nietzshn/multi-env-pipeline-poc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add initial multi-environment CI/CD pipeline POC #3

Merged
nietzshn merged 24 commits from staging into main 2026-06-02 22:31:09 -06:00
Conversation 0 Commits 24 Files Changed 11
+32 -25
1 changed files with 32 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit cf1cb65168 - Show all commits
.gitea/workflows/deploy-qa.yml
+32 -25
View File
@@ -55,37 +55,44 @@ jobs:
needs: build-and-push needs: build-and-push
steps: steps:
- name: Deploy via SSH - name: Deploy via SSH
uses: appleboy/ssh-action@v1.2.5 run: |
with:
host: ${{ secrets.DEPLOY_HOST }}
username: ${{ secrets.DEPLOY_USERNAME }}
key: ${{ secrets.DEPLOY_SSH_KEY }}
passphrase: ${{ secrets.DEPLOY_PASSPHRASE }}
script: |
set -euo pipefail set -euo pipefail
IMAGE_TAG="${{ needs.build-and-push.outputs.image_tag }}"
eval $(ssh-agent -s)
echo "${{ secrets.DEPLOY_SSH_KEY }}" > /tmp/deploy_key
chmod 600 /tmp/deploy_key
ssh-keygen -p -P "${{ secrets.DEPLOY_PASSPHRASE }}" -N "" -f /tmp/deploy_key
ssh-add /tmp/deploy_key
rm -f /tmp/deploy_key
mkdir -p ~/.ssh
ssh-keyscan -H ${{ secrets.DEPLOY_HOST }} >> ~/.ssh/known_hosts 2>/dev/null
ssh ${{ secrets.DEPLOY_USERNAME }}@${{ secrets.DEPLOY_HOST }} bash -s \
-e REGISTRY_URL=${{ env.REGISTRY_URL }} \
-e IMAGE_NAME=${{ env.IMAGE_NAME }} \
-e IMAGE_TAG=${IMAGE_TAG} \
-e GIT_SHA=${{ gitea.sha }} \
-e GIT_BRANCH=dev \
-e GITEA_ACTOR=${{ gitea.actor }} \
-e BUILD_NUMBER=${{ gitea.run_id }} \
-e TOKEN=${{ secrets.TOKEN }} << 'EOF'
set -euo pipefail
BUILD_DATE=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
echo "Pulling image..." echo "Pulling image..."
echo "${{ secrets.TOKEN }}" | docker login ${{ env.REGISTRY_URL }} -u ${{ gitea.actor }} --password-stdin echo "$TOKEN" | docker login $REGISTRY_URL -u $GITEA_ACTOR --password-stdin
docker pull ${{ env.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ needs.build-and-push.outputs.image_tag }} docker pull $REGISTRY_URL/$IMAGE_NAME:$IMAGE_TAG
echo "Stopping existing container..." echo "Stopping existing container..."
docker stop cicd-qa 2>/dev/null || true docker stop cicd-qa 2>/dev/null || true
docker rm cicd-qa 2>/dev/null || true docker rm cicd-qa 2>/dev/null || true
echo "Starting new container..." echo "Starting new container..."
docker run -d \ docker run -d --name cicd-qa --restart unless-stopped -p 8081:80 \
--name cicd-qa \
--restart unless-stopped \
-p 8081:80 \
-e APP_ENV=qa \ -e APP_ENV=qa \
-e APP_VERSION=dev-${{ gitea.sha }} \ -e APP_VERSION=dev-${GIT_SHA} \
-e GIT_COMMIT=${{ gitea.sha }} \ -e GIT_COMMIT=${GIT_SHA} \
-e GIT_BRANCH=dev \ -e GIT_BRANCH=${GIT_BRANCH} \
-e BUILD_DATE=$(date -u +"%Y-%m-%dT%H:%M:%SZ") \ -e BUILD_DATE=${BUILD_DATE} \
-e DEPLOY_TIME=$(date -u +"%Y-%m-%dT%H:%M:%SZ") \ -e DEPLOY_TIME=${BUILD_DATE} \
-e BUILD_NUMBER=${{ gitea.run_id }} \ -e BUILD_NUMBER=${BUILD_NUMBER} \
${{ env.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ needs.build-and-push.outputs.image_tag }} $REGISTRY_URL/$IMAGE_NAME:$IMAGE_TAG
echo "Waiting for health check..." echo "Waiting for health check..."
for i in $(seq 1 12); do for i in $(seq 1 12); do
if curl -sf http://localhost:8081/health > /dev/null 2>&1; then if curl -sf http://localhost:8081/health > /dev/null 2>&1; then
@@ -94,8 +101,8 @@ jobs:
fi fi
sleep 5 sleep 5
done done
echo "::error::QA health check failed" echo "::error::QA health check failed"
exit 1 exit 1
EOF