一个容器
- name: Run Docker container
run: IMAGE_TAG=${{ env.IMAGE_TAG }} docker-compose -f docker-compose.yml up -d
# 检查容器状态
- name: Check container status
id: container_status
run: |
CONTAINER_NAME=$(IMAGE_TAG=${{ env.IMAGE_TAG }} docker-compose -f docker-compose-prod.yml ps -q | head -n 1)
if [ -z "$CONTAINER_NAME" ]; then
echo "No containers found, failing the step."
exit 1
fi
STATUS=$(docker inspect -f '{{.State.Running}}' "$CONTAINER_NAME")
if [ "$STATUS" != "true" ]; then
echo "Container is not running, failing the step."
exit 1
fi
echo "Container is running successfully."
# 登录到 kworlds's Docker Hub
- name: Login to Kworlds's Docker Hub
run: docker login dockerhub.kworlds.cn -u ${{ vars.DOCKER_HUB_USERNAME }} -p ${{ secrets.DOCKER_HUB_PASSWORD }}
# 推送镜像到 kworlds's Docker Hub
- name: Push Docker image to Kworlds's Docker Hub
if: success()
run: docker push dockerhub.kworlds.cn/pure-drf-api:${{ env.IMAGE_TAG }}
# 获取latest标签旧镜像的digest
- name: Get old latest tag digest from Docker Hub
run: |
OLD_DIGEST=$(curl -sI -u ${{ vars.DOCKER_HUB_USERNAME }}:${{ secrets.DOCKER_HUB_PASSWORD }} \
-H "Accept: application/vnd.docker.distribution.manifest.v2+json" \
https://dockerhub.kworlds.cn/v2/pure-drf-api/manifests/latest | \
awk -F': ' '/^[Dd]ocker-[Cc]ontent-[Dd]igest:/ {gsub(/\r/, "", $2); print $2}')
echo "OLD_DIGEST=$OLD_DIGEST" >> $GITHUB_ENV
# 将新镜像标签修改为latest并推送
- name: Tag and push new image with latest tag
if: success()
run: |
docker tag dockerhub.kworlds.cn/pure-drf-api:${{ env.IMAGE_TAG }} dockerhub.kworlds.cn/pure-drf-api:latest
docker push dockerhub.kworlds.cn/pure-drf-api:latest
# 删除旧latest镜像manifest
- name: Delete old latest tag manifest from Docker Hub
if: success()
run: |
if [ -n ${{ env.OLD_DIGEST }} ]; then
curl -X DELETE -u ${{ vars.DOCKER_HUB_USERNAME }}:${{ secrets.DOCKER_HUB_PASSWORD }} \
https://dockerhub.kworlds.cn/v2/pure-drf-api/manifests/${{ env.OLD_DIGEST }}
else
echo "No old digest found to delete."
exit 1
fi
# 更新开发环境镜像并重启容器
- name: Deploy to remote server
if: success()
run: |
sshpass -p "${{ secrets.HOST_USER_PASSWORD_PROD }}" ssh -o StrictHostKeyChecking=no ${{ vars.HOST_USER_NAME_PROD }}@${{ vars.HOST_PROD }} << EOF
docker login dockerhub.kworlds.cn -u "${{ vars.DOCKER_HUB_USERNAME }}" -p "${{ secrets.DOCKER_HUB_PASSWORD }}"
cd "${{ vars.COMPOSE_FILE_PATH }}"
docker-compose pull
docker-compose down
docker-compose up -d
EOF
# 清理香港hub服务器垃圾镜像
- name: Clean up Docker Hub registry
if: success()
run: |
sshpass -p "${{ secrets.HOST_USER_PASSWORD }}" ssh -o StrictHostKeyChecking=no ${{ vars.HOST_USER_NAME }}@${{ vars.HOST }} << EOF
docker exec dockerhub registry garbage-collect /etc/docker/registry/config.yml
EOF